Privacy Policy
Last update: March 21, 2023
1. Introduction
This Privacy Policy applies to the website https://www.cees978.com/ (hereinafter the "Website") published by the Centre for Excellence and Education through Sport (hereinafter "Centre for Excellence and Education through Sport (CEES)" or "we") and to its other services and products for which personal data is communicated to the Centre for Excellence and Education through Sport (CEES)
Please read this Privacy Policy carefully as it explains how the Centre for Excellence and Education through Sport (CEES) uses your personal data and how to exercise your rights. This Privacy Policy supplements the Terms and Conditions or any other document or notice that may refer to this Privacy Policy.
If you have any questions, you can contact the Centre for Excellence and Education through Sport (CEES) directly by sending an email to contact@cees978.com.
2. Definitions
DATA is data about a living individual who can be identified from that data (or from that data and other information in our possession or likely to come into our possession).
USAGE DATA is automatically collected data generated by the use of the service or by the service infrastructure itself (e.g., the duration of a page visit).
The COOKIES are small files stored on your device (computer or mobile device).
DATA CONTROLLER means a natural or legal person who (alone or jointly with others) determines the purposes for which and the manner in which personal data are or are to be processed. For the purposes of this Privacy Policy, we are the controller of your data.
DATA PROCESSORS (OR SERVICE PROVIDERS) : any person or entity that processes data on behalf of the data controller. We may use the services of various service providers to process your data more efficiently.
The PERSON CONCERNED is any living person who is the subject of personal data.
The USER is the person who uses our service. The user is the person concerned, who is the subject of the personal data.
3. The legal context
We comply with the recommendations of the relevant authorities and have an organization in place to ensure our compliance with the regulatory framework established by the General Data Protection Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR) and any other laws or regulations relating to personal information that apply to us.
4. What is our role?
Under the GDPR, we are considered a data controller. This means that we define why and how we process your personal information. For example, when you visit our website, we are responsible for determining the purposes and means necessary to administer, operate and manage our users' personal information that we collect on this website.
Depending on the activity we perform on your data, we may also be considered a data processor. This means that you are the end user of our client and we process your data according to the instructions of our client, who is considered the controller. In this case, the controller defines the purposes and means of the processing activity, and we comply with and provide our service according to these.
5. What kind of personal information do we process?
We only collect and process personal information that is relevant and appropriate. We pay particular attention to its accuracy and to updating it when necessary. Personal information includes, but is not limited to
The collection of this information may sometimes be mandatory in order to provide our service, sometimes optional in order to improve your experience and left to your goodwill. Mandatory information will be identified as such at the time your data is collected. Please be aware that if you refuse to provide this information, the Centre for Excellence and Education through Sport (CEES) will not be able to provide you with its best service and you will unfortunately experience inconvenience.
6. When do we collect your personal data?
We collect your personal information at various times.
7. How do we use your personal information?
Your personal information will never be processed for purposes incompatible with the purpose for which it was collected. We collect and process personal information only for specified, explicit and legitimate purposes, such as:
In order to comply with the principle of legality, the legal bases for each data processing are carefully determined on a case-by-case basis, in accordance with the list provided for in Article 6 of the GDPR.
We do not process your data or use automated decision making without your knowledge, and we do not sell or rent your personal information without your explicit consent.
8. Who can access your personal data?
The recipients to whom we disclose your personal information are carefully selected by us. They receive data for legitimate purposes, such as continuing our business operations and providing quality service:
Some data recipients are considered our processors in accordance with Article 28 of the GDPR, which means that we review how they process personal information and ensure that they have appropriate safeguards in place to protect it.
Other recipients are considered authorized third parties in accordance with Article 4 of the GDPR, which means that we must share your personal information with them to comply with applicable legal obligations, legitimate requests and processes (subpoenas, requests from government or tax authorities, etc.).
9. Where do we transfer your personal information?
To the extent possible, your personal information is processed within the European Union. However, some of our service providers may be located in another country of which you are a resident or may operate outside the European Union.
When we transfer your personal information to a recipient outside of the European Union, we ensure that we have sufficient safeguards in place in accordance with the list provided by Articles 44-50 of the GDPR, whether that means storing it in a country with adequate privacy protection or entering into data protection agreements to ensure the protection of your personal information.
10. How long do we keep your personal information?
Generally, where we are considered a data controller under the GDPR, the retention periods for your personal information are determined based on the purposes for which we collected it and our legal obligations.
With respect to our activities as a data controller, we retain the personal information of our customers' end users for as long as required by our terms and conditions and the continuation of the service to which our customers have subscribed.
When these purposes are met or when you request us to do so, your personal information is archived, deleted or anonymized.
11. How do we protect your personal information?
We are very concerned about the security of your personal information and that is why we implement adequate technical and organizational security measures to preserve its confidentiality, integrity and availability.
We take into account the risks for your rights and freedoms and therefore follow with great attention the recommendations of the competent security authorities.
12. What are your rights and how to exercise them?
In accordance with Articles 12-23 of the GDPR, you have rights to your personal information that we are committed to respecting:
- you can request access to and a copy of your personal data
- you may ask us to amend your personal data if you believe it to be outdated, inaccurate or incomplete.
- you may object to the processing of your personal information if it is based on our legitimate interests in certain circumstances.
- you may request to restrict processing for a limited period of time under certain circumstances.
- you can withdraw from a consent already given, without this withdrawal affecting the legality of the processing already carried out.
- Where technically feasible, you may request that we send you the personal information you have provided to us or that we provide it to a third party.
- you may request that we delete your personal information if it meets applicable legal requirements.
These rights can be exercised directly and at any time by sending an email to contact@cees978.com. If you are the end user of our client, please take into account that this request will be forwarded to and responded to directly.
13. Policy changes
This privacy policy may be amended in the future to update it in accordance with case law and changing legislation. You will be notified of such changes either by a special notice on this page or by a personalized notice, for example by e-mail.
14. Contact us
If you have any questions about this Privacy Policy, please contact us by email at contact@cees978.com.