Privacy Policy of Académie Lumière

This Privacy Policy describes how Académie Lumière (referred to as "we", "us", or "our"), located at 14 Rue de la Paix, 1st Floor, 75002 Paris, Île-de-France, France, collects, uses, and protects the personal data you provide when using our services. Our services include online course development, vocational training programs, language learning platforms, educational technology consulting, corporate e-learning solutions, professional development workshops, and certification programs.

We are committed to protecting your privacy in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).

1. Data Controller

Académie Lumière is the data controller for the personal data collected through our online platforms and services. Our contact details are:

• Académie Lumière
• 14 Rue de la Paix, 1st Floor
• 75002 Paris, Île-de-France, France

2. Information We Collect

We collect various types of information in connection with the services we provide:

• Personal Data Provided by You: This includes information you provide when registering for a course, workshop, or service, making an inquiry, or communicating with us. This may include your name, email address, postal address, phone number, payment details, professional background, and academic qualifications.
• Usage Data: We automatically collect information when you access or use our platforms, such as your IP address, browser type, operating system, pages viewed, time spent on pages, and referring URLs. This helps us understand how users interact with our services and improve their experience.
• Course Progress Data: For educational services, we collect data related to your progress in courses, quizzes, assignments, and certification outcomes.

3. How We Use Your Information

We use the collected information for the following purposes and on the following legal bases:

• To Provide and Manage Services (Contractual Necessity): To process your registration, deliver core services like online courses and workshops, provide access to learning materials, manage your progress, and issue certificates.
• To Communicate with You (Legitimate Interest or Consent): To send you administrative messages, updates about our services, support inquiries, and, with your consent, marketing communications about new programs or offers.
• For Improvement and Analysis (Legitimate Interest): To analyze usage patterns, troubleshoot technical issues, improve our online platform's functionality, and develop new educational content and services.
• For Security and Legal Compliance (Legal Obligation): To ensure the security of our platforms, prevent fraudulent activities, and comply with legal obligations such as tax and accounting requirements.
• Tailoring Experiences (Legitimate Interest): To personalize your learning experience and recommend relevant content based on your interactions with our services.

4. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data. We may share your information with:

• Service Providers: Third-party vendors who perform services on our behalf, such as payment processing, platform hosting, data analytics, and customer support. These providers are obligated to protect your data and only use it for the purposes for which it was shared.
• Business Transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred as part of the business assets.
• Legal Requirements: When required by law or in response to valid requests by public authorities (e.g., a court order or government agency).

We take steps to ensure that any third parties with whom we share data process it in a manner consistent with this Privacy Policy and applicable data protection laws, particularly GDPR.

5. International Data Transfers

Your information, including personal data, may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. For transfers of data outside the European Economic Area (EEA), we implement appropriate safeguards such as Standard Contractual Clauses approved by the European Commission, to ensure a similar level of data protection.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, secure servers, and regular security assessments. While we strive to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. When processing is no longer necessary for the original purposes, we will either delete or anonymize your data, unless further retention is required by law.

8. Your Data Protection Rights (GDPR)

Under the GDPR, you have the following rights regarding your personal data:

• Right to Access: You have the right to request copies of your personal data.
• Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or incomplete.
• Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data, under certain conditions.
• Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
• Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
• Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
• Right to Withdraw Consent: Where our processing is based on your consent, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us at the address provided below. We will respond to your request in accordance with applicable data protection laws.

9. Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without verifiable parental consent, we will take steps to remove that information from our servers.

10. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "last updated" date. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Académie Lumière
• 14 Rue de la Paix, 1st Floor
• 75002 Paris, Île-de-France, France

You also have the right to lodge a complaint with a supervisory authority, particularly in the Member State of your habitual residence, place of work, or place of the alleged infringement if you believe that the processing of your personal data infringes GDPR.