Privacy policy

Stylish restaurant interior with round wooden tables, beige chairs, golden hanging chandeliers, and artistic wall decor.

Within the Groupe Pic, we attach particular importance to the protection of privacy and to compliance with applicable regulations on personal data.

The purpose of this privacy policy (hereinafter the “Policy”) is to inform users of the Groupe Pic website (hereinafter the “Site”).) about how their personal data is collected, used, and protected.

It is intended for anyone accessing the Site, in particular as a visitor, prospect, customer, partner or candidate.

1. Data controller

The processing of personal data implemented via the Site is carried out under the responsibility of:

Groupe Pic — 75, rue Pierre Corneille 26000 Valence (hereinafter the “Data Controller”)

Groupe Pic acts on its own behalf and, where appropriate, for that of its operational subsidiaries, in particular PIC and Louvre Gourmet, depending on the nature of the requests sent via the Site.

  

2. Regulatory framework

The Groupe Pic is committed to complying with applicable regulations concerning the protection of personal data, and in particular:

- The Regulation (EU) 2016/679 of 27 April 2016 (RGPD);

- The Law No. 78-17 of 6 January 1978 modified, called “Informatique et Libertés”.

  

3. Definitions

 

Here are some definitions to help you better understand this Policy:

- Personal data/Personal data : any information relating to a natural person directly or indirectly (name, email address, telephone number, reservation number, IP address, etc.).

- Data Protection Officer — DPO/DPO: the person in charge of the proper management of the protection of personal data within the organization that appointed him.

- Treatment :action or operation performed on the data: collection, access, recording, recording, copying, transfer, storage, communication, destruction, etc.

- Treatment manager : the person who determines the purposes and means of data processing: why and how your data will be used. In this case, it's Groupe Pic.

- Subcontractor : the person who carries out data processing on behalf of and on instructions of the data controller.

- Site :brings together all of Groupe Pic's web pages, content, publications, publications, news and discoveries about establishments: hotels, restaurants in France and abroad and the business seminars offered on these pages.

- User : any person who accesses and navigates the Site (the User may be a Customer).

- Customer : anyone who goes to one of the establishments (restaurants, hotels) of Groupe Pic as an individual or professional.

  

4. What data do we process?

 

We take care to collect only the data necessary to achieve our purposes. And we indicate with an asterisk (*) the data that must be filled in in the various forms.

These may include:

Identification data: title, last name, first name, email, telephone number, comments (age of children, dietary preferences or restrictions);

Data relating to our exchanges : free message area, subject of your request, which may contain sensitive information relating to personal life (dietary preferences or restrictions in particular);

Data relating to professional life : in case of a spontaneous application (CV, cover letter, image, etc.);

Health data : information relating to food allergies.

Navigation data : timestamp, IP address, type of equipment, browser used, etc.;

Bank details : for the reservation of rooms and/or tables.

  

5. Why do we process your data?

We process your data for explicit, legitimate and specific purposes. In this respect, we have established and maintain a register of our processing activities.

Personal data concerning you can be collected either:

- Directly from you: when you browse the Site, when you fill out one of our forms, when you send us a message or when you exercise one of your rights for example.

- Indirectly: when you visit us following a stay or a gourmet meal offered to you by a loved one.

Below, we tell you what we use your data for (purposes) and what gives us the right to collect them (legal basis).

 

Purpose: Management (administrative and technical) of the Site

Legal basis: Legitimate interest

Purpose: Management of table reservations

Legal basis: Legitimate interest

Purpose: Management of the proper functioning and security of the Site

Legal basis: Contractual execution

Purpose: Customer relationship management (requests or complaints), management and improvement of the Customer experience.

Legal basis: Legitimate interest

Purpose: Monitoring of navigation on the Site

Legal basis: Consent

Purpose: Newsletter subscription management

Legal basis: Consent

Purpose: The management of any request relating to the Site or requests in connection with the services offered

Legal basis: Legitimate interest - Consent

Purpose: Improving the Site, our products and services

Legal basis: Legitimate interest

Purpose: Form Management

Legal basis: Legitimate interest

Purpose: Management of spontaneous applications

Legal basis: Execution of pre-contractual measures

Purpose: Management of requests for quotes and professional events (seminars, meetings, etc.)

Legal basis: Pre-contractual measures

Purpose: Commercial prospecting

Legal basis: Legitimate interest

 

 

6. Who is the data intended for?

 

Only the authorized and determined persons mentioned below may have access to your data:

- The authorized staff of Groupe Pic;

- The operational subsidiaries concerned depending on the nature of the request (in particular establishments located in Valence or Paris);

- Groupe Pic subcontractors, such as the host of the Site, the designer of the Site, the service providers (Zenchef for reservations);

- The courts concerned, mediators, accountants, accountants, auditors, bailiffs, lawyers, debt collection company.

 

 

7. How long is the data stored for?

 

Groupe Pic undertakes to ensure that the data collected is kept for a period of time that does not exceed the time necessary for the purposes set out above.

In order to define these periods, we refer to the legal provisions in force, to any limitation periods, and to the recommendations and guidelines of the CNIL.

Type of treatment: Response to a contact request

DShelf life: The time required to respond and fulfill the request.

Type of treatment: Recruiting Management

Shelf life:For the time required for recruitment.

In the absence of recruitment, the data is kept two (2) years after the last contact (unless otherwise advised by the candidate).

 

Type of treatment: Newsletter management

Shelf life: The data is stored until the person concerned is unsubscribed.

 

Type of treatment: Data relating to our exchanges/Commercial prospecting

Shelf life : Three (3) years after the last contact or interaction for unanswered requests. In the event of a contractual relationship, conservation for the duration of the contract.

 

Type of treatment: Request for quotes/events

Shelf life: Duration of the project, then archiving according to legal obligations

 

Type of treatment: Health data

Shelf life: Strictly limited to the time required to process the request. Immediate cancellation after the end of the event or service (e.g. end of stay or meal).

 

Type of treatment: Data relating to site navigation

Shelf life: One (1) year for connection logs and technical information, unless a legal obligation requires longer retention (judicial investigation for example).

 

Type of treatment: Bank details

Shelf life: Duration of the transaction for one-off bookings, with immediate deletion after the transaction if not recorded. If the user chooses to register his bank details, they are kept until the expiry of the validity of the bank card data, or until the user requests their deletion.

7. How does Groupe Pic secure your data?

 

Groupe Pic and its possible partners are committed to implementing all technical and organizational measures to ensure the security of your data.

 

As such, we take every precaution to ensure the confidentiality, integrity and availability of your data and the resilience of our Information System.

 

8. Exercising your rights

 

For any information or to exercise your Data Protection rights on the processing of personal data managed by Groupe Pic, you can contact:

 

- our data protection officer at the address: contact-rgpd@groupe-pic.fr

or

- send us a letter to the following address:

Data Protection Officer - Groupe Pic, 75 rue Pierre Corneille, 26000 Valence

 

By indicating your contact details (name, first name, reservation number if applicable).

 

Note that a copy of an identity document may be requested in order to prevent any attempt at identity theft. This copy will only be kept for as long as necessary for the verification and will then be destroyed.

 

 

9. Transfers outside the European Union (EU)

 

We take care to offer services and surround ourselves with subcontractors who respect the GDPR.

 

As part of the processing of data from visitors to the Site, we do not use Sub-processors outside the EU, with the exception of Google (headquartered in the United States), a country with a level of protection equivalent to the RGPD insofar as Google uses the Privacy Framework).

 

In the event of transfers, they are carried out under the supervision of our Data Protection Officer (DPO/DPD), who reviews the appropriate guarantees offered by subcontractors, and the measures to be implemented in order to ensure an adequate and sufficient level of protection in terms of data security and confidentiality, in accordance with the requirements of the Regulations.

 

 

10. Evolution

 

This Policy may be amended at any time in order to take into account legal, regulatory or Groupe Pic practices changes.

The version in force is the one published on the Site.