top of page

Privacy Policy

NB.jpg

La version française de la Politique de confidentialité est accessible ici.

This Privacy Policy is edited by the “Société d’Economie Mixte des Evénements Cannois” (S.E.M.E.C.), a French company having its registered office at La Croisette – CS 30051 – 06414 CANNES and registered with the Cannes Trade and Company Register under the number B383 150 232 (hereafter, the “Data Controller”).

The Data Controller offers a website available at the following URL address www.midem.com (hereafter “the Site”) which allow its users (hereafter the “Users”) to obtain information and news regarding MID3M+ events and register to those events.

In this regard, the Data Controller collects and processes User’s personal data in accordance with the Privacy and Cookie policy.

The Data Controller is particularly aware and sensitive with regards to the respect of its Users privacy and personal data protection. The Data Controller commits to ensure the compliance of the processing it carries out as data controller in accordance with the Data Protection Law.

Data Protection Law is the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation) and French Law N°78-17 of 6 January 1978 together with any implementing decrees, as well as any other legal or regulatory provisions relating to the protection of Personal Data.

The Data Controller has put in place an appropriate privacy and cookie policy to be fully transparent on how the personal data of Users are processed within the use of the Site and services provided.

This privacy policy is intended for the Users of the Site of the Data Controller.

Date of last update: 07/07/2023

ARTICLE 1 - COLLECTED PERSONAL DATA

1.1 When registering for an event.

When registering for an event accessible from the Site, the User is informed that the following personal data are collected for his/her registration:

Mandatory data:

 

  • Last Name, First Name

  • Company / Job Title / Position

  • Main Activity / Other Activity

  • Country / Invoicing Address

  • Email / Mobile Phone

 

Optional data:

  • Event{s) Attendance

The User is informed that it is not possible to register for an event without providing the mandatory data strictly necessary to his/her registration.

1.2 Subscribing to the Newsletter

In order to subscribe to the Newsletter, the User is informed that the following personal data is collected:

Mandatory data:

  • Email address  

The User is informed that it is not possible to subscribe to the Newsletter without providing the mandatory data strictly necessary to his/her registration.    

 

1.3. Requesting to be a speaker

In order to request to be a speaker, the User is informed that the following personal data are collected:

Mandatory data:

  • Last Name, First Name

  • Company Name / Job Title / Position

  • Main Activity / Other Activity

  • Country / Invoicing Address

  • Email / Mobile Phone

  • Company LinkedIn, Twitter, Instagram

  • Company Location / Elevator Pitch

  • Company Website

 

Optional data:

The User is informed that it is not possible to register as a speaker without providing the mandatory information.

1.4 Sending a miscellaneous question to the contact form

In order to contact us, the User is informed that the following personal data is collected:

Mandatory data:

  • Last Name, First Name

  • Company Name

  • Industry Segment

  • Country

  • Email
     

Optional data:

  • Job Title / Position

  • Phone number
     

The User is informed that it is not possible to contact us without providing the mandatory information.

ARTICLE 2 - THE PURPOSE OF THE DATA PROCESSING

The Data Controller and its subcontractors process personal data that are freely transferred by the User when accessing the services proposed by the Site for the following purpose:

Purpose

Legal basis

Management of a user’s registration to events and the speakers program

Providing the User with all functionalities of the Site, meaning:

  • Send invitations for events organized by Data Controller or other Users, if the User has accepted to receive such invitations;

  • Send Newsletter/ press review from the Data Controller or its partners if the User has accepted it;

 

Management of data subjects rights according to the Personal Data Legislation.

Storage of User personal data;

Making statistics in order:

  • to improve the quality of the services proposed by the Site;

  • improve the usage functionalities of the Site;

 

Making statistics regarding the effective use of the Site;

Consent of the Data subject;

Processing is necessary for the performance of a contract (terms of Use);

Processing is necessary for compliance with a legal obligation (especially for the management of data subjects rights);

Legitimate interests (for making statistics).

ARTICLE 3 - DATA RETENTION PERIOD

The Data Controller informs the User that his/her personal data are retained only for the duration necessary for the purposes listed in the table above. When your data is collected on the basis of your consent, the Data Controller uses it until you withdraw your consent. Once your consent has been withdrawn, your data will be kept for the minimum period necessary to complete the technical measures required for deletion.

ARTICLE 4 - DATA TRANSFERS

The Users’ data are stored in the European Economic Area (EEA) by the Data Controller, and its trusted service providers. However, depending on the processing, the Users’ data may also be transferred in a country outside the EEA, to our trusted service providers.

When transferring data outside the EEA, the Data Controller ensures that the data are transferred in a secured manner and with respect to the Data Protection Law. When the country where the data are transferred does not have a protection comparable to that of the EU, the Data Controller uses “appropriate or suitable safeguards”.

When the service providers to whom personal data are transferred, are located in the United States, these transfers are governed by the standard data protection clauses adopted by the Commission.

Users can access such safeguards by contacting the Controller at the following address rgpd@palaisdesfestivals.com.  

ARTICLE 5 - COMMITMENT OF THE DATA CONTROLLER

The Data Controller commits to process User’s personal data in compliance the Data Protection Law and undertake to, notably, respect the following principles:

  • Process User’s personal data lawfully, fairly, and in a transparent manner;

  • Only collect and process the Users’ data for the strict purpose as described under article 2 of the present privacy policy;

  • Ensure that the personal data processed are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;

  • Do the best efforts to ensure that the personal data processed are accurate and, if necessary, kept up to date and take all reasonable steps to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;

  • Keep personal User’s data for no longer than is necessary for the purposes for which they are processed;

  • Put in place all necessary technical and organizational appropriate measures in order to ensure the security, confidentiality, integrity, availability and the resilience of the process systems and services;

  • Limit the access to the Users’ data to the persons duly authorized to this effect;

  • Guarantee to the Users their rights under the Data Protection Law in relation to the processing of their data and make the best efforts to satisfy any request, where this is possible.

ARTICLE 6 - EXERCISE OF THE USERS’ RIGHTS

The User is duly informed that it disposes at any time, depending on the legal basis of the processing, a right to access, to rectification, to erasure, to restriction of processing, to data portability, and to object.

When processing is based on User’s consent, the right to withdraw consent at any time, without affecting the lawfulness of the processing based on consent before its withdrawal.

The User can exercise its rights by sending an email to the following address La Croisette – CS 30051 – 06414 CANNES or by mail at the following address rgpd@palaisdesfestivals.com  provided that the User justifies his/her identity.

In addition, in the event the User considers that its rights have not been respected, the User of which the personal data is collected can lodge a complaint before the competent supervisory authority. For any additional information, you can review your rights on the websites of the competent authorities.

The competent supervisory authorities are listed on the following website:

http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm.

ARTICLE 7 - COOKIES

The Data Controller informs the User that the Data Controller uses a tracking technology on its terminal such as cookies whenever the User navigates on the Site subject to the conditions described in the Data Controller Cookie Policy.

ARTICLE 8 - RECIPIENT AND PERSONS AUTHORIZED TO ACCESS THE USERS’ DATA

 

Only authorized persons working for the Data Controller can access your personal data. The Data Controller makes its best effort to ensure that these groups of people remain as small as possible and maintain the confidentiality and security of User’s personal data.

 

The Data Controller also uses trusted service providers to carry out a set of operations on his behalf for hosting. The Data Controller can also use service providers in the tech industry, editors of specific tools integrated in the Site for technical purposes.

    

The Data Controller only provides service providers with the information they need to perform the service and ask them not to use your personal data for any other purpose. The Data Controller does his best to ensure that all these trusted service providers only process the personal data on our documented instructions and provide sufficient guarantees, in particular in terms of confidentiality, expert knowledge, reliability and resources, to implement technical and organizational measures which will meet the requirements of the applicable legislation, including for the security of processing.

 

The Data Controller may also disclose or share your personal data with its sponsors or third-party users. The Data Controller makes its best effort to ensure that these groups of people remain as small as possible and maintain the confidentiality and security of your data.

 

The Data Controller may be required to disclose or share your personal data to comply with a legal obligation, or to enforce or apply our terms of use/sale or any other conditions you have accepted; or to protect the rights, safety or property of SEMEC, its customers or employees.

 

List of the main service providers:

Hosting

Amazon AWS

38 avenue John F. Kennedy,

L-1855, Luxembourg

Management of the Site

HOPSCOTCH SAS

25, rue Notre-Dame des Victoires

FR- 75002 Paris

Statistical analysis of the Event participation

La Mairie de Cannes

1 Pl. Bernard Cornut Gentille,

06400 Cannes

 

bottom of page