Privacy Policy | Official ticketing

PRIVACY POLICY

Privacy and security are of the utmost importance to the FFT and we strive to ensure that the technical and organisational measures we have in place respect your data protection rights.

This Privacy Policy describes our policies regarding the management, processing and storage of personal data submitted in connection with the services offered by the website https://tickets.parispadelmajor.com/fr (the "Site").

IDENTITY OF THE DATA CONTROLLER

The personal data that may be collected via the Site are collected by the Fédération Française de Tennis (the "FFT"), an association governed by the law of 1 July 1901 (intracommunity tax number: FR 63 775 671 381), recognised as being of public utility by decree dated 13 July 1923, having its registered office at Stade Roland-Garros - 2, avenue Gordon-Bennett - 75016 Paris.

IDENTITY OF THE DATA PROTECTION OFFICER

The FFT's Data Protection Officer is Mr Ibrahima Souaré (Tel: 01 47 43 52 03 - Email: dpo@fft.fr).

PERSONAL DATA COLLECTED VIA THE SITE

The data collected by the FFT is that which you communicate to it: it is limited to that which is strictly necessary for the provision of the services offered on the Site, namely:

Categories of data	Examples of data
Identification data	Civil status, surname, first name, date of birth, language used
Contact details	Email address, postal address (delivery and billing), telephone number
Data about your preferences	Choice of receiving offers from FFT partners [CP2]
Your order details	Ticket order number
Données bancaires et financières	Banking and financial data
Data relating to the follow-up of the customer relationship	Date of creation of the account, history of ticket orders, history of refunds, requests for information/complaints, exchanges with the FFT's customer relations department if applicable

Some data are automatically collected on the Site:

Location data	Location data by geographical area (district, city...)	This data is only collected and processed with your prior consent
Connection and navigation data	Date and time of connection, IP address, location of IP address, newsletter registration IP, pages visited, browser type, browser language, event logs	This data is necessary for the proper technical functioning of the Website and the services it offers, as well as for measuring the use of the Website

LEGAL BASIS FOR PROCESSING

Some personal data about you is collected automatically as a result of your actions on the Site (see the section on cookies). Apart from this data, when you register or when you use the services offered by the Site, the following data may be collected and processed:

Purposes	Examples of uses	Legal basis
Creating and managing your account on the Internet	to create your account to allow you to authenticate yourself; to allow you to update your account	Contractual measures
Management of orders and invoicing	to process the purchase of your tickets; to manage invoices and payments; to follow up on customer relations	Contractual measures
Customer service management	pour répondre à vos demandes ; pour vous rembourser : pour traiter vos réclamations	Contractual measures
Personalising your user experience on the Website	to personalise your content and your navigation on the Website	Your consent
Improving the Website and your user/customer experience	to evaluate and improve the Website - to facilitate your navigation on the Website - to ensure the security of the Website	FFT's legitimate interest in improving the Website and your user/customer experience
Management of pre-litigation or litigation	to enforce any breach of the Website T&Cs or any other identified breach to manage any dispute or litigation	Legitimate interest of the FFT to defend its rights and interests
Compliance with legal and regulatory obligations	to comply with legal and regulatory obligations, particularly in the context of bookkeeping to respond to your requests to exercise your rights for the FFT, to ensure compliance with its administrative regulations	Legal and regulatory obligations of the FFT

RECIPIENS OF PERSONAL DATA

The personal data concerning you collected on the Site by the FFT or on its behalf is collected for the FFT's own purposes and is intended for the FFT. Access to your personal data is strictly limited to authorised persons of the FFT, authorised by virtue of their functions and bound by an obligation of confidentiality.

However, your personal data may be processed on behalf of the FFT by, or communicated to, subcontracting companies contractually responsible for carrying out the tasks necessary for the proper functioning of the Site and its services, as well as for the proper management of the relationship with you, or communicated by the FFT to subcontractors, without you needing to give your permission. It is specified that, in the context of the performance of their services, the subcontractors have only limited access to your data and are contractually obliged to use it in accordance with the legal and regulatory provisions applicable to the protection of personal data. These include: payment service providers, for payment execution purposes only, subcontractors such as hosting companies, IT service providers, etc., for technical or logistical purposes only.[CP3]

YOUR RIGHTS REGARDING THE PROTECTION OF YOUR DATA

In accordance with the amended "Informatique et Libertés" law of 6 January 1978 and the European Regulation n°2016/679/EU of 27 April 2016, you have the following rights:

● Update or delete your data by logging into your account and configuring its settings;

● Exercise your right of access, to find out what personal data is held about you;

● Request the update of your data, if it is inaccurate;

● Request the portability or deletion of your data;

● Request the deletion of your account;

● Request the restriction of the processing of your data;

● Object, on legitimate grounds, to the processing of your data;

● Oppose or withdraw your consent to the use of your details by our services for the sending of our promotions and solicitations by email, SMS messages, telephone calls and postal mail. This right remains valid whether your information has been provided to us directly by you or by third party partners to whom you have provided it (in which case you should click on the unsubscribe links provided in our SMS or emails or contact us as set out below).

You can exercise your rights either by modifying the parameters of your account, or directly on the Site under the heading "Contact Us [CP4] " or by post to the following address Customer Service - Fédération Française de Tennis - Stade Roland-Garros - 2 avenue Gordon Bennett 75016 PARIS, or by email at the following address: billetterie@parispadelmajor.com or by contacting the FFT's Data Protection Officer (Tel: 01 47 43 52 03 - Email: dpo@fft.fr). Your requests will be processed within 30 days. For security reasons and to avoid any fraudulent requests, we may require the production of valid proof of identity and/or proof of authority in support of your request.

For any additional information or complaint, you can contact the Commission Nationale de l'Informatique et des Libertés (more information on www.cnil.fr).

Finally, we would like to inform you of the existence of the "Bloctel" list of opposition to telephone canvassing, on which you can register (https://conso.bloctel.fr/).

COOKIES/TRACKING

The site uses cookies to collect certain information. To find out more about the cookies used, in particular their purpose and retention period, as well as how to set the parameters of the cookies, please consult the "cookies policy" page accessible at the foot of the page.

DATA STORAGE

In general, your personal data is kept only for the period necessary to fulfil the purposes for which it was collected or to comply with legal or regulatory requirements.

Purposes	Data storage
Creating and managing your account on the Website	On an active basis: Until you delete your account on the Website or if it is inactive for three (3) years from your last login.
Creating and managing your account on the Website	In intermediate storage: Following the deletion of your account, or the expiry of the three (3) year period of inactivity, only the data necessary for pre-litigation or litigation purposes are archived until the legal statute of limitations has expired (5 years.)
Management of orders and invoicing	On active basis: Until your order is fully processed.
Management of orders and invoicing	In intermediate base: Following the complete processing of your request: the data necessary for the execution of legal and commercial guarantees are archived five (5) years from the delivery of the order; the data necessary for pre-litigation or litigation purposes are archived until the legal prescription period has expired (5 years).
Customer service management	On active basis : Until your request/complaint/complaint is fully processed.
Customer service management	On an intermediate basis : Following the complete processing of your request/complaint/complaint, only the data necessary for pre-litigation or litigation purposes are archived until the legal prescription period is acquired (5 years)
Personalising your user experience on the Website	Up to twenty-four (24) months.
Amélioration du Site Internet, ainsi que de votre expérience utilisateur/client	Up to twenty-four (24) months.
Management of pre-litigation or litigation	On active basis: For the duration of the pre-litigation or litigation.
Management of pre-litigation or litigation	In intermediate storage: At the end of a pre-litigation phase, the data are archived until the dispute is settled out of court or, failing that, as soon as the corresponding legal action is time-barred. At the end of a dispute, the data are archived until the ordinary and extraordinary remedies are no longer available against the decision given.
Compliance with legal and regulatory obligations	On active basis: For accounting data, until your order has been fully processed; For requests to exercise rights, until the request has been fully processed.
Compliance with legal and regulatory obligations	On an intermediate basis: Following the complete processing of your order, the data is archived for up to ten (10) years from the end of the accounting period for data kept for accounting purposes, as well as for commercial documents (invoices, commercial correspondence, etc.). Following the complete processing of requests to exercise rights, the data are archived : for six (6) years for requests for the right to object ; for one (1) year for requests for the right of access, the right of rectification, the right to erasure, the right to limitation.

LOCATION OF DATA STORAGE AND TRANSFERS

The hosting servers on which we process and store our databases are located exclusively within the European Union.

We undertake to inform you immediately, insofar as we are legally entitled to do so, in the event of a request from an administrative or judicial authority concerning your data.

SECURITY

In the context of our services, we attach the utmost importance to the security and integrity of our customers' and users' personal data.

Accordingly, and in accordance with the GDPR, we undertake to take all reasonable precautions to maintain the security of the data, and in particular to protect it against accidental or unlawful destruction, accidental loss, alteration, unauthorised disclosure or access, as well as against any other form of unlawful processing or disclosure to unauthorised persons.

To this end, we implement industry standard security measures to protect personal data from unauthorised disclosure. By using industry-recommended encryption methods, we take the necessary steps to protect payment and payment card information.

In addition, in order to prevent unauthorised access, ensure accuracy and proper use of data, we have put in place appropriate electronic, physical and managerial procedures to safeguard and preserve the data collected in the course of using our services.

Nevertheless, no one can consider themselves completely safe from an attack by hackers. That is why, in the event of a security breach affecting you, we undertake to inform you as soon as possible and to make our best efforts to take all possible measures to neutralise the intrusion and minimise its impact. In the event that you suffer damage as a result of the exploitation of a security breach by a third party, we undertake to provide you with all the necessary assistance so that you can assert your rights.

LIMITATION OF LIABILITY

Any content downloaded from the Site is done so at the user's own risk and under his/her sole responsibility. Consequently, the FFT cannot be held responsible for any damage to the user's terminal or for any loss of data resulting from a download.

MODIFICATION OF THE PRIVACY POLICY

The FFT reserves the right to change this Privacy Policy at any time, particularly in response to changes in applicable laws and regulations. You will be notified of any such changes via the Site. We recommend that you check these laws and regulations from time to time in order to remain informed of our procedures and rules regarding your personal information.

CONTACT US

Visit our contact page if you have any questions.

You can also contact the FFT's Data Protection Officer directly by email (dpo@fft.fr), or by post at Fédération Française de Tennis: Délégué à la Protection des Données - Stade Roland-Garros, 2 avenue Gordon-Bennet - 75016 Paris, France.