Privacy Policy 
At COHOREG (cohoreg.co.uk), the protection of your personal data is a priority.
When you use the site cohoreg.co.uk (hereinafter referred to as the "Site"), we may collect personal data concerning you.

The purpose of this policy is to inform you about the ways in which we process this data in compliance with the General Data Protection Regulation (hereinafter referred to as the "GDPR")
img2
img4

About Us

_
1.Who is the data controller?

 

The data controller is the company COHOREG, represented by its legal representative Mr. KARIM Yahya, registered under the number 829572841, with its registered office located at 29 Rue Gérot – 89000 Auxerre - France.

 

2.What data do we collect?

 

Personal data is any data that allows an individual to be identified directly or by cross-referencing with other data.
We collect data that falls into the following categories:
• Identification data (including your first and last names, email and postal addresses, company name);
• Data related to your orders;
• Connection data (such as IP address, logs);
Mandatory data is indicated when you provide us with your information. It is marked with an asterisk and is necessary to provide you with our services.

3.On what legal grounds, for what purposes, and for how long do we retain your personal data?

Purposes Legal Bases Retention Periods
Provide our services available on our Site, maintain a history to centralize your orders. Execution of pre-contractual measures taken at your request and/or execution of a contract you have entered into If you have created an account: your data is retained for the entire duration of your account and extended by a period of 3 years from the deletion of your account. If you have not created an account: your data is retained for 3 years for prospecting purposes. Additionally, transaction data (excluding your banking data) may be archived for probative purposes for a period of 5 years.
Execute your order, carry out operations related to customer management concerning contracts, orders, invoices, and customer relationship management Execution of a contract you have entered into Personal data is retained for the entire duration of the contractual relationship and extended by a period of 3 years from the end of the relationship. Additionally, transaction data (excluding your banking data) may be archived for probative purposes for a period of 5 years. Regarding your credit card data, it may be retained by our payment service provider (*). The data related to the visual cryptogram or CVV2 on your credit card is not stored.
Create a file of customers and prospects Our legitimate interest in developing and promoting our business For customers: data is retained for the entire duration of the commercial relationship and deleted after 3 years from the end of the relationship. For prospects: data is retained for 3 years from your last contact. In any case, transaction data (excluding your banking data) may be archived for probative purposes for a period of 5 years.
Send newsletters, solicitations, and promotional messages For customers: our legitimate interest in developing and promoting our business. For prospects: your consent or our legitimate interest in developing and promoting our business Data is retained for 3 years from your last contact.
Respond to your information requests Our legitimate interest in responding to your requests Data is retained for the time necessary to process your information request and deleted once the request is processed.
Comply with legal obligations applicable to our business Legal and regulatory obligations For invoices: invoices may be archived for a period of 10 years. Transaction data (excluding banking data) may be retained for 5 years.
Manage requests to exercise rights Legal and regulatory obligations If we request proof of identity: we retain it only for the time necessary to verify identity. Once verification is completed, the proof is deleted. If you exercise your right to object to prospecting: we retain this information for 3 years.
4. Who are the recipients of your data?

 

The following will have access to your personal data: (i) The staff of our company; (ii) Our subcontractors: hosting provider, newsletter provider, postal mail provider, payment provider, customer support, IT service provider for application maintenance, consulting, and accounting service providers; (iii) If applicable: public and private bodies, exclusively to fulfill our legal obligations.

 

5. Are your data likely to be transferred outside the European Union?

 

Your data is stored and retained on servers located within the European Union for the entire duration of processing. In the context of the tools we use (see the article on recipients concerning our subcontractors), your data may be transferred outside the European Union. The transfer of your data in this context is secured using the following tools:

  • Either the data is transferred to a country deemed to offer an adequate level of protection by a decision of the European Commission;
  • Or we have entered into a specific contract with our subcontractors regulating the transfer of your data outside the European Union, based on standard contractual clauses between a data controller and a processor approved by the European Commission;
  • Or we use appropriate safeguards provided by the applicable regulations.

 

6. What are your rights regarding your data?

You have the following rights concerning your personal data:

  • Right to information: This is precisely why we have drafted this policy. This right is provided by Articles 13 and 14 of the GDPR.
  • Right of access: You have the right to access all your personal data at any time, under Article 15 of the GDPR.
  • Right to rectification: You have the right to rectify your inaccurate, incomplete, or outdated personal data at any time in accordance with Article 16 of the GDPR.
  • Right to restriction: You have the right to obtain the restriction of the processing of your personal data in certain cases defined in Article 18 of the GDPR.
  • Right to erasure: You have the right to request that your personal data be erased and to prohibit any future collection for the reasons stated in Article 17 of the GDPR.
  • Right to lodge a complaint with a competent supervisory authority if you believe that the processing of your personal data constitutes a violation of applicable laws (Article 77 of the GDPR).
  • Right to define guidelines regarding the retention, erasure, and communication of your personal data after your death, in accordance with Article 40-1 of the French Data Protection Act.
  • Right to withdraw your consent at any time: For purposes based on consent, Article 7 of the GDPR provides that you can withdraw your consent at any time. This withdrawal will not affect the legality of processing carried out before the withdrawal.
  • Right to data portability: Under certain conditions specified in Article 20 of the GDPR, you have the right to receive the personal data you have provided to us in a standard, machine-readable format and to request its transfer to a recipient of your choice.
  • Right to object: Under Article 21 of the GDPR, you have the right to object to the processing of your personal data. However, we may continue processing it despite this objection for legitimate reasons or for the defense of legal claims.

You can exercise these rights by writing to us at the contact details below. We may ask you to provide additional information or documents to prove your identity.

 

7. Conditions of processing and implementation of cookies and trackers

 

We use different types of cookies for different purposes.

  • Some cookies perform specific functions or aim to improve your browsing experience, while others allow us to analyze how you use our website to improve it.
  • While some are strictly necessary, others help us personalize your browsing by remembering your preferences and settings. We also use, in addition to cookies, our server logs for analyzing, monitoring, and diagnosing our technical infrastructures and applications. They help us ensure the security of our operations, investigate incidents, monitor our network and telecommunications performance, and provide user support.

By browsing our website, you implicitly agree to the use of:

  • All technical and session cookies, stored during the session;
  • All visitor preferences (such as language), stored permanently;
  • All server logs, stored only for a limited period.

How can you accept or refuse our analytical cookies?

We use analytical cookies to monitor user navigation and improve the quality of your browsing experience. Analytical cookies are added by our audience analysis tool and are considered third-party cookies. They help us compile aggregated and anonymous statistical reports on the browsing journey of our visitors.

You can accept or refuse them via the banner displayed at the bottom of the page. If you choose not to give your consent by ignoring the question, we will NOT install ANY cookies.

If you prefer not to be tracked, you can also activate the "Do Not Track" feature of your browser. It will ensure that we do not track your browsing activity in any way. This feature is available for most browsers.

 

 

8. Contact point for personal data

 

The data subject may contact the CNIL in case of difficulty.

 

9. Modifications

 

We may modify this policy at any time, particularly to comply with any regulatory, jurisprudential, editorial, or technical developments. These changes will apply on the effective date of the modified version. You are therefore invited to regularly consult the latest version of this policy. However, we will inform you of any significant changes to this privacy policy.