ARTICLE 1: FOREWORD
The GDPR and you…
ARTICLE 2: GLOSSARY
You’ll understand us... promise!
Personal Data is any information relating to an identified or identifiable person, i.e. enabling the person to be identified directly (e.g., surname and first name) or indirectly (e.g. cookies).
The Processing of personal data is any operation or set of operations (automated or not) which is performed on data or sets of personal data, such as collection, recording, organization, storage, data transmission, etc.
The Data Controller determines the purposes (objectives of the processing) and the means of processing.
The Data Processor processes personal data on behalf of the data controller and carries out its instructions.
ARTICLE 3: GENERAL PRINCIPLES
Legal obligations... we’ve got them!
In accordance with the provisions of Article 5 of the General Data Protection Regulation (GDPR), the collection and processing of your personal data shall comply with the following principles:
ARTICLE 4: DATA CONTROLLER
We are responsible for the data entrusted to us!
As data controller, Microoled undertakes to comply with the obligations resulting from the Regulation and the amended French Data Protection Act, concerning the collection and processing of personal data. In accordance with Article 32 of the GDPR, we implement all technical and organizational measures to ensure your personal data are protected.
ARTICLE 5: PERSONAL DATA COLLECTED AND PROCESSED: WHAT DATA?
What do we know about you?
In accordance with the principle of minimization, we only collect the data necessary to carry out our missions. Therefore, as part of our activity in the manufacture of ophthalmic lasers and ultrasound scanners, and the organization of training courses for our customers, distributors and healthcare professionals, as well as our research, studies and development of new products, Microoled may collect and process the following information:
ARTICLE 6: PERSONAL DATA COLLECTED AND PROCESSED: WHY?
We’d like to explain!
In all of these situations, Microoled acts as a "Data Controller" under the GDPR.
6.1 General Data
6.2 Location Data
Also, the Services use your mobile device’s background location to provide the Services, including storing your position to build a location tracking history during your activities . If you have 'background location' turned on, the ActiveLook app will, from time to time, track your device's location even if you are not directly interacting with the application. You can change your mind and turn off background activity tracking at any time in your device settings or in-app settings.
ARTICLE 7: PERSONAL DATA: WHO HAS ACCESS TO YOUR PERSONAL DATA?
We don't pass them on to just anyone!
Microoled may, perhaps, transmit your personal data to data processors for hosting and managing its database in France, hosting its websites or carrying out accounting and employment missions (e.g. accounting firms, recruitment agencies or law firms). The use of these service providers is necessary for the proper performance of our services. We undertake to verify and ensure their compliance with the GDPR and the amended French Data Protection Act.
Microoled does not and shall not sell, transfer or communicate your personal data to unauthorised third parties.
Microoled does not make any automated decisions based on your personal data. No profiling is implemented during processing, and the data we collect will never be used without human intervention.
ARTICLE 8: YOUR RIGHTS
You hold all the cards!
8.1 Your rights
In accordance with current regulations, you have the following rights in relation to your personal data:
8.2 The DPO
Microoled has appointed a Data Protection Officer (DPO). In order to exercise your rights, you can contact our Data Protection Officer (DPO) at the following address:
or send an e-mail to: firstname.lastname@example.org
8.3 Complaining to the CNIL
You may at any time lodge a complaint with the competent authority i.e. the French Data Protection Agency (CNIL) using the following link: https://www.cnil.fr/fr/plaintes.
ARTICLE 9: SECURITY MEASURES
You entrust us with your data and we look after it!
Microoled is concerned about the security of personal data which it undertakes to process securely and only for the length of time necessary to achieve the intended purpose.
Microoled has put in place technical and organisational measures to ensure an adequate level of data protection in relation to the nature and purpose of the processing.
Therefore, in accordance with Article 32 of the GDPR on the security of processing, Microoled has implemented:
However, the security obligation remains an obligation of means, i.e. we do everything possible to ensure the confidentiality and integrity of your personal data.
Everyone who has access to your personal data has been made aware of best data protection practices. They are bound by a confidentiality obligation, and are liable to disciplinary action in the event of non-compliance with this provision.
ARTICLE 10: DATA TRANSFERS OUTSIDE THE EUROPEAN UNION
A well-organised trip!
As part of our business and for the management of your requests, we may transfer data to our subsidiaries and distributors, located outside the European Union. However, prior to any transmission of your personal data, we check the applicable rules on data transfers outside the European Union and ensure that they provide sufficient and adequate data protection safeguards.
ARTICLE 11: COOKIES
You can choose between eating cookies and going on a diet
ARTICLE 12: DATA PROTECTION POLICY UPDATES
Hang in there, you’ve almost finished!
This personal data protection policy may evolve. The last update was made on TBD