top of page

Privacy Policy

GLOBAL 1000 CHALLENGE PRIVACY POLICY


When you use the website www.global1000challenge.com, we may collect personal data about you. The purpose of this policy is to inform you about how we process your personal data in compliance with Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.

​

I. Who is the data controller?

The data controller is GLOBAL 1000 CHALLENGE, a simplified joint stock company, registered with the Registry of Trade and Companies of Paris under the number 913 887 550 and whose head office is located at 4 Rue Maurice Utrillo, 75018 Paris, FRANCE.

​

II. What kind of personal data do we collect?

Personal data is data that identifies an individual directly or indirectly, in particular by reference to an identifier such as a name. We may collect the following personal data:

  • Identification data (e.g., full name, email address, telephone number)

  • Professional data (e.g., professional role)

  • Data relating to your orders (e.g., transaction number, details of your orders and subscriptions, commercial relationship follow-up)

  • Login data (e.g., logs, IP address, terminal identifiers, connection and timestamp identifiers, cookies, comments, screenshots, and bug tracking forms)

  • Location data (e.g., geographic data, location of parcels)

  • Economic and financial data (e.g., payment data, bank details)

We will inform you when collecting your personal data whether some of this data is mandatory or optional. Mandatory data will be indicated with an asterisk.

​​

III. On what legal basis, for what purposes, and for how long do we keep your personal data?

Purposes:

  • To provide you with our services available on our Website

  • To perform operations related to contracts, orders, deliveries, invoices, and customer relationship management

  • To create a database of customers and prospects

  • To send newsletters, requests, and direct marketing mailings

  • To answer your information requests and other inquiries
     

Legal basis:

  • Performance of a contract to which you are party and/or taking steps at your request prior to entering into a contract

  • Performance of a contract to which you are party

  • Our legitimate interest in developing and promoting our business

  • Our legitimate interest in winning customer loyalty and informing our customers of our latest news

  • Our legitimate interest in responding to your inquiries and keeping records of them
     

Data retention period:

  • Personal data are retained for the duration of your account when you have created an account.

  • Personal data are retained for the duration of our business relationship. Additionally, the data relating to your transactions are archived for probationary purposes for a period of five years.

  • For prospects: personal data are retained for three years starting from the last contact with us.

  • Personal data are retained during the processing of your request and are deleted once the request has been processed.

  • Invoices are archived for ten years.

  • Data relating to transactions are archived for probationary purposes for five years.

  • Proofs of identity, if requested, are only retained for the necessary time to verify your identity. Once verified, they are deleted.

  • If you exercise your right to object to direct marketing, we keep this information for three years.
     

IV. Who are the recipients of your personal data?

The following may have access to your personal data:

  1. The staff of our company.

  2. Our processors, including hosting providers, office suite providers, and collaborative work tools.

  3. Public and private organizations, exclusively to comply with our legal obligations.

​

V. Is your personal data likely to be transferred outside the European Union?

Your personal data is hosted for the duration of processing on the servers of Amazon Web Services, located in the European Union (Germany and France).

As part of the tools we use (see article on the recipients of your personal data, especially our processors), your personal data may be transferred outside the European Union. The transfer of your personal data in this context is secured using the following safeguards:

  • Transfers to countries recognized as ensuring an adequate level of protection by the European Commission under GDPR Article 45.

  • Transfers to countries not recognized as adequate are based on appropriate safeguards, including but not limited to Standard Contractual Clauses, Binding Corporate Rules, or an approved certification mechanism.

  • Transfers compliant with any other appropriate safeguards described in Chapter V of the GDPR.
     

VI. What rights do you have regarding your personal data?

You have the following rights regarding your personal data:

  1. Right to be informed: This privacy policy explains your rights as defined by GDPR Articles 13 and 14.

  2. Right of access: You can access your personal data at any time under GDPR Article 15.

  3. Right to rectification: You can correct inaccuracies in your data under GDPR Article 16.

  4. Right to restriction of processing: You can restrict processing under certain conditions under GDPR Article 18.

  5. Right to erasure: You can request the deletion of your data under GDPR Article 17.

  6. Right to file a complaint: File complaints with a competent authority (e.g., the CNIL in France) if you believe your data processing breaches regulations.

  7. Right to define post-mortem instructions: Specify how your data should be handled after your death under French law.

  8. Right to withdraw consent: Withdraw consent at any time under GDPR Article 7.

  9. Right to data portability: Receive and transfer your data in a standard format under GDPR Article 20.

  10. Right to object: Object to the processing of your data under GDPR Article 21.

To exercise these rights, contact us using the details provided below. We may ask for proof of identity.

​

VII. Digital Marketing Service Providers

We periodically appoint digital marketing agents to conduct marketing activities on our behalf, which may involve compliant processing of personal information. Our appointed data processors include:

  • Prospect Global Ltd (trading as Sopro), registered as UK Co. 09648733. View their privacy policy at http://sopro.io.

​

VIII. Contact information for data privacy matters

​

IX. Modifications

We may modify this privacy policy at any time to reflect changes in regulations, jurisprudence, or technical updates. Changes will apply from the effective date of the revised version. Please regularly consult the latest version. Significant changes will be communicated to you.

bottom of page