DOWNLOAD DOCUMENT >>
Last updated: July 2020
At Somfy, we want to be and remain your partner of choice on your journey exploring and experiencing smart home solutions and related products or services. We value the trust you put in us and commit to being fully transparent about how we collect, use and protect your personal data. We recognize your need for reasonable control over your personal data, and we commit to implementing mechanisms, procedures and policies that ensure the confidentiality, integrity and security of your personal data throughout its life cycle.
Somfy Group appointed a Data Protection Officer (DPO) who will ensure that our activities are carried out in compliance with applicable laws.
For questions regarding this Policy, to exercise your rights or to lodge a complaint with us, please contact our DPO (irrespective of which Somfy entity you have been in contact with): dpo@somfy.com
The local Somfy entities that have adopted this Privacy Policy are Somfy Pty Limited ABN 77 003 917 244 and Somfy Automation Services Pty Limited ABN 18 143 918 227 trading as Somfy Electrical Services, both of Unit 20, 38-46 South Street, Rydalmere NSW 2116, Australia.
This privacy policy (“Policy”) informs you what to expect when we collect and use personal data, i.e.:
We kindly ask you to carefully review our Policy and to acquaint yourself with its content.
1. Who is concerned by this Policy?
This Policy applies to you when you visit our websites, when you interact with us with a view to establishing a business relationship, throughout your business relationship with us, when you use the technology we make available to you or when you connect to certain platforms, applications or other solutions we may provide or make available.
This Policy does not apply to Somfy employees, nor to job applicants, who should refer to Somfy’s Internal Personal Data Protection Policy.
2. Who is responsible?
The legal entity responsible for the personal data collected from you is the entity that determines how, when and why it collects and uses your personal data (“Data Controller”).
The identity of the Data Controller will depend on who you are:
For any other individuals, with the exception of employees working on Somfy sites, the Data Controller is the legal entity that manages your relationship with Somfy. This information can be found in the agreement you have entered into with Somfy or can be obtained from your usual contact person at Somfy.
3. How do we collect personal data and what personal data do we process?
Personal data refers to data that can be attributed to you personally.
We collect personal data directly from you (a), but also indirectly through other sources (b), for example when you browse Somfy websites, or subscribe to our feeds on social media.
Regardless of whether we collect your personal data directly or indirectly, we commit to only process personal data that is adequate, relevant and necessary to fulfil the purpose for which it was collected.
a. Data collected directly from you
We may collect and use personal data that you provide during your interactions with us.
This may include:
We also collect the information that you provide to us when transacting with us, when subscribing to any of our services, when completing contact forms or creating accounts on any of our websites, when you get in touch with our customer or media relations teams, during fairs or other events that you attend.
Data collected in such cases can include (in addition to the data referred to above):
Other information collected when you use our products and related applications may include:
We may process the following personal data attributable to you as a visitor to any premises of a Somfy Group entity:
b. Indirectly, through other sources
We also collect information about you indirectly, for example when you browse Somfy websites, or subscribe to our feeds on social media.
We may use cookies to enhance your browsing experience on our websites. Cookies are small files which are stored on a user's computer; they hold a modest amount of data specific to a particular user and website.
We use two types of cookies:
Cookies that are strictly necessary for the functioning of our websites
We use cookies that are strictly necessary for the functioning of our websites (e.g. analytical cookies that allow us to assess the use and performance of our websites and to then improve their functionalities).
If you do not want to accept the use of cookies, you can change your web browser settings to automatically deny the storage of cookies or to inform you each time a website requests permission to store a cookie. By choosing not to accept cookies, our websites would not work properly.
Third party cookies to improve the interactivity of our websites
Our website relies on certain services offered by third party. These include, but are not limited to :
Share buttons:
- Twitter
- Instagram
- Facebook
Videos broadcast on the website :
- YouTube API (see terms of use and privacy policy)
You can also change your cookie preferences at any time through our cookie management tool by clicking HERE.
The processing is conducted on the basis of our legitimate interest to gather, monitor and analyse website activity. You do, however, also have to agree with the processing of cookies as set out in the cookie banner which appears when you enter the website.
We also use advertising cookies to so that we can show ads that we deem relevant for you, either on our site, or when you surf the Internet generally. Such cookies are mainly used to limit the number of times you see a particular ad, and help us assess the impact of an ad campaign.
Not accepting advertising cookies does not impact your user experience when surfing our websites.
We may at times also collect information about you from third parties or from publicly available sources such as information about you made available on your company’s website, or from public registries.
4. What do we do with your personal data?
We collect and use your personal data where this is necessary to negotiate or perform a contract with you, e.g. to:
You are free not to provide such personal data, but should be aware that failure to provide such data will prevent us from negotiating or executing the contract.
We also collect and use your personal data where this is in our legitimate interest, e.g. to:
Also based on our legitimate interest, we may share your personal data with any affiliate of the Somfy Group, and also:
We also collect and use your personal data with your consent. This includes data that you decide to provide when setting up an account with us, or in response to a specific request that you communicate to us, e.g. to:
Consenting to allowing us to process your data is such circumstances is optional. However, failure to provide that consent will in most cases prevent us from delivering parts or all of the services you subscribe to.
On occasions, we collect or process your data in line with legal or regulatory requirements.
We do not sell your personal data to third parties.
5. Who is receiving your personal data?
We only share your personal data in line with this Policy, and therefore mainly with our employees across different departments and, possibly, other entities of the Somfy Group, only for the following purposes: customer management, central administration of customer and supplier relationships, and for the purpose of streamlining Somfy’s business operations. This sharing of personal data is carried out on the basis of Somfy Group’s legitimate interest to administer its contractual relations within the Somfy Group and maintain an effective business structure.
Where we share your personal data with third parties as outlined in this Policy (e.g. for shipments, financial transactions, software services), we ensure that such third party provides sufficient guarantees to implement appropriate technical and organizational measures to ensure compliance with applicable data protection laws.
6. How your personal data is protected?
We put in place a series of technical and organisational measures to secure your personal data and to protect it from unlawful destruction, loss, alteration or access.
Our staff, agents and sub-contractors processing your personal data have signed a confidentiality agreement, or are otherwise bound to a duty of confidentiality, or are under an appropriate statutory obligation of confidentiality.
We impose strict security obligations also on any third-party service provider who handles your personal data in line with this Policy.
7. Data retention
We retain your personal data for as long as it is necessary for each of the purposes outlined above.
We may however retain certain of your personal data for compliance with applicable laws and regulations (e.g. for tax and audit purposes) and in accordance with our internal data retention rules.
Where it is no longer required to retain data that can still identify you, we will either erase, anonymise or aggregate it so that you may no longer be identifiable as a single individual.
8. International data transfers
We store and process your personal data mainly on servers located in the EU/EEA or Switzerland.
However, we operate as a global company and rely on international service providers to support our global solutions. Your personal data may be transferred to another country other than the one you reside in.
9. Your rights
You can contact us through our DPO to exercise your rights over your personal data that we collect or use.
Your rights include your:
10. Changes to this Policy
This date of this Policy is 5 May 2020. We may modify this Policy at any time without notice, except if such modifications contain substantial changes that may affect individuals’ rights under applicable privacy and data protection laws, in which case you will be notified of such changes by a prominent notice at the beginning of this Policy.