​

This Privacy Policy is adopted by HOPSCOTCH CONGRES, a simplified joint-stock company (Société par Actions Simplifiée), with its registered office located at 23-25, Rue Notre Dame des Victoires, Paris 75002, registered in the Paris Trade and Companies Register under number 422 322 479 (hereinafter referred to as the "Data Controller").

​

The Data Controller provides a website accessible at the following address: https://www.festival-diapason-megeve.com/(hereinafter referred to as the "Site") that allows its users (hereinafter referred to as the "Users") to learn about the Diapason Festival of Megève (hereinafter referred to as the "Festival"), consult news articles related to classical music, and purchase tickets to attend the Festival.

​

The Data Controller is particularly committed to respecting Users' privacy and protecting their personal data. The Data Controller ensures that its data processing complies with the applicable data protection legislation, including the French law no. 78-17 of January 6, 1978, relating to data processing, data files, and individual liberties, and the European Regulation (EU) 2016/679 of April 27, 2016, known as the General Data Protection Regulation (GDPR) (collectively referred to as the "Data Protection Legislation").

​

In this regard, the Data Controller may collect and process Users' personal data in accordance with the privacy policy and cookie management policy.

The Data Controller has implemented this privacy policy (hereinafter the "Privacy Policy") and a cookie management policy to be transparent regarding the processing of Users' personal data in the context of using the Site.

The Privacy Policy is intended for Users of the Data Controller’s Site. Last update: December 10, 2024

 

1. Collected Personal Data, Purpose of Processing, and Retention Period

​

The Data Controller commits to processing only the personal data (hereinafter "Personal Data") that is strictly necessary for the following purposes for which it is collected and will retain it only for as long as necessary in relation to these purposes:

• Processing Activities: Ticketing and order management
  Legal Basis: Performance of the contract
  Categories of Personal Data: Identification data (name, surname, email address, full postal address, gender, country, date of birth) + banking details, only by our ticketing service providers
  Retention Period: Duration of the contractual relationship

• Processing Activities: Management and sending of the newsletter by Hopscotch
  Legal Basis: Consent
  Categories of Personal Data: Identification data (name, surname, email address, full postal address, gender, country, date of birth) + professional data
  Retention Period: 3 years from the last active contact with the User

• Processing Activities: Management of "partner" or "exhibitor" registrations
  Legal Basis: Performance of pre-contractual measures
  Categories of Personal Data: Identification data (name, surname, email address, full postal address, gender, country, date of birth) + professional data
  Retention Period: Duration of the contractual relationship

• Processing Activities: Management of "press" contacts
  Legal Basis: Performance of pre-contractual measures
  Categories of Personal Data: Identification data (name, surname, email address, full postal address, gender, country, date of birth) + professional data
  Retention Period: Duration of the contractual relationship

• Processing Activities: Sending of personalized commercial recommendations by Hopscotch and/or transferring data to Reworld Media for sending personalized commercial recommendations
  Legal Basis: Consent
  Categories of Personal Data: Identification data (name, surname, email address, full postal address, gender, country, date of birth)
  Retention Period: Until consent is withdrawn or 3 years from the last active contact with the User

• Processing Activities: Sending information by the Data Controller about the Festival and the classical music sector
  Legal Basis: Consent
  Categories of Personal Data: Identification data (name, surname, email address, full postal address, gender, country, date of birth)
  Retention Period: Until consent is withdrawn or 3 years from the last active contact with the User

• Processing Activities: Management of requests to exercise rights by Users
  Legal Basis: Legal obligation
  Categories of Personal Data: Identification data (name, surname, email address, full postal address, gender, country, date of birth)
  Retention Period: Duration necessary to process the request

• Processing Activities: Management of the website and creation of statistics to:
  improve the quality of services offered on the Site;
  enhance the functionalities of the site
  Legal Basis: Legitimate interest
  Categories of Personal Data: Navigation data
  Retention Period: 1 year from the last active contact with the site

The Data Controller informs Users that their Personal Data is retained only for the necessary period to perform the processing activities for the purposes listed above. When Personal Data is collected based on User consent, the Data Controller will use it until consent is withdrawn. After the withdrawal of consent, Personal Data will be retained for the minimum time necessary to perform the technical measures needed for deletion.

​

2. Data Transfers

The User's data is stored in the European Economic Area (EEA) by the Data Controller and its trusted service providers. However, depending on the processing, the User’s data may also be transferred outside the EEA to our trusted service providers.

In the event of a transfer outside the EEA, the Data Controller ensures the secure transfer of Personal Data in compliance with the Data Protection Legislation. When the country to which data is transferred does not provide protection comparable to that of the EU, the Data Controller uses "appropriate safeguards".

When service providers receiving Personal Data are located in the United States, these transfers are governed by the standard contractual clauses adopted by the Commission.

​

3. Data Controller’s Commitment

The Data Controller commits to processing the User’s Personal Data in compliance with the Data Protection Legislation, and in particular to:

• Process the User’s Personal Data lawfully, fairly, and transparently

• Collect and process the User’s data solely for the purposes described in Article 2 of this Privacy Policy

• Ensure that the Personal Data processed is adequate, relevant, and limited to what is necessary for the purposes for which it is processed

• Take all reasonable measures to ensure that the Personal Data is accurate and, where necessary, kept up to date, and to ensure that inaccurate data is erased or rectified without delay

• Retain the User's Personal Data for no longer than necessary for the purposes for which it is processed

• Implement appropriate technical and organizational measures to ensure the security, confidentiality, integrity, availability, and resilience of the processing systems and services

• Restrict access to the User's Personal Data to those authorized individuals

• Guarantee the User’s rights under the Data Protection Legislation concerning the processing of their data and strive to comply with all requests, where possible.

 

4. Exercising User Rights

The User is informed that they have the right to access, rectify, erase, restrict processing, data portability, object to processing, including for direct marketing purposes, and to define the fate of their data after their death.

When the processing is based on the User's consent, they have the right to withdraw their consent at any time without affecting the lawfulness of processing based on consent before the withdrawal.

The User can exercise their rights:

• By email at: contactonsnous@hopscotchcongres.com

• By mail at: HOPSCOTCH Congrès, 25, rue Notre-Dame-des-Victoires, 75002 Paris

For communications sent by Reworld Media, the User may also exercise their rights:

• By email at: dpd@reworldmedia.com

• By mail at: REWORLD MEDIA MAGAZINES, 40 Avenue Aristide Briand, 92200 Bagneux

Additionally, if the User believes that their rights have not been respected, they can file a complaint with the competent supervisory authority. For more information, the User can consult their rights on the websites of the competent authorities.
The list of competent authorities is available at:
http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm

 

5. Cookies

The Data Controller informs the User that the Data Controller uses tracking technologies on their device, such as cookies, whenever the User navigates the Site, subject to the conditions described in the Data Controller's cookie management policy: https://www.festival-diapason-megeve.com/copie-de-politique-de-protection-des.

 

6. Recipients and Authorized Access to User Data

Only authorized individuals working for the Data Controller can access your Personal Data. The Data Controller takes all necessary steps to ensure that this group of individuals is kept to a minimum and maintains the confidentiality and security of the User's Personal Data.

The Data Controller also relies on service providers to perform certain operations related to hosting services. The Data Controller may also use technology providers and tool developers integrated into