AMI PARIS is particularly attentive to the protection of your personal data. Regarding the personal data that you entrust to us, we inform you transparently about our policy on the protection of personal data.

AMI PARIS commits to handle your personal data in accordance with the provisions of the General Data Protection Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR) and the law no. 78-17 of January 6, 1978, as amended, relating to data processing, files, and freedoms (the "Data Processing and Freedoms" law), which define the conditions under which personal data processing may be carried out.

Any information collected through the website that allows you to be identified, directly or indirectly, is considered as personal data and will be treated in accordance with this policy.

The person responsible for processing the data collected and processed on our website is AMI PARIS, 54 RUE ETIENNE MARCEL, 75002 PARIS.

AMI PARIS has designated a Data Protection Officer or "DPO" who you can contact at the following address: dataprotection@amiparis.fr 

User Account Management

• Legal Basis: Legitimate interest.
• Manage the accounts of its customers and users to enable them to access their AMI benefits status.
• Processed Data: Customer ID in the form of email, first name, last name, postal address, email address, phone number.
• Retention Period: Inactive user accounts are deleted 3 years after the last activity on the account (deleting the account does not delete the wallet or the NFTs it contains).

Product or Service Order Management

• Legal Basis: Contractual execution.
• Processed Data: Customer ID, first name, last name, postal address, email address, invoice.
• Retention Period: 3 years from the end of the contractual relationship. Archived for accounting purposes for up to 10 years.

F.AMI.LY Engagement Program Management

• Legal Basis: Contractual execution.
• Processed Data: Data related to the user account, date of birth, Instagram username.
• Retention Period: 3 years from the end of the contractual relationship.

Cookie Management

• Legal Basis: Legitimate interest and consent.
• Processed Data: Information from browsing data (IP address, cookies).
• Retention Period: Information from cookies is retained for a maximum of 13 months.

The services and products of AMI PARIS are not intended for minors. As a result, AMI PARIS does not process data related to minors.

It is the responsibility of the parents of minors or any person with parental authority to decide whether their child is allowed to use the services and products offered by AMI PARIS.

The data you entrust to us may be communicated to authorized personnel in the internal services of AMI PARIS when their function requires it and when such communication is necessary for the implementation of the aforementioned processing.

AMI PARIS also transmits your data to subcontractors and business partners who are called upon to provide services in the context of the implementation of the aforementioned processing.

Some recipients of personal data may be located outside of the European Union. These recipient countries may be recognized by the European Commission as providing an adequate level of personal data protection or may not be subject to any adequacy decision.

In any case, appropriate protection measures to safeguard your personal data are implemented in accordance with the provisions of the General Data Protection Regulation (GDPR).

Our digital department (Marketing & Ecommerce) and Retail involves data transfers outside the European Union, particularly to the United Kingdom, China, Hong Kong, and Japan, which are regulated in accordance with the legislation.

In accordance with the provisions of the GDPR, you may exercise the following rights:

• Access rights: the right to obtain confirmation whether or not your personal data is being processed, and to obtain its communication;
• Right to rectification: the right to obtain the correction of inaccurate personal data or to be able to complete incomplete data;
• Right to erasure: the right to request your personal data to be deleted when possible;
• Right to object: the right to object to the processing of your personal data at any time when it is based on our legitimate interest;
• Right to withdraw your consent: when the processing of your data is based on your consent. You can exercise this right at any time without having to justify the reason;
• Right to restriction: the right to request the freezing of the processing data for a given period;
• Right to data portability: the right to receive the personal data you have provided in a structured, commonly readable format, and to transmit them to a third party;
• Right to lodge a complaint: the right to submit a complaint to the CNIL (the French Data Protection Authority) if you believe your rights are not being respected.

To exercise your rights or to address any questions about the processing of your data, you can contact:

• By postal mail at AMI PARIS: located at 54 rue Etienne Marcel, 75002, Paris
• By email: dataprotection@amiparis.fr

If you believe, after contacting us, that your "Computing and Liberties" rights are not respected, you can submit a complaint to the CNIL: https://www.cnil.fr/fr/plaintes.

This personal data protection policy was published on 06/05/2024. In the event of any changes to this policy, you will be informed on this page.

AMI PARIS is particularly attentive to the protection of your personal data. Regarding the personal data that you entrust to us, we transparently inform you about our policy regarding the deposit and use of cookies from our Site "www.amiparis.com" to your connection terminal.

This cookie management policy is intended to apply to the following different sites: https://mysterybox.amiparis.com.

In case you provide your consent for the use of cookies on our site, this consent will also be valid for the other sites listed above.

A "cookie" is a string of information, generally small in size and identified by a name, that can be transmitted to your browser by a website you visit.

Your web browser will keep it for a certain period, and will return it to the web server every time you reconnect.

Cookies allow the site to function in the most optimal possible way. It is possible to object to their use or delete them using our configuration module and by using your browser's settings.

These cookies are absolutely necessary for the proper functioning of our website. Without these cookies, you would not be able to use our site correctly. They allow for example to activate basic functions like page navigation and access to secure areas of the website. They are also cookies that are used to give you access to certain features of our website, to facilitate and improve your browsing experience as well as the selection of products and services. These cookies for example allow to adapt the presentation of the site to the display preferences of your device, to remember the preferred language or the region in which the user is located.

Our website places the following cookies on your device:

Type of Cookie: Technical          

Cookie Name: token       

Purpose: The "token" cookie stores the JWT (Json Web Token) corresponding to the user. The purpose of the JWT cookie is to manage the user's authentication on the site. It helps to keep the user's session active and secure while browsing the site.

Duration of Storage: 1 day