The company Troof ('Troof' or 'we') may process the personal data ('Data') of consumers who scan Troof QR Codes ('Consumers' or 'you'). We place the protection of Data at the core of our concerns, and this Privacy Policy is designed to inform you about the data processing we carry out, in compliance with all European and French regulations on the protection of personal data and privacy, including the General Data Protection Regulation 2016/679 of April 27, 2016 ('GDPR') and Law No. 78-17 of January 6, 1978 on data processing, files, and freedoms, as amended.

1. DATA PROCESSING OBJECTIVES

Your Data is processed only for the following purposes:

• Responding to your demonstration requests;
• Improving our services and Site functionality;
• Ensuring the security of the Site;
• Safeguarding your rights and defending our rights;
• Analyzing site usage statistics.

We also use cookies. Find all the information by clicking on the link here

We process your Data (i) with your consent, which you can withdraw at any time; (ii) when it is necessary for the provision of our services or to respond to your requests; (iii) when it allows us to comply with a legal obligation to which we are subject; (iv) to ensure our legitimate interests related to the security of product sheets, their proper functioning, and to send you communications via email.

If you no longer wish to receive our communications, you can click on the unsubscribe link provided in our emails, or you can write to us at the following address: contact@troof.io

2. PROCESSED DATA

Only the Data strictly necessary for achieving the objectives specified above is processed. This Data is collected directly from you when you make a contact request or during the scan of the product sheet (data on product audience, product data, identity, contact details, connection data, data from technical cookies or trackers with your consent, preferences).

policy.dataHandledDetails2

3. DATA RECIPIENTS

We only share your Data with our subcontractors and partners when necessary to achieve one of the objectives mentioned above. Finally, your Data may be disclosed to third parties legally authorized to access it upon specific request, in certain cases provided for by law: judicial authority, administrative authority, etc. Your Data may also be communicated to third parties if necessary to protect and/or defend our rights or to enforce these provisions.

Your Data may be transferred outside the European Union, with the necessary safeguards, to our authorized service providers. For more information about the appropriate safeguards in place in this regard, you can contact us at the following address: dan@troof.io

4. DATA RETENTION PERIOD

We retain the Data collected through cookies for a maximum of 25 months.

For Data collected through other channels, we retain your Data for only 3 years from our last contact, unless a deletion request is made.

In addition, in accordance with the applicable legislation, the Data necessary for the defense of our rights is retained for a period of 5 years after the end of the relationship with us.

However, your Data may be retained for a longer period if an extended retention period is permitted or required under a legal, contractual, tax, or social obligation.

5. YOUR RIGHTS

In accordance with the Regulation (especially Articles 15 to 22 of the GDPR), you have the following rights concerning the processing of your Data, within the legal limits:

• Right of access: obtain information about your Data and a copy of your Data;
• Right to information: obtain information about the conditions of processing (recipients, purposes, categories of data, etc.);
• Right to rectification: correct or update your Data when it is inaccurate or incomplete;
• Right to object: object to the processing for reasons related to your particular situation, or withdraw your consent for processing based on this legal basis;
• Right to withdraw consent: when consent is the legal basis for processing;
• Right to restriction: request not to process all or part of the Data temporarily, without requesting deletion;
• Right to erasure: request the deletion of your Data;
• Right to data portability: obtain your Data in a structured, machine-readable format and be able to easily transmit it to a third party;
• Right to define specific directives for the processing of your Data post-mortem.

You can exercise your rights via the contact address mentioned below. In case of doubt about your identity, proof may be requested. We may reject any abusive or unfounded requests under the laws and regulations.

6. CONTACT

To contact us and ask questions about the processing of your Data, send us an email to the following address: dan@troof.io. In the event of an unsatisfactory response, you may contact the supervisory authority, the French National Commission on Informatics and Liberty (CNIL), located at 3 Place de Fontenoy - TSA 80715, 75334 PARIS CEDEX 07.