Personal Data Protection Policy:
Presentation of the policy
1. About the personal data we collect
2. About the personal data we collect through automated means
3. Our methods of sharing collected personal data
4. Children's Privacy Policy
5. Your choice
6. Terms of use of our online services and other technologies
7. Links to other websites and social networks
8. Protection of personal data
9. Retention of personal data
10. Modification of our personal data protection policy
11. Contact us
This personal data protection policy describes the methods we (MiniBorne) employ in France for the use, protection and sharing of our customers' personal data. The term "customers" refers to the people who frequent our partner restaurants, use our websites and mobile applications or otherwise interact with us.
We are required by law to provide specific privacy information to our customers. This personal data protection policy therefore comprises two parts: (i) a personal data protection policy applicable worldwide, and (ii) a specific appendix for France.
The first part describes how MiniBorne collects, uses, protects and shares the personal data of its customers.
The second part describes the specific rules applicable to personal data collected by MiniBorne in the country or territory where said data is collected.
The controller of your personal data is in fact the MiniBorne entity located in the country or territory where said data is collected.
1. About the personal data we collect
We may collect personal data about you when you visit our partner restaurants, use our websites or our mobile applications (the "online services") or interact in any other way with us (these different interactions being collectively referred to as the " services "). The data we collect falls into three categories: (a) data you provide to us, (b) data we collect through automated means, and (c) data we collect from other sources. .
In principle, you provide us with your personal data voluntarily. However, in some cases, the communication of such data proves to be essential for the performance of a service or is required by law. Please note that it is indeed impossible for us to provide you with certain services without this data. We will inform you when the provision of personal data concerning you is essential.
We may combine the data you provide to us with data collected through automated means and from other sources.
About the personal data you provide to us
Depending on how you interact with us, you may provide us with the following data
. Personal information (name, postal and e-mail addresses, telephone number, date of birth, etc.), when you register for our online services or contact us by telephone or through our online services;
. Information about your transactions (products purchased, prices, method of payment, payment data, etc.);
. Information about the account you use to access our online services, purchase or use our products and services (username, password or other identifier);
. Information about your profile (products and services appreciated, special times to visit us, etc.); And
. Any other personal data that you agree to provide to us when you interact with us.
2. About the personal data we collect through automated means
We use automated technologies to collect data from your computer or mobile device (phone or tablet) when you visit our partner restaurants and use our online or on-site restaurant services. These automated technologies include cookies, local shared objects and web beacons. Further information is available in Section 6 below.
We are therefore likely to collect the following data
. your Internet Protocol (IP) address;
. the dates and times you access our online or on-site services;
. the names and URLs of files accessed using our online services;
. the type of operating system and browser of the computer or mobile phone used;
. the type of mobile device used and its settings;
. the Unique Device Identifier (UDID) or Mobile Equipment Identifier (MEID) associated with your mobile phone;
. the serial number of the device used and its components;
. advertising identifiers (IDFA and IFAex.) or other similar identifiers;
. the referring website or application (i.e. the site that led you to ours) and;
. the use you make of our online services (the pages viewed on our sites or in our mobile applications, for example).
Our online and on-site services allow us to collect precise information about the location of your mobile device (phone or tablet) or computer using geolocation functionality and technologies such as GPS, Wi-Fi , Bluetooth or even proximity relay antennas. For most mobile devices and computers, you will be asked to allow Myam to process this information. You have the option to revoke this permission by changing the device or browser settings. If you would like to know how to prohibit us from collecting precise information about your location, we recommend that you contact the supplier of your mobile device, its manufacturer or the supplier of your browser. Some of our online or onsite services may not function properly without your location information. If you want us to delete the information in our possession that allows you to be located, please contact us, the contact details of which are set out below. We may be required by law to retain certain information.
About personal data we collect from other sources
We may collect data about you from other companies and entities, including public databases, social networks or third-party partners such as analytics or marketing service providers. We may also collect public information, accessible to everyone, for example on your profile, when you interact with us on social networks. The latter also allow us to collect communications that are addressed to us or that concern us.
We may combine the data you provide to us with data collected through automated means and from
We may use the personal data we collect for the purposes described below.
To provide our services and establish a contractual relationship with you:
. Respond to your requests, fulfill orders and process payments relating to our products and services;
. Communicate with you about orders, purchases or accounts you make or have with us, your requests, your loyalty program, your questions and your comments;
. To provide you with our online services (including websites and mobile applications); And
. Provide customer support, including responding to any concerns regarding our services.
To inform you, improve our services and pursue the following legitimate business interests:
. To introduce you to our products and services, offers, promotions or events which we believe may be of interest to you;
. To introduce you to the products and services of our business partners;
. Offer you a personalized experience in our partner restaurants and with our online services;
. To manage our business, including but not limited to developing new services, conducting consumer and operations research, and evaluating the effectiveness of our sales, marketing and advertising activities;
. use analytics and profiling technologies to personalize your experience, to develop content (including advertisements) tailored to your interests and your use of our online or on-site services, to manage our activities, diagnose any technical or service-related problems, administer our online and on-site services, identify users of our online services, identify a device for fraud prevention purposes, to gather demographic information about our customers and to determine usage patterns associated with our services;
. Maintain, manage and improve our products, offers, promotions, online services and other technologies;
. Guarantee the security of our networks and systems.
Comply with applicable law:
. Identify, prevent and protect ourselves against cases of fraud and all other offences, claims and liabilities;
. Comply with our legal obligations and policies;
. Recognize, exercise or defend legal rights; And
. Monitor and report non-compliance issues.
Provided that you authorize us to do so (where required by applicable law), we may use the personal data we collect for the following purposes:
. Send you email or text (SMS) messages about our products and services, contests, offers, promotions or events which we think may be of interest to you;
. Send you e-mails or text messages (SMS) about the products and services of our business partners;
. Provide services using geolocation;
. Provide online services to children (subject to parental consent);
. Enable cookies and similar technologies; And
. To provide you with our online services (including websites and mobile applications).
We may otherwise use the information about you collected by us. In such cases, we will inform you at the time of collection or ask your permission.
3. Our methods of sharing collected personal data
We do not sell any of your personal data and only share it as set out in this privacy policy.
We may share your personal data within the MiniBorne family. You will also find additional information there. The members of the MiniBorne Family to whom we transmit this data are not authorized to use it or share it for any other purpose or in any other manner than those provided for in this personal data protection policy.
We may share your personal data with service providers who provide us with services such as: fulfilling orders, providing data processing services and other services related to information technology, managing promotions, contests, raffles and lotteries, carry out studies and analyses, offer a personalized experience to each MiniBorne customer. We prohibit them from using or sharing this information for any purpose other than to provide services on our behalf.
For strategic or other business reasons, we may decide to divest or transfer some or all of our business. As part of such an assignment or transfer, we may disclose the information we have collected and maintained (including personal data) to any person or entity involved in the transaction in question.
We may share information that does not directly identify you, such as anonymous aggregate statistics relating to your use of our online services. We may also combine information about you with information about other customers and share it in such a way that it cannot be associated with a particular customer.
We may use or share personal data as necessary to comply with any law, regulation or legal requirement, to protect our online and on-site services, to initiate a legal proceedings or to defend a legal claim, to protect the rights, interests and safety of our organization, our employees, our partner restaurants or the general public, or in the context of an investigation into a case of fraud or any other breach or violation of our policies.
4. Children's Privacy Policy
We know how important it is to protect your privacy when using our online services. We are particularly committed to protecting the privacy of children who access or use our online services.
We urge parents to regularly monitor and monitor their children's online activities. If you have any questions regarding our children's privacy policies, please contact us.
5. Your choices
Marketing Communications
If you have agreed to receive marketing communications from us, you have the option of revoking this decision at a later date by following the instructions contained in the communications in question. In principle, you also have the option of accessing your communications preferences and finding these instructions in the “Profile” section of the online services you use. You can also change your preferences in your phone settings, or opt out of receiving these communications by contacting us.
Even if you opt out of receiving marketing communications from us, we may continue to send you communications regarding your transactions, the accounts you hold with us, and any games, contests, raffles or sweepstakes in which you have entered( e). Renouncing to receive a certain type of communication does not constitute renunciation to receive other types of communications. For example, even if you stop receiving marketing e-mails, you will continue to receive marketing text messages (SMS) if you have subscribed to this option. Please note that if you receive communications from a MiniBorne partner restaurant, you will have to contact them directly to put an end to these mailings.
Unless you authorize us to do so, we do not share any personal data with third parties for the purposes of their own direct marketing activities. Upon notice from us and subject to your consent, we will share your personal data at your direction.
The rights granted to you in relation to your personal data
In some countries, individuals have the right to access, rectify, transfer, restrict, delete the personal data we have collected, object to its processing, or withdraw consent to a such treatment. To find out more about these rights and the countries in which they are exercised, please refer to the appendices specific to each country.
We and our service providers use cookies, web beacons, and other similar technologies in our online services and in other areas related to our business (such as online advertising) to purpose of collecting information and providing you with the services or products you have requested.
Cookies and other technologies
A “cookie” designates a small text file saved in the browser or the device of an Internet user, which makes it possible to recognize the latter and/or to obtain information concerning him.
A "web beacon" is a small object or image embedded in a web page, application, or email that allows user activity to be tracked. We also speak of “pixel” or “tag”.
Please note the following:
. A cookie may be sent to you when you use our online services.
. Some of the features we offer require the use of cookies and other similar technologies.
. The cookies and other tracking technologies we use can be both session-based (for the duration of your visit) and permanent (for a specific period of time).
. Our online services and other areas related to our business may contain web beacons.
We use cookies, web beacons and other similar technologies to collect information for the purposes set out in this Privacy Policy. We may also combine information collected using these technologies with information collected about you by us through other means described in this Privacy Policy.
We may use these technologies for the following purposes:
. You identify yourself or your device unequivocally;
Allow you to access our online services and use them smoothly (which would not necessarily be the case in their absence);
. Reinforce the security of the systems where necessary;
. Statistically measure the use of our websites and our mobile applications;
. Improve our products and services;
. Track the performance (traffic, errors, page load times, popular topics, etc.) of our online services;
. Recognize you when you access our online services, to facilitate your navigation;
. Personalize your experience;
. Attract your attention through targeted advertising; And
. Other purposes set out in the section of this Privacy Policy titled “How We Use Collected Information”.
For example, certain technologies allow us to determine whether you have opened an email or clicked on a link contained in an email, how you use the pages and content of our mobile applications, or whether you have clicked on an advertisement. MiniBorne online.
We and others (such as our advertising networks) may use these technologies to collect information about your online activities over time, whether you access phones and websites from third parties or use our online services, in order to further personalize your customer experience.
You can configure your browser so as not to receive cookies or to be alerted each time you receive one. Simply click on the "Help" section of your browser to learn how to change your preferences in this area. If you disable all cookies, you may not be able to access all features of a website.
Some recent browsers have a “Do Not Track” option which consists of sending a notification to the websites you visit indicating that you refuse to have your activity tracked. For the time being, MiniBorne ignores this type of notification because there is not yet a uniform technological standard. We continue to review new technologies and may adopt a standard when one exists.
If our online services include videos, we may target and identify any videos you watch. You authorize us to track your viewing activities through third-party online services or social networks for up to two years, or as long as applicable law allows, or until you withdraw your consent.
To find out more about the terms of use of cookies and other technologies specific to the country in which you are a customer, please refer to the appendix dedicated to it.
Targeted advertising
When you use our online services, we (and our service providers) may collect information about your activities that allows us to serve you personalized advertisements.
Because we are part of several advertising networks, you may see ads on other websites. Through these networks, we may target the information we send to you based on your interests, other information about you, and contextual means. These networks track your online activities over time by collecting information using cookies, web beacons, and web server logs. They use this information to show you ads that may be of interest to you. The networks we are part of collect information on the websites you visit (such as the pages or ads you view or the way you use these sites) when they are also part of the networks in question. We use this information to serve you personalized ads – both through our online services and on third-party websites belonging to advertising networks – and to assess the effectiveness of our marketing actions.
7. Links to other websites and social networks
Our online services may contain links to websites operated by third parties and not by us. If you visit any of these sites, we recommend that you review their privacy policy, terms and conditions, and other policies. We are not responsible for the policies and practices of third parties. Any information you provide to them is treated in accordance with their own privacy policies, terms and conditions and other policies.
Our online services may also contain applications, tools, widgets and plug-ins from other providers (such as the Facebook "Like" button). They may also use automated means to collect information about how you use these features. They process your information in accordance with their own policies.
8. Protection of personal data
We are committed to taking adequate measures to protect your personal data. Our technical, organizational and physical procedures aim to protect personal data against accidental, unlawful or unauthorized access or loss, disclosure, use, alteration or destruction. Despite the efforts made to protect our information systems, no website, mobile application, computer system, or transmission of information via the Internet or any other public network can be guaranteed to be completely secure.
9. Retention of personal data
We retain your information for as long as necessary to carry out the activities set out in this policy and to comply with our personal data retention rules (unless legislation requires a longer retention period). These rules comply with applicable laws. We will retain and use your data as necessary to fulfill our legal obligations (such as our obligation to retain your information under applicable tax laws), resolve disputes, enforce our agreements, and carry out any other activities required by law. this policy.
MiniBorne is committed to respecting the related principles and certifies that it adheres to them for all personal data received from the European Union. Please note the following:
. MiniBorne may share personal data with its service providers, in accordance with the provisions of section 3 above. MiniBorne Corporation is liable if its service providers process the information in question in a manner incompatible with it, and assumes liability for the event causing the damage.
. MiniBorne may disclose personal data received to satisfy any legitimate request from public authorities, and in particular to comply with national security or law enforcement requirements.
. You have the right to request access to the personal data received by MiniBorne and to decide to limit the use and disclosure of this information by McDonald's Corporation. If you wish to exercise these rights, please contact MiniBorne using the postal address, telephone number or e-mail address indicated below.
This policy describes MiniBorne's personal data protection practices. MiniBorne invites you to contact it at any time if you have any questions, concerns or complaints about its practices. All you have to do is use the postal address, telephone number or e-mail address given below. You also have the option of contacting the local data protection authority, with which MiniBorne will collaborate to resolve your problem.
Please note that the above procedures only apply to the resolution of disputes relating to personal data received by MiniBorne.
All other disputes that could oppose you to MiniBorne, to any other member of the MiniBorne Family or to any agent, representative, organization, corporate officer, administrator or collaborator may be resolved in accordance with the general conditions of the websites, mobile applications, letters of electronic information (newsletters) or other digital services concerned, owned or controlled by a member of the MiniBorne Family.
10. Modification of our personal data protection policy
This Privacy Policy is effective as of the date indicated on the first page. It can be updated from time to time. In such case, we will publish the new version and modify the “date of the last update” (that is to say the date on which it takes effect) appearing at the top of the document. We recommend that you check regularly if a new version is available
If you have any questions about MiniBorne's personal data protection practices, you can contact us at any time.
Specific rules for the protection of your personal data collected by MiniBorne in France
The specific rules applicable to personal data collected by MiniBorne in France clarify and/or amend the rules set out above in MiniBorne's personal data protection policy worldwide.
MiniBorne in France is responsible for the processing of your personal data.
Personal data we collect
This section replaces the section "About the personal data we collect" of MiniBorne's personal data protection policy worldwide.
We may collect personal data about you when you visit our partner restaurants, use our websites or our mobile applications (the "online services") or otherwise interact with us.
1. Data that you communicate to us
Depending on how you interact with us, you may provide us with the following data:
. Information concerning your identity, such as your surname, first name, your postal address and email address, your telephone number, your date of birth;
. Information about your transactions, including information about the products you buy, prices, means of payment;
. information relating to your MiniBorne account, such as your user name or your password (or any other element allowing you to be identified), the means used to access our online services or to purchase or use our products and services ;
. Information about your profile (products and services appreciated, special times to visit us, etc.);
. And any other personal data that you agree to communicate to us when you interact with us.
2. Personal data we collect through the use of cookies
When you use our services online or on site in a restaurant, we also collect personal data obtained through the setting of cookies (see Cookies section) such as the unique identifier of a cookie, the IP address, the identifier of your terminal, the terminal model, the types of networks, the operating system of your terminal or your type of browser, the dates and times at which you access our online or on-site services, the use you make of our online services (the pages viewed on our sites or in our mobile applications, for example), advertising identifiers etc.
Our online and on-site services allow us to collect precise information about the location of your mobile device (phone or tablet) or computer using geolocation functionality and technologies such as GPS, Wi-Fi , Bluetooth or even proximity relay antennas. For most mobile devices and computers, you will be asked to authorize MiniBorne to process this information. You have the option to revoke this permission by changing the device or browser settings. If you would like to know how to prohibit us from collecting precise information about your location, we recommend that you contact the supplier of your mobile device, its manufacturer or the supplier of your browser. Some of our online or onsite services may not function properly without your location information.
Bank data
When you place an order in Click & Collect and in delivery on our sites and applications, we will ask you to complete your bank details.
Your bank details are collected and hosted by our subcontractor, the company Stripe for the purpose of carrying out transactions. MiniBorne in France does not process or store your bank details and has no access to these bank details. The only information Stripe can share with us is technical information (e.g. transaction number) and is only processed to validate transactions.
Legal basis for processing your personal data
Your personal data is processed on the basis of (1) pre-contractual measures or the need to perform a contract with you (Art. 6(1)(b) GDPR (2) your consent (Art. 6(1) )(a) GDPR), (ii)), (3) our legitimate interests where these prevail (Art. 6(1)(f) GDPR) and (4) compliance with our legal obligations (Art. 6(1)(c) GDPR). The purposes associated with each legal basis are listed below:
The purposes associated with each legal basis are listed below:
1. Based on the execution of the pre-contractual measures taken at your request and/or on the execution of the contract concluded with you, we implement processing for the following purposes:
. the creation and management of your MiniBorne account,
. the management of the loyalty program when you join it, which involves:
registering for the loyalty program, managing your identification when you identify yourself online and making your personal space available on your MiniBorne account;
the implementation of the collection and use of your loyalty benefits during your restaurant orders;
. the management of your orders on the www.miniborne.com Site and the MiniBorne France applications the management of your participation in our contests.
2. Based on your consent, we implement processing for the following purposes:
. Sending communications relating to promotions and/or personalized offers by email and/or sms and/or mobile notifications;
. The management of cookies subject to consent.
3. Based on our legitimate interests, we implement processing for the following purposes:
. Managing your requests for information and complaints;
. The prevention and fight against fraud, also including the management of the consequences of this fraud;
. The establishment of any means of proof necessary for the defense of our rights;
. The production of statistics and analyzes to improve our products and services;
. The management of cookies not subject to consent;
. Keeping computer traces to prevent security incidents from being detected.
4. Based on the legal basis of compliance with our legal obligations, we implement processing for the following purposes:
. The management of responses to official requests from public or judicial authorities empowered for this purpose;
. Compliance with the regulations applicable to our activity;
. The retention of invoices and other mandatory documents relating to transactions in accordance with our obligations;
. Management of requests to exercise your rights over your personal data.
The purposes pursued on the basis of our legitimate interests are pursued with respect for your rights and freedoms.
If we are required to collect your data for purposes other than those listed above, we will inform you beforehand.
Children's Privacy Policy
We prohibit ourselves from collecting the personal data of children under 15, unless it is necessary for a specific activity, such as the organization of contests specific to children and the parent(s) or the legal guardian has authorized us to do so. We require parental consent through a form/mail before collecting personal data from child under 15 years old.
We recommend that parents regularly monitor and monitor their children's online activities.
The rights granted to you in relation to your personal data
Regarding your personal data, you have the right to make the following requests:
. Access your personal data and obtain a copy of it;
. Obtain your personal data in a structured, commonly used and machine-readable format and ask us to transmit it directly to another company (provided that you have provided it to us yourself and that its processing is based on your prior consent or on the need to perform a contract);
. Have your personal data rectified when it is incorrect or incomplete;
. Object, on grounds relating to your particular situation, to our processing of your personal data on the basis of our legitimate business interests (including profiling), in particular for statistical purposes, as well as the sending of marketing communications ;
. Have your personal data erased as well as any links allowing access to it and any copy or reproduction thereof, to the extent authorized by the applicable legislation, in particular when you consider that your personal data has been subject to unlawful processing or your data must be erased to comply with a legal obligation;
. Have processing restricted while we consider a request or complaint made by you as to the accuracy of your personal data or the lawfulness of the processing of such data and our legitimate interests in relation to such processing, or if you need such information in the context of a dispute;
. Withdraw your consent at any time where the processing of your personal data is based on your consent; it being specified that such a withdrawal cannot affect the legality of the processing previously carried out on the basis of your consent;
. Define guidelines regarding the retention and communication of your personal data after your death.
. Submit a complaint to the National Commission for Computing and Liberties (CNIL) either online on the CNIL website via the Contact tab, or by post to the address 3 Place de Fontenoy, 75007 Paris .
The exercise of your rights:
You can exercise these rights free of charge, unless your request is unfounded or excessive, in particular because of its repetitive nature.
You can exercise your right of rectification and withdraw your consent to the sending of electronic messages or text messages for commercial prospecting purposes directly from your MiniBorne account in the My personal information space.
You can exercise your rights of access and deletion via the Online Help on our site and our application in the My Personal MiniBorne Account section.
In some cases, and to the extent permitted by applicable law, we may refuse to act or limit your rights. Before we can provide you with information or correct any errors, we may need to ask you to confirm your identity and/or provide us with additional information to enable us to respond to your request.
Sharing your personal data:
Sharing of your personal data: This section replaces the terms of sharing set out in MiniBorne's personal data protection policy worldwide. The personal data that you communicate to us is likely to be shared with our subcontractors who provide us with services within the framework of the management of our Websites and applications, your MiniBorne account and your loyalty program and our tools. online ordering and in particular:
- To service providers in charge of hosting and developing our sites and our application.
- To the Axepta service provider in charge of managing the payment module to allow payments to be made;
- To the service provider in charge of managing our loyalty program;
- To service providers in charge of segmentation, sending emailing and push notification;
- To service providers in charge of managing our contests;
- To any person or entity involved in an assignment or transfer operation;
- To any competent authority as needed to comply with any law, regulation or legal requirement, to protect our online and on-site services, to initiate legal proceedings or to defend a right in justice, to protect the rights, interests and safety of our organization, our employees, our franchisees or the general public, or in connection with the investigation of a case of fraud or any other offense or violation of our policies.
Duration of retention of personal data
We will not keep your personal data linked to your MiniBorne account longer than necessary, and in particular:
• For personal data obtained through the setting of cookies: six months from collection; - For the personal data of prospects who have not finalized the creation of a Mini Terminal account and for the personal data of these prospects processed as part of an exchange for commercial purposes when the latter have given their consent for such exchange: 1 year after collection or your last contact (e.g. click on a hypertext link...) with MiniBorne, unless you object to the processing of your data or exercise your right to be forgotten. • For the personal data of customers holding a MiniBorne account: until the deletion of your account and in any event 3 years from the date of your last activity (e.g. identification in a restaurant or on our digital tools, order etc). For personal data processed in the context of complaints submitted via online help: the data collected in the context of these complaints will be kept for 6 months from the creation of the file in an active database then for 5 years in the database. archive before being deleted. Some of your personal data may be kept in intermediate archiving for the purposes of exercising our legal obligations, or in an administrative interest, particularly in the event of litigation and within the limit of the applicable limitation period, and in particular: • For personal data contained in accounting documents: 10 years; • For personal data contained in administrative/fiscal documents: 6 years. The bank data collected by our subcontractor Axepta for the management of payments and complaints are kept for a period of 18 months.
International transfers of personal data :
With the exception of the customer account number generated by MiniBorne's information systems in France for the purpose of analyzing group sales feedback, no personal data is transferred outside the European Union.
Contact our Data Protection Officer :
If you want to delete all your personal data, or any data given to you or if you have any questions about the protection of personal data at MiniBorne in France, you can do so directly on the application. Mini Terminal or contact us:
By e-mail, at the following address: miniborne.fr@gmail.com
Privacy Policy Updates and Changes :
We regularly review our privacy policy to ensure that it is up to date and complies with applicable data protection regulations.
In the event of significant changes, we will notify you and send you a hypertext link to the updated privacy policy. This information will be sent to you by email and will also be available via a dialogue window displayed during a new connection to the www.miniborne.com Site.