ARTICLE 1: PREAMBLE
The purpose of this privacy policy is to inform users of the application:
· About how their personal data is collected. Any information used to identify a user is considered personal data. As such, it may include: his first and last names, his age, his postal or email address, his location or his IP address (non-exhaustive list);
On the rights they have regarding this data;
The person responsible for processing the personal data collected and processed;
The recipients of this personal data;
About the application’s cookie policy.
ARTICLE 2: PRINCIPLES RELATING TO THE COLLECTION AND PROCESSING OF PERSONAL DATA
In accordance with Article 5 of European Regulation 2016/679, personal data are:
Treated lawfully, fairly and transparently to the person concerned;
Collected for specific purposes (cf. Article 3.1 hereof), explicit and legitimate, and not subsequently treated in a manner incompatible with those purposes;
Adequate, relevant and limited to what is necessary for the purposes for which they are processed;
· Accurate and, if necessary, kept up to date. All reasonable steps must be taken to ensure that personal data that is inaccurate, having regard to the purposes for which it is processed, are deleted or rectified without delay;
Kept in a form allowing the identification of the persons concerned for a period not exceeding that necessary for the purposes for which they are processed;
Processed in a manner that ensures appropriate security of the data collected, including protection against unauthorized or unlawful processing and against loss, destruction or accidental damage, using appropriate technical or organisational measures.
Processing is lawful only if and to the extent that at least one of the following conditions is met:
The data subject has consented to the processing of his personal data for one or more specific purposes;
The processing is necessary for the execution of a contract to which the data subject is a party or for the execution of pre-contractual measures taken at the request of the data subject;
Processing is necessary to comply with a legal obligation to which the controller is subject;
Processing is necessary to safeguard the vital interests of the data subject or other natural person;
The processing is necessary for the performance of a mission of public interest or falling within the exercise of public authority of which the controller is invested;
· The processing is necessary for the purposes of legitimate interests pursued by the controller or by a third party, unless the interests or fundamental freedoms and rights of the data subject which require the protection of personal data prevail, in particular where the person concerned is a child.
ARTICLE 3: PERSONAL DATA COLLECTED AND PROCESSED IN THE CONTEXT OF NAVIGATION ON THE APPLICATION
Article 3.1: Data collected
The personal data collected in the course of our activity are the following:
Name, surname, date of birth, email address and photo of the user’s choice. Information about the interaction of the user with the application (connection time, number of activities recorded, etc.) and the location of the user.
The collection and processing of this data meets the following purpose(s):
Customization and continuous improvement of the mobile application. Recording of location data to create a performance history and enable the race mode against a virtual opponent.
Article3.2: Method of Data Collection
When you use our application, the following data is automatically collected:
User interaction data with the application
Other personal data is collected when you perform the following operations on the platform:
When logging in, the user’s last name, first name, date of birth, email address and photo of his choice are retained for the purpose of customization of the mobile application.
They are kept by the controller under reasonable security conditions for an indefinite period.
The Company may retain certain personal data beyond the time limits stated above in order to fulfil its legal or regulatory obligations.
Article 3.3: Data Hosting
The Ghostrun application is hosted by:
Ghostrun
17 avenue d'Italie, 75013 Paris, France
contact@ghostrun.fr
0783300743
ARTICLE 4: DATA CONTROLLER AND DATA PROTECTION OFFICER
Article 4.1: The data controller
Personal data is collected by Ghostrun. The person responsible for processing personal data may be contacted as follows:
By mail to: 17 avenue d’Italie, appartement 255, 75013 Paris, France;
By phone at 0783300743;
By email: contact@ghostrun.fr
Article 4.2: The data protection officer
The Data Protection Officer of the company or manager is:
Tomessa MFOUKA, 0783300743, contact@ghostrun.fr
If you feel, after contacting us, that your “Information Technology and Freedoms” rights are not respected, you can send information to the CNIL.
ARTICLE 5: USER RIGHTS IN DATA COLLECTION AND PROCESSING
Any user concerned by the processing of his personal data can claim the following rights, in application of the European regulation 2016/679 and the French Data Protection Act (Law 78-17 of 6 January 1978):
Right of access, rectification and right to erasure of data (set out in Articles 15, 16 and 17 of the GDPR respectively);
Right to data portability (Article 20 GDPR);
Right to limitation (Article 18 GDPR) and opposition to data processing (Article 21 GDPR);
Right not to be the subject of a decision based exclusively on an automated process;
Right to determine the fate of data after death;
Right to refer to the competent supervisory authority (Article 77 GDPR).
To exercise your rights, please send your letter to [Company name and address] or by email to [Insert Data Protection Officer’s email address]
In order for the data controller to be able to grant his request, the user may be required to provide him with certain information such as: his first and last names, e-mail address and account number, personal space or subscriber.
Visit cnil.fr for more information on your rights.
ARTICLE 6: CONDITIONS FOR AMENDING THE PRIVACY POLICY
The publisher of the Ghostrun application reserves the right to modify this Policy at any time to ensure that users of the application comply with the applicable law.
Any modifications cannot have any impact on purchases previously made on the application, which remain subject to the Policy in force at the time of purchase and as accepted by the user at the time of validation of the purchase.
Users are encouraged to read this Policy each time they use our services, without the need to notify them formally.
This policy, published on 07/07/2023, was updated on 07/07/2023.