Privacy Policy

Somefor – Data Protection Policy (GDPR Compliance)

Somefor places particular importance on complying with the General Data Protection Regulation (GDPR) and ensures that users can easily access information on this subject through its website and various communication media.

 

Definitions

Client: Any natural person with legal capacity under Articles 1123 et seq. of the Civil Code, or any legal entity, who visits the website subject to these general terms and conditions.

Services: The services and solutions provided by Somefor to its clients.

Content: All elements comprising the information displayed on the Site, including texts, images, and videos.

Client Information: Hereinafter referred to as "Information", this includes all personal data that may be held by Somefor for managing the client relationship and for analytical and statistical purposes.

User: Any internet user connecting to and using the above-mentioned website.

Personal Data: “Information which allows, in any form whatsoever, directly or indirectly, the identification of the natural persons to whom it applies” (Article 4 of Law No. 78-17 of 6 January 1978). The terms “personal data”, “data subject”, “data processor”, and “sensitive data” have the meanings defined in the General Data Protection Regulation (GDPR: No. 2016/679).

 

Data Controller

For personal data collected during a User’s visit to the site www.somefor.com, the data controller is Somefor, represented by its legal representative.

As the controller of the data it collects, Somefor undertakes to comply with the legal framework in force. In particular, it is responsible for defining the purposes of data processing, providing complete information to prospects and clients upon collection of their consent, and maintaining a register of processing activities that reflects actual practices.

Somefor takes all reasonable steps to ensure the accuracy and relevance of personal data with regard to the purposes for which it is processed.

 

Purposes of Data Collection

Somefor may process all or part of the data for the following purposes:

• To enable browsing on the Site and to manage and track services used by the User: connection and usage data

• To prevent and combat IT fraud (spamming, hacking, etc.): computer hardware used for browsing, IP address, password

• To improve site navigation: connection and usage data

• To conduct optional satisfaction surveys on www.somefor.com: email address

• To carry out communication campaigns (SMS, email): phone number, email address

Somefor does not sell your personal data. It is only used where necessary or for statistical and analytical purposes.

Rights of Access, Rectification, and Objection

In accordance with current European regulations, Users of www.somefor.com have the following rights:

• Right of access (Article 15 GDPR), rectification (Article 16 GDPR), updating, and completeness of User data

• Right to erasure of personal data (Article 17 GDPR), when it is inaccurate, incomplete, ambiguous, outdated, or when its collection, use, communication or storage is prohibited

• Right to withdraw consent at any time (Article 13-2c GDPR)

• Right to restriction of processing (Article 18 GDPR)

• Right to object to data processing (Article 21 GDPR)

• Right to data portability (Article 20 GDPR), for data provided by Users where processing is based on consent or a contract and carried out by automated means

• Right to define instructions regarding the fate of their data after death and to designate a third party to whom Somefor may (or may not) disclose this information

In the absence of specific instructions from the deceased User, Somefor undertakes to delete the data, unless its retention is required for evidential or legal obligations.

If a User wishes to know how Somefor uses their personal data, requests rectification or opposes its processing, they may contact Somefor using the dedicated form provided.

Requests for deletion of personal data will be subject to legal obligations imposed on Somefor, particularly regarding data retention or archiving. Users of www.somefor.com may also lodge a complaint with supervisory authorities such as the CNIL (https://www.cnil.fr/en/complaints).

 

Non-Disclosure of Personal Data

Somefor shall not process, host or transfer client data outside the European Union or to countries not recognised as having adequate protection by the European Commission without informing the client in advance. However, Somefor remains free to choose its technical and commercial subcontractors, provided that they offer adequate safeguards in line with the GDPR requirements.

Somefor undertakes to take all necessary precautions to protect the security of the information and prevent its disclosure to unauthorised persons. In the event of an incident affecting the integrity or confidentiality of client information, Somefor will inform the client as soon as possible and detail the corrective actions taken.

Furthermore, Somefor does not collect “sensitive data”.

User data may be processed by subsidiaries of Somefor or by authorised service providers solely for the purposes outlined in this policy. The main recipients of user data are Somefor customer support agents and network distributors, within the scope of their responsibilities.

 

Types of Data Collected

Somefor also collects information that improves the user experience and client relationship. This data is retained for a maximum of 36 months after the end of the contractual relationship.

 

Incident Notification

Despite our best efforts, no method of transmission over the Internet and no method of electronic storage is completely secure. Therefore, we cannot guarantee absolute security.

Should a breach of security occur, Somefor will inform affected users promptly so they may take appropriate action.

Our incident notification procedures reflect our legal obligations, both at national and European level. We undertake to fully inform our clients of any security issues affecting their accounts and provide all necessary information to help them meet their own regulatory reporting requirements.

Data Non-Disclosure to Third Parties

No personal data of users of www.somefor.com is published, exchanged, transferred, assigned or sold to third parties without the user’s knowledge. Only the potential acquisition of Somefor and its rights would allow the transfer of said information to the new owner, who would in turn be bound by the same data protection obligations.

 

Security

To ensure the security and confidentiality of personal data, Somefor uses secure networks protected by standard mechanisms such as firewalls, pseudonymisation, encryption, and passwords.

When processing personal data, Somefor takes all reasonable steps to protect it against loss, misuse, unauthorised access, disclosure, alteration, or destruction.

 

Cookies

A “cookie” is a small data file sent to the User’s browser and stored on their device (e.g. computer, smartphone) (hereinafter “Cookies”). This file includes information such as the User’s domain name, Internet service provider, operating system, and access time and date. Cookies do not damage the User’s device.

Somefor may process User information about their visit to the Site, such as pages viewed and searches made, to improve the Site's content and user experience.

Cookies facilitate browsing and/or the provision of services on the Site. Users can configure their browser to choose whether or not to accept cookies, either systematically or based on the sender. The User can also configure their browser to be notified before a cookie is stored, allowing them to accept or reject it case-by-case.

If the User refuses the storage of cookies or deletes existing ones, their browsing experience may be affected. Some functionalities of the site may not be available or may not work properly.

In such cases, Somefor cannot be held responsible for any consequences linked to the degraded functioning of the Site and services due to the refusal or deletion of cookies by the User.

Each browser’s settings differ. Users can find more information in the help menu of their browser on how to change cookie preferences.

Users may modify their cookie preferences at any time. Somefor may also use external service providers to help collect and process the data described in this section.

By clicking on social media icons such as Twitter, Facebook, LinkedIn, or Google+ displayed on the Somefor website or app and continuing to browse the Site, users consent to those networks placing cookies on their devices. Users may withdraw this consent at any time.

 

Web Beacons (“Tags”)

Somefor may occasionally use web beacons (also known as “tags”, action tags, single-pixel GIFs, clear GIFs, or invisible GIFs) deployed via a web analytics partner that may be located (and store relevant information, including the User’s IP address) abroad.

These tags may appear in online adverts that lead users to the Site, as well as on various pages of the Site.

This technology enables Somefor to assess visitor responses and the effectiveness of its campaigns (e.g., how often a page is visited, what information is consulted), and to better understand how the Site is used.

 

The external service provider may collect information on visitors to the Site and other websites, compile activity reports for Somefor, and provide other services related to internet usage.