PRIVACY POLICY

FUTURING, a company incorporated in FRANCE – represented by Anne Chevalier – having its registered office at 35 Rue du Docteur Calmette, 06400 CANNES, under the company registration number 442 088 530 00039.

(“THE PROCESSOR”) 

  • PURPOSE 

FUTURING is a Marketing Events Agency created in 2002 specialized in European Events Organization in a B2B environment. We offer a wide range of High standards Events services combining Strategy, Innovation and Operational Management.  In terms of Data Protection, our ability to fulfill our commitments as a data processor to our customers, the data controllers, is a part of our compliance with GDPR where data controllers are using a service provider like us processing personal data. As part of our contractual relations, the parties shall undertake to comply with the applicable regulations on personal data processing and, in particular, Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 which is applicable from 25 May 2018, the General Data Protection Regulation. Hereinafter “the GDPR” 

  • DATA PROCESSING  

Futuring is authorized to process, on behalf of its customers, the necessary personal data for providing general services of Events Organization. The nature of operations carried out on the data is always specified to the customer before the processing bounded by the purpose of the contract. The purposes of processing are always linked and limited to the scope of Events organization provided by Futuring to its customers. The processed personal data are minimized and anonymized with care to its maximum by Futuring in compliance with the GDPR. 

To perform the service covered by Futuring, the customer shall provide Futuring with necessary requested information for an efficient running of operations during the Events organization. 

  • FUTURING’S OBLIGATIONS WITH RESPECT TO THE CUSTOMER 

 Futuring as the processor will undertake to: 

  • process the data solely for the purpose(s) subject to the contract 
  • process the data in accordance with the documented instructions from the customer as the customer appended hereto. Where Futuring considers that an instruction infringes the General Data Protection Regulation or of any other legal provision of the Union or of Member States bearing on data protection, it will immediately inform its customer thereof. Moreover where Futuring is obliged to transfer personal data to a third country or an international organization, under Union law or Member State law to which Futuring is subject, Futuring will inform its customer of that legal requirement before processing, unless that law prohibits such information on important grounds of public interest 
  • guarantee the confidentiality of personal data  
  • ensure that the persons authorized to process the personal data : have committed themselves to confidentiality or are under an appropriate statutory obligation of confidentiality & receive the appropriate personal data protection training  
  • take into consideration, in terms of its tools, products, applications or services, the principles of data protection by design and by default 
  • Futuring is authorized to engage other sub-processors that are obliged to comply with the obligations hereunder on behalf of and on instructions from its customer. It is Futuring’s responsibility to ensure that the sub-processor provides the same sufficient guarantees to implement appropriate technical and organizational measures in such a manner that processing meets the requirements of the General Data Protection Regulation. Where the sub-processor fails to fulfil its data protection obligations, Futuring remains fully liable regarding its customers for the sub- processor’s performance of its obligations. 
  • Data subjects’ right to information: at the time data are being collected, the customer must provide the data subjects concerned by the processing operations with information about the data processing it carries out such as a guests list management at an event – processing specified by Futuring to the customer.  
  • Exercise of data subjects’ rights: Futuring will assist its customer, insofar as this is possible, for the fulfilment of its obligation to respond to requests for exercising the data subject’s rights meaning right of access, to rectification, erasure and to object, right to restriction of processing, right to data portability, right not to be subject to an automated individual decision (including profiling).

If any data subjects submit requests to Futuring to exercise their rights, Futuring must forward these requests as soon as they are received by email at dataprotection@futuring.eu

  • Notification of personal data breaches: Futuring will notify its customer by email of any personal data breach not later than 48 hours after having become aware of it. Said notification will be sent along with any necessary documentation to enable its customer, where necessary, to notify this breach to the competent supervisory authority.
  • Assistance lent by Futuring to its customer regarding compliance with its obligations: Futuring will assist its customer in carrying out data protection impact assessments. Futuring will assist its customer regarding prior consultation of the supervisory authority.
  • Futuring undertakes to implement the following technical and organizational security measures in collaboration with its co-responsible subcontractor, the service provider of I.T network maintenance in terms of monitoring and securing its whole I.T systems – in compliance with the GDPR by:
  1. the pseudonymisation and encryption of personal data 
  2. the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services 
  3. the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident;  
  4. Reports of technical controls certifying regular tests, assessments, and evaluation of the effectiveness of technical and organizational measures for ensuring the security of the processing 

 

  • Futuring undertakes to destroy all personal data 60 business days following the service bearing on the processing of such data. Together with said return, all existing copies in Futuring’s information systems will be destroyed. 
  • Futuring’s Data Protection Representative, Anne Chevalier, can be reached for any purpose concerning Data Protection information at dataprotection@futuring.eu
  • Futuring states that it maintains a written record of all categories of processing activities carried out on behalf of its customer, containing:
  1. the name and contact details of its customer on behalf of which Futuring is acting, any other processors and, where applicable, the data protection officer; 
  2. the categories of processing carried out on behalf of its customer; 
  3. where possible, a general description of the technical and organizational security measures, including inter alia:
    • the pseudonymisation and encryption of personal data; 
    • the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services; 
    • the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident; 
    • a process with the collaboration of its I.T subcontractor for regularly testing, assessing, and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing. 
  • Documentation: Futuring provides the customer with the necessary documentation for demonstrating compliance with all its obligations 
  • THE CUSTOMER’S OBLIGATIONS WITH RESPECT TO THE PROCESSOR 

The customer undertakes to: 

  • provide Futuring with the necessary data
  • document, in writing, any instruction bearing on the processing of data by Futuring
  • ensure, before and throughout the processing, compliance with the obligations set out in the General Data Protection Regulation on Futuring’s part
  • Supervise the processing in collaboration with Futuring

WEBSITE

The website www.futuring.eu belongs to Futuring SARL which headquarters are 35 rue Docteur Calmette 06400 Cannes, France. The legal entity, Futuring, is responsible for the publication, and its email is: enquiry@futuring.eu.The webmaster, Laure Le Gallic is responsible of the website administration and can be contacted at enquiry@futuring.eu. The website www.futuring.eu is hosted by “In a Secure Way”