PROTECTION OF PERSONAL DATA
Legal framework and compliance
The processing of personal data by FONDIS Electronic is subject to Regulation (EU) 2016/679 of 27 April 2016 (GDPR) and the French Data Protection Act of 6 January 1978.
Purposes and legal bases
Your data is collected for explicit, legitimate and specific purposes, based on the performance of the sales contract or the company’s legitimate interest:
- Order management: delivery, invoicing, accounting records (Legal basis: Contract).
- Customer relations: after-sales service, satisfaction surveys, review management (Legal basis: Legitimate interest).
- Marketing communications: sending news and offers (Legal basis: Legitimate interest in B2B).
Data collected
We collect only the data strictly necessary: identity, contact details (address, email, telephone). Regarding bank details: Transactions are secured by our payment service provider.
Recipients of the data
Your data is confidential. It is never sold to third parties. However, to ensure orders are processed correctly, certain data is shared with our trusted service providers (subcontractors):
- Logistics providers (for delivery).
- Payment providers (for the transaction).
- Accounting provider (for invoicing).
Security and Retention
FONDIS Electronic implements all necessary technical and organisational measures to protect your data (IT security, restricted access). Data required for order management and invoicing is retained for the duration of the commercial relationship and for ten years to meet accounting obligations.
Your rights
In accordance with the regulations, you have the rights of access, rectification, erasure, data portability and the right to object to the processing of your data. You may exercise these rights by contacting us at: dpo@physitek.fr.
Note: For security reasons, you may be asked to provide proof of identity in the event of reasonable doubt regarding your identity.
In the event of a dispute, you have the right to lodge a complaint with the CNIL: https://www.cnil.fr/fr/plaintes/.