Privacy Policy
Carfics (“we”, “us”, or “our”) has created this privacy policy (“Policy”) to inform you (“you” or “your”) of when and how information is collected, used, disclosed and protected when you use our services (“Service”). By using the Service, accessing our websites, or accessing our mobile applications, you consent to the privacy practices described in this Policy. You acknowledge that this Policy is to be read in conjunction with our Terms of Service available at https://www.carfics.com/terms and that by accessing and using our websites, our apps, or Service, you agree to be bound by the Terms of Service as well as this Policy.
We reserve the right to update and change this Policy from time to time and will provide notice to you by changing the “last updated” date above. All changes are prospective only. It is your obligation to be familiar with the most current version of the Policy. Continued use of the Service after any such changes shall constitute your acknowledgment of and consent to such changes. You can review the most current version of the Policy at any time at https://www.carfics.com/privacy.
If you are using the Service on behalf of a company or other legal entity, you represent and warrant that you have the authority to bind that company or other legal entity to this Policy, in such event, “You” will refer and apply to that company or other legal entity.
INFORMATION GATHERING
We collect, use and disclose two types of information: Personal Information and Non-Personal Information.
COOKIE POLICY
Like many websites, we use “cookies” to collect information. A cookie is a small data file that we transfer to your computer’s hard drive for record-keeping purposes. Most web browsers automatically accept cookies as the default setting. For example, we use cookies to enable you to use the Service without re-entering your username and password if you select to use the “Remember Me” functionality. A “web beacon” is an electronic image that is embedded in a web page. We use “web beacons” to count visits and compile statistics on usage or in our emails to tell if an email has been opened or acted upon.
We have also included information about cookies set by third parties. Given that these relate to third party services, we cannot guarantee the completeness or accuracy of the list, but we can say that we have done our best to ensure the list is as accurate as possible at the time this policy was prepared. Nevertheless, we strongly recommend that you consult the third party websites listed in the cookie descriptions to find out more about the third party cookies in question.
Cookies set by Carfics
id This cookie provides a temporary identifier so that we can track unique users across different requests.
rememberMe This is a cookie which allows you to return to online.carfics.com without having to type in your username/password combination again.
_Carfics_reports_distance_unit, _Carfics_reports_volume_unit, mp, nav_state This cookie is used to keep track of a user’s preferences.
_Carfics_session This cookies is used to keep track of a user’s session, so that they can remain logged in.
Cookies set by third parties
identify, ajs_anonymous_id, ajs_user_id, ajs_group_id, seg_xid, seg_xid_fd, seg_xid_ts Cookies set by Segment.
We use Segment to gain deeper understanding of how visitors and users engage with our service. You can find more information about Segment’s privacy policy here: https://segment.com/docs/legal/privacy/
__utma, __utmb, __utmc, __utmv, __utmz, _ga Cookies set by Google Analytics, which is a service we use to gain a better understanding of how people use our service. You can read more about Google’s privacy policy here: https://policies.google.com/privacy?hl=None
__distillery, muxData Cookies set by Wistia, a video player, to keep track of videos and video playback locations. You can find more information about Wistia’s privacy policy here: https://wistia.com/privacy
_drip_client Cookies set by Drip. Drip allows us to follow up appropriately when visitors submit an online form or request for information and to send emails to Prospects and Customers who have expressed interest in receiving emails from us. You can find more information about Drip’s privacy policy here: https://www.drip.com/privacy
_hp2_id Cookie set by Heap Analytics to capture customer touchpoints. You can find more information about Heap Analytics’ privacy policy here: https://heapanalytics.com/privacy
_jsuid Cookie set by Clicky to see how anonymous visitors interact with our website. You can find more information about Clicky’s privacy policy here: https://clicky.com/terms
_ok, _okbk, _okdetect, _oklv, olfsk, wcsid, hblid Cookie set by Olark Live Chat software, which provides functionality for websites to engage in instant messaging communication with visitors. Contains a site identifier, used for security purposes. You can find more information about Olark’s privacy policy here: https://www.olark.com/privacy-policy/
fs_intercom, fs_uid Cookies set by Full Story to record user experiences, allowing us to the improve user experience of our product. You can find more information about Full Story’s privacy policy here: https://www.fullstory.com/legal/privacy/
intercom_id, intercom_iou, intercom_session Cookies set by Intercom which allows us to help Customers better use Carfics through opt-in email and in-app communication. You can find more information about Intercom’s privacy policy here: https://www.intercom.com/terms-and-policies#privacy
km_ai, km_lv, km_ni, kvcd Cookies set by Kissmetrics which allows us to understand what visitors are interested in learning more about and improve our marketing site experience. You can find more information about Kissmetrics’ privacy policy here: https://signin.kissmetrics.com/privacy/
We recommend that you review your browser's privacy settings and adjust them accordingly if you wish to deny cookies from any sites.
USE OF PERSONAL INFORMATION
We use collected information about you to process your requests or billing transactions, to provide you with information or services you request, to inform you about other information, events, promotions, products, or services we think will be of interest to you, and to support and facilitate your usage of the Service.
We also use collected information to track engagement in key product areas in an effort to continually improve the user experience. As mentioned above, you reserve the right to remove yourself from that type of tracking.
INFORMATION SHARING AND DISCLOSURE
We will not give, sell, rent, share, or trade any of your Personal Information or any data that you store using our Service to any third party except i) with your explicit consent or ii) as outlined in this Policy. We reserve the right to share Non-Personal Information and Aggregate Data as described in this Policy.
We may share Personal Information with third party service and technology providers to facilitate the operation of the Service, to perform related services (e.g., without limitation, maintenance services, database management, web analytics and improvement of the Service’s features, or to process credit card payments), or to assist us in analyzing how our Service is used.
We may disclose Personal Information to a third party to comply with a court order, subpoena, search warrant, or other legal processes; to comply with legal, regulatory, or administrative requirements of any governmental authorities; to protect and defend us, our subsidiaries and our affiliates, and our officers, directors, employees, attorneys, agents, contractors, and partners, in connection with any legal action, claim, or dispute; to enforce the Terms of Service; to prevent imminent physical harm; and in the event that we find that your actions violate any laws, our Terms of Service, or any of our usage guidelines for specific products or services.
We may share Personal Information in connection with an acquisition, merger, consolidation or sale of all or a portion of our business, with or to another company. In any such event, you will receive notice if your data is transferred and becomes subject to a substantially different privacy policy.
MODIFYING YOUR PERSONAL INFORMATION
If you are a registered user of our Service, you may review, update, correct or delete your personal information by logging into the Service and editing your profile.
SECURITY
We are very concerned with safeguarding your information. We take reasonable steps to protect the information we collect from you to prevent loss, misuse and unauthorized access, disclosure, alteration, and destruction. Highly confidential personal information such as credit card data is protected with encryption using Secured Socket Layer (SSL) technology during transmission over the Internet. But, remember that no method of transmission over the Internet or method of electronic storage is 100% secure.
Your account information and access to our Service is accessible only through the use of an individual username and password. You should keep your password confidential and do not disclose it to any other person. Please note that we will never ask you to disclose your password in an unsolicited phone call or email. You are responsible for all activities which are conducted using your account or password.
All data in the Service is stored and processed through third party subprocessor Amazon Web Services (AWS), which has its processing in the United States of America and Ireland. You can learn more about AWS’ privacy and security processes here: https://aws.amazon.com/privacy/
BREACH PROTOCOL
In the case of a data breach, we will notify affected users – without undue delay and where feasible – within 72 business hours. The notification will include the nature of the breach, likely consequences, a detail action plan and a main technical point of contact at Carfics.
NON-U.S. USERS
If you are in located outside the United States of America then by using the Service, you understand and consent to the processing of personally identifiable information on secure servers within the United States of America and in the European Union (EU). For non-U.S. users, European Union General Data Protection Regulation (GDPR) compliance and Privacy Shield certification information can also be found as stated below.
European Union General Data Protection Regulation (GDPR)
As a data controller, we have updated our Service and processes as required by GDPR, including giving data subjects in the European Union the following rights
Please see below for more details about the GDPR compliance of our data subprocessor, AWS.
If you require measures beyond our Privacy Policy and Privacy Shield certification, please access our Data Processing Agreement (DPA) here.
Privacy Shield
We comply with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. We have certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/list.
In compliance with the Privacy Shield Principles, we commit to resolve complaints about our collection or use of your personal information. European Union individuals with inquiries or complaints regarding our Privacy Shield policy should first contact us at [email protected].
We commit to cooperate with Data Protection Authorities and comply with the advice given by the panel established by Data Protection Authorities with regard to data transferred from the EU. The Federal Trade Commission has jurisdiction over our compliance with the Privacy Shield.
An individual has the possibility, under certain conditions, to invoke binding arbitration for complaints regarding Privacy Shield compliance not resolved by any of the other Privacy Shield mechanisms as outlined here: https://www.privacyshield.gov/article?id=ANNEX-I-introduction
Amazon Web Services (AWS)
As mentioned above, all data in the Service is stored and processed through third party subprocessor Amazon Web Services (AWS), with processing in the United States of America and Ireland. AWS’ security and compliance experts confirm that AWS has in place effective technical and organizational measures for data processors to secure personal data in accordance with the GDPR (https://aws.amazon.com/blogs/security/all-aws-services-gdpr-ready/), and AWS is also certified by Privacy Shield (https://www.privacyshield.gov/participant?id=a2zt0000000TOWQAA4&status=Active) on both the EU-U.S. and Swiss-U.S. privacy frameworks.
QUESTIONS
If you have any questions about this Privacy Policy, please contact us.
Société CARFICS SAS - 177b avenue Louis Lumière, 34400 Lunel, FRANCE - RCS Montpellier B 838 648 459. SIRET 83864845900017
Carfics Copyright © 2018