Within the framework of its activity of , the Noffta Company, represented by Moramarco Lucas, Eccher Agathe, Gillot Marion and Meyer Arthur, is brought to collect and treat the personal data of its visitors. The activities for which the company is led to process sensitive data are the following:

- Sale of digital products online (Sale of service and NFT) with the creation of a customer account (name / first name, email, bank details in cases of payment by CB). These data are necessary to process your order and to manage our commercial relations.

- Emailing campaign (newsletter) with subscription form for the Internet users wishing to join.

- Statistical analysis of data: for market research and reporting.

- Response to contact with a form on the "contact" page of the website.

The present privacy policy is intended to provide Internet users with synthetic and global information on the processing of personal data by the trading company. By accessing our website and using our services, you acknowledge that you have read and understood this Privacy Policy and the information collection and processing practices described in this document.

This document was last updated on 11/10/2022. Meyer Arthur (project communicator) reserves the right to change this Privacy Policy to comply with changes in applicable laws and regulations. Please check it regularly to stay informed.

Definitions

Noffta attaches particular importance to respecting the privacy of Users and the confidentiality of their personal data, and therefore undertakes to process data in compliance with the applicable laws and regulations, and in particular Law No. 78-17 of January 6, 1978 relating to information technology, files and freedoms (the "Data Protection Act"), and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (the "GDPR"). - Personal data: constitutes personal data any information relating to an identified or identifiable natural person, i.e. one who can be identified, directly or indirectly, by reference to an identification number or to one or more factors specific to him/her.

- Processing of personal data: any operation relating to such data, whatever the process used, and in particular the collection, recording, organization, storage, adaptation or modification, extraction, consultation, use, communication by transmission, dissemination or any other form of provision, reconciliation or interconnection, as well as the blocking, deletion or destruction, constitutes processing of personal data

- Cookie: a cookie is a piece of information deposited on the hard disk of an Internet user by the server of the site he or she is visiting. It contains several pieces of information: the name of the server that placed it, an identifier in the form of a unique number, and possibly an expiration date. This information is sometimes stored on the computer in a simple text file which a server accesses to read and record information.

Legal person in charge and responsible for the treatment of the data

• Name of the structure : Noffta
• Represented by: Moramarco Lucas, Gillot Marion, Meyer Arthur, Eccher Agathe
• Address : 4 Place Tharradin, 25200 Montbéliard
• E-mail : nofftacontact@gmail.com
• Siret or N°TVA : 192 512 150 00363 (IUT de Belfort-Montbéliard)

• Collection of collected information
• Noffta collects information about you in the following cases:

Sale of commercial products Sale of services and NFT :

The creation of a customer account (name/first name, email, bank details in the case of payment by credit card) is required for any online order. These data are necessary to process your order and to manage our commercial relations. It is you and you alone who decide whether you wish to communicate your personal data to us or not, in other words these indications are communicated to us by you on a voluntary basis. For data collected online, communications on the client side are encrypted between the user's computer and our servers (HTTPS secure zone). The data is then saved on our secure servers.

Newsletter registration:

Noffta offers its users the opportunity to subscribe to their newsletter via a secure registration form. The said registration is not mandatory for the proper consultation of the website.Internet users are clearly informed of the purpose of this registration (XXXX) and can unsubscribe at any time thanks to a link at the bottom of each emailing sent. The collected data are the following: name, first name, e-mail address, date of registration and connection IP (for geolocation). This information is saved on the XXXXX platform (https://fr.sendinblue.com/) which is responsible for the security of personal data.

Voluntary contact via the form:

Noffta proposes to these Internet users, via a secure contact form, to contact the project manager. The said contact is not mandatory for the proper consultation of the website, a telephone number is provided.

Protection of minors:

Minors should not transmit any personal data to commercial websites without their parents' permission. Noffta will not deliberately collect, use, make available or pass on children's personal data to anyone without their permission.

Use of your personal data

Within the framework of the online sale, your personal data will be used to finalize your order. Your postal address will be used for the delivery you have chosen (home or relay point) and for billing. Your contact information (email and telephone) will be used to follow up your order. In the case of your bank details:

- Credit card: they will only be saved at your request, otherwise they will be deleted after finalization of the order.

- Paypal: your connection logins will not be kept on our platform. It is up to you to save them or not on your browser. Within the framework of the newsletter, your personal data (name, first name, email address) will be used to send you a monthly newsletter (1-4 times a month depending on the case) containing the news of the platform (information on the company, an event, an opportunity not to be missed, etc.).

Third parties with whom we share your personal data

The personal data collected is intended for use by Noffta's sales and web marketing departments. The data is only shared, to the extent necessary, in order to execute your order or to process a request.

How long we keep your data

Unlimited, or more precisely we will keep your data as long as you do not delete your customer account within the framework of the online sale. Noffta will save your emails as long as the company uses the XXXXX platform to distribute its newsletter. In case of deletion of the tool, your information will be permanently deleted from the platform. You can at any time appeal to your right to be forgotten or to your right of opposition (see next paragraph).

Your rights as a member of our website

As an Internet user, you have rights in terms of protection and access to your personal data.

• - Right of rectification: you can contact us at any time to modify the data concerning you. Your information will be modified within a maximum of 48 hours.
• - Right to be forgotten: on your request, we commit ourselves to definitively erase all data concerning you within 30 days.
• - Right to portability: if you ask us, we commit ourselves to export all your data and to transfer them to you in a secure format (protected by the password of your choice).
• - Right to object: you can unsubscribe to the newsletter at any time. The link is at the bottom of the email. The action is immediate but requires a confirmation from you. You can re-subscribe at any time.
• - Right of access: we are transparent about the data we collect and how we use it.

Cookie management

The Noffta website uses cookies to facilitate navigation on the site, to measure the audience of the site or to allow the sharing of pages of the site. The cookies we collect are the following:

• - Analytical cookies: These cookies make it possible to know the use and performance of the site and to improve its operation by analyzing the number of visitors to the information pages, by monitoring opening rates, click rates and bounce rates at the individual level.
• - Share button cookies: These social cookies allow users to share pages and content on third-party social networks via social share buttons.

Users have the ability to accept or decline cookies on the site or to decline them once and for all by setting their browser. If the user chooses to decline all cookies, navigation to certain pages of the site will be reduced.

Controlling your browser's cookies (CNIL website): https://www.cnil.fr/fr/cookies-les-outils-pour-les-maitriser

To see with the technical file

How does OVH secure your personal data?

For data collected online, communications on the client side are encrypted between the user's computer and our servers (HTTPS secure zone). The data is then saved on our secure servers hosted by OVH. This hosting provider is committed to not reusing the personal data stored on the secure servers of their customers. OVH guarantees that it does not process your information outside the European Union or any country recognized by the European Commission as having an adequate level of protection of personal data (with regard to the protection of privacy, fundamental rights and freedoms of individuals, and with regard to the exercise of the corresponding rights).

For all of its services, OVH undertakes to put in place :

• - Physical security measures to prevent access to the infrastructures by unauthorized persons;
• - Security personnel responsible for ensuring the physical security of our premises 24 hours a day, 7 days a week;
• - A permissions management system to limit access to the premises and data to authorized persons only, within the scope of their functions and activities;
• - A system of physical and/or logical isolation (depending on the service) of clients from each other;
• - Strong authentication processes for users and administrators, thanks in particular to a strict password management policy and the deployment of certain double authentication measures such as YubiKey;
• - Processes and devices that allow us to trace all actions carried out on our information system and, in accordance with the regulations in force, to make reports in the event of an incident affecting our customers' data.

How does the Sendinblue platform secure your personal data?

The Sendinblue platform has implemented all the necessary infrastructures to safeguard and protect your personal data. The platform is transparent only in the measures implemented: RGPD The hosting servers are located exclusively within the European Union, on their own servers, on Google Cloud or on AWS. All data is replicated three times in at least two different geographies. SendinBlue also makes regular backups of your data (at least once a week). These are encrypted before being stored on a Cloud Storage (AWS or Google Cloud). In addition, the Platform has set up a traceability of this data throughout the processing carried out thanks to a system of monitoring and identification of logs. Archiving is carried out solely for legal reasons, and the databases are then purged at the end of the retention period.

All data centers are equipped with a multi-level security model (designed electronic access cards, alarms, security gates and fences, metal detectors and biometric technologies). As part of their security protocol, engineers authenticate themselves using short-lived personal public key certificates. Finally, Sendinblue works with a cyber security consulting firm that has complimented them on how difficult their systems are to break into.

Legal notice

This page describes the legal notices that apply to any Internet user visiting this site. By consulting it, you commit yourself without reserve to respect them. As the legal notices may be modified at any time and without prior notice, we encourage you to consult them regularly.

Editorial and legal responsible :

• Name of the structure : Noffta
• Represented by : Moramarco Lucas - Gillot Marion - Meyer Arthur - Eccher Agathe
• Address : 4 Place Tharradin, 25200 Montbéliard
• E-mail : nofftacontact@gmail.com
• Siret or N°TVA : 192 512 150 00363 (IUT de Belfort-Montbéliard)

Site editor

• Moramarco Lucas - Gillot Marion - Meyer Arthur - Eccher Agathe
• Represented by : Chatonnay Pascal
• E-mail : nofftacontact@gmail.com

Host

• Name of the structure
• Address :
• N°TVA :

Terms of use :

In accordance with the Data Protection Act of January 6, 1978, you have the right to access and rectify data concerning you by simple email, written or telephone request. MMI students cannot be held responsible for the content of the site. This site is operated by Noffta. The presentation and each of the elements, including trademarks, logos and domain names, appearing on the site http://www.noffta.com are protected by the laws in force on intellectual property, and belong to Noffta, or are the subject of an authorization of use. No part of the Site may be copied, reproduced, modified, republished, uploaded, distorted, transmitted or distributed in any way, in any medium, in whole or in part, without the prior written permission of Noffta, except for strict use for press purposes and subject to compliance with intellectual property rights and any other property rights mentioned. Only private copies are authorized for your personal, private and non-commercial use on your personal computer. Any authorized use of the materials on or contained in the site must be made without distortion, modification or alteration in any way. Noffta reserves the right to prosecute any act of infringement of its intellectual property rights. This Agreement is governed by French law. This Agreement applies worldwide, and only the French language version of this Agreement is binding for its interpretation.

Graphics, photos and illustrations:

The graphic design (including the webdesign and the logo) has been realized by Moramarco Lucas and Gillot Marion. The photographs belong to Noffta or are free of rights.

Declaration to the CNIL :

In accordance with Law 78-17 of January 6, 1978 (amended by Law 2004-801 of August 6, 2004 on the protection of individuals with regard to the processing of personal data) relating to data processing, files and freedoms, this site has not been declared to the National Commission on Data Processing and Freedoms (www.cnil.fr).

Litigation:

The present conditions of the site http://www.noffta.com are governed by French law and any dispute or litigation that may arise from the interpretation or execution of these will be the exclusive jurisdiction of the courts on which depends the headquarters of the company. The reference language for the settlement of any disputes is French.