DATA PROTECTION CHARTER
Welcome to the CRISTAL application https://apps.arioflow.io/inspect/#/, (the “Application”). By connecting to or consulting the Application, you acknowledge having read, understood, and accepted, without limitation or reservation, the charter on the protection of personal data and cookies (the “charter”) and our general conditions of use.
The charter aims to inform you of the rights and freedoms that you can assert with regard to our use of your personal data and describes the measures that we implement in order to protect them.
TotalEnergies Marketing France is the ” controller ” personal data relating to the management of the Application. This processing is carried out in accordance with applicable law.
1. Purpose, basis for processing the data collected and duration
You are likely to provide us with a certain amount of personal data such as your first and last name, in order to benefit from the services offered by the Application and in particular to record, declare and monitor carrier events, as well as to monitor your use. of the Application (logs).
This data processing is based on our legitimate interest in providing you with this IT service as part of your duties.
You must provide your information (manager) to obtain access to the Application and identify yourself, otherwise you will not be able to access the Application.
Your personal data is not further processed in a manner incompatible with the purposes described above.
The retention periods for your personal data are detailed below:
Purpose of processing
The duration of the conversation
Treatment #1, Provision of the Application
Your data is kept for a maximum of one (1) year after your departure from the TotalEnergies company or after a change of position.
Treatment #2 Data relating to incident reporting forms
The data is kept for three (3) years from the recording of the event.
2. Data recipients
Your personal data may be communicated to the Supply Logistique France department of the controller or to companies of the TotalEnergies Company as well as to certain partners or subcontractors (carriers and drivers).
When you use the Application, some of your associated personal data may be published on the Application.
Any transfer of data to a third country outside the European Economic Area is carried out in accordance with the applicable regulations and in such a way as to ensure adequate data protection.
3. Data Transfers
As part of the services provided on the site, your data may be transferred to a Technical Partner located outside the European Union (Morocco).
In order to ensure adequate protection of personal data originating in the European Economic Area that may be transferred, “ Binding Corporate Rules (BCR) (Internal Corporate Rules) have been adopted by the Partner.
You can obtain a copy of the BCRs and other guarantees by writing to the contact address mentioned below and/or clicking here.
4. Security and confidentiality of your data
The controller implements appropriate measures to preserve the security and confidentiality of your personal data and, in particular, to prevent them from being distorted, damaged, or from unauthorized third parties having access to them.
5. Cookie management
5.1 Principle A cookie is a file that records information relating to your computer’s browsing on the Application (eg usage logs, etc.) and in particular facilitates your visits to the Application.
5.2 Types of cookies. The cookies that may be installed on your server when you use the Application are cookies whose sole purpose is to allow or facilitate communication by electronic means or which are strictly necessary for the provision of the service you request (language cookies , identification cookies, etc.).
You cannot oppose the installation of these cookies, necessary for navigation on the Application.
6. Your rights /Contact
In accordance with the regulations in force, you have the right to access, rectify, delete and oppose your personal data. You can request the communication of your personal data and you have the right to define directives relating to the fate of your personal data after your death. You can also request the limitation, and/or lodge a complaint with the CNIL.