Privacy and data protection policy

Your data is used only for explicit, legitimate and determined purposes which are related to our various offers and activities.

  • Only the data necessary for the execution of our services are collected.
  • We communicate your data only to authorized partners, service providers or professional bodies who need it in the context of our activities and the execution of the mission entrusted.
  • We respect your privacy and your choices, so our communications may be terminated at any time.

1. Identity of the data controller

Personal data is collected by LA FERMIERE, a public limited company with a board of directors with a share capital of €193,958.39, having its registered office at 375, Avenue de Passe-Temps, ZA Napollon, 13400 Aubagne (France) registered in the du Commerce et des Sociétés de Marseille under number B055811996 and whose intra-community VAT number is as follows: FR 32055811996. Telephone number: 04 42 01 69 69.

E-mail address : rgpd@lafermiere.com , hereinafter referred to as the “Company”.

To deliver its services, the Company collects personal data on individuals and companies. Data collection takes place on our website lafermiere.com  (the “Site”) via mobile applications and by telephone.

In the forms for collecting personal data on the site or in paper format, the customer or user is notably informed of the compulsory nature or not of the collection of data. In the event of non-provision of a mandatory data field, we will unfortunately not be able to perform certain services and respect our commitments.

We are committed to ensuring the best level of protection of your personal data in accordance with the GDPR "General Data Protection Regulation" Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 and the Data Protection Act Freedoms law n° 2018-493 of June 20, 2018, promulgated on June 21, 2018 which amended the Data Protection Act of January 6, 1978. For all information on the protection of personal data, you can also consult the website of the National Commission of Computing and Liberties (the "CNIL") www.cnil.fr.

2. Your rights

Pursuant to the Data Protection Act 78-17 of January 6, 1978 as amended and the GDPR, any natural person using the service has the right to exercise the rights:

    • of access, article 15 of the GDPR,
    • rectification of data, article 16 of the GDPR,
    • the erasure of data (right to be forgotten), article 17 of the GDPR,
    • to restriction of processing, Article 18 GDPR,
    • Under certain conditions, the user can request the portability of data, article 20 of the GDPR,
    • to object to the processing of data, article 21 of the GDPR.
    • In the event of death: The Company will respect the instructions given by any user relating to the storage, erasure and communication of their personal data after their death. In the absence of such directives, the Company will grant the requests of the heirs as restrictively set out by the applicable provisions of the Data Protection Act.

2.1 How to exercise your rights?

To exercise this right, please send your letter to the company LA FERMIERE, at 375, Avenue de Passe-Temps, ZA Napollon, 13400 Aubagne or by email: dpo@lafermiere.com or via the contact form available on the site.

Your requests must be accompanied by a copy proving your identity. The request will be processed within 30 working days of receipt. If your request requires a longer processing time, you will be informed.

If you believe that your rights have not been respected, you can also file a complaint with the Commission Nationale de l'Informatique et Libertés (CNIL) 3 Place de Fontenoy – TSA 80715 – 75334 PARIS CEDEX 07 or via the website: www.cnil.fr.

3. The purposes of collecting your personal data

User privacy is protected by regulation. Under data protection regulations, LA FERMIÈRE is only authorized to use the personal data of its users if it has a valid legal basis.

3.1. Why do we collect your data?

We collect data at different stages: contact and request for information, quote, subscription to an offer, management of your file. Where applicable, the data may directly concern you or concern third parties and parties to the contract or order.

3.2. Why do we collect your data?

When your information is essential for us to process your requests, we will notify you clearly, in other cases the collection is carried out deliberately by the user. The information collected may differ depending on the missions entrusted to the Company and on the website. Because of the missions entrusted to us, we are required to verify the accuracy of your data, to update them and if necessary to complete them, so you may be contacted directly in this regard.

3.3. Why do we collect your data?

Via the contact form we collect essential data if you want to be contacted by the Company or have information: title (title), surname, first name, address, postal code, city, e-mail and the message.

The Company collects data via various forms to transmit them according to the case to its partners and according to the choice of the customer to the other partners and this in order to be able to accomplish the mission entrusted to the Company.

The information collected in the questionnaire or contact form is recorded in a file computerized by the Company. The legal basis of the processing is the execution of a contract, a request for an estimate or information formulated by the user.

Data marked with an asterisk in the questionnaire must be provided. The data collected will be communicated to the following recipients only:

    • La Poste, colissimo, ovh, commercial services.

They are kept for the duration strictly necessary and according to the case.
You can access the data concerning you, rectify it, request its deletion or exercise your right to limit the processing of your data.

4. Duration of storage of your data & legal bases

The legal bases that allow us to collect your data are as follows:

    • The performance of a contract
    • Fulfillment of a legal obligation
    • When it is in the legitimate interest of the Data Controller
    • When the user has given his consent.

Depending on the case, the Company has defined separate retention periods.

Users' personal data is kept only for the time necessary to achieve the purpose for which the company holds this data.

To establish the retention period of personal data, the Company applies the following criteria:

4.1. Data necessary for the management of a website (identity of visitors, connection data, etc.)

    • Shelf life: 1 year
    • DI-007 Article 3 of decree no. 2011-219 of February 25, 2011

4.2. Managing a customer file

    • Customer data is kept as long as possible for the duration of the commercial relationship.
    • They may be kept for commercial prospecting purposes for a maximum of 3 years from the end of this commercial relationship (for example, from the date of a purchase, the expiry date of a guarantee, the term of a contract for the provision of services or the last contact from the client).
    • NS-048

4.3. Constitution and management of a file of non-client prospects

    • A maximum of 3 years from their collection by the data controller or from the last contact from the prospect (for example, a request for documentation or a click on a hypertext link contained in an email)
    • Warning: the opening of an email cannot be considered as a contact from the prospect
    • NS-048

4.4. Audience measurement statistics Information stored in users' terminals (e.g. cookies) or any other element used to identify users and allow them to be traced

    • Shelf life: 14 months maximum
    • NS-048

4.5. Management of a newsletter

    • Retention period: Until unsubscription of the person concerned (maximum)
    • Article 6-5° of law n°78-17 as amended

4.6. Contracts concluded between merchants or between merchants and non-merchants (All contractual documents, contracts and agreements concluded within the framework of a commercial relationship or correspondence). Supplier files (identity of the supplier, his professional life, invoicing and payment elements)

    • Shelf life: 5 years (exact duration)
    • Article L110-4 of the Commercial Code – NS-048 – DI-004

4.7. Complaints and requests for rights (access, rectification, opposition and other rights of Chapter III of the GDPR) of the persons concerned by a treatment

    • Duration strictly necessary

4.8. Retention of credit card numbers by merchants

    • Deletion once the transaction has been completed (deletion upon actual payment). BUT the card number and the date of validity may be kept for the purpose of proof in the event of any dispute over the transaction, in intermediate archives, for a period of 13 months following the date of debit or 15 months in the event of deferred debit payment.
    • Deliberation no. 2017-222 of July 20, 2017. Article L 133-24 of the Monetary and Financial Code

4.9. Visual cryptogram

    • Retention prohibited, in all cases, including for subscriptions requiring different payments.
    • Deliberation no. 2017-222 of July 20, 2017

4.10. Irreversibly anonymized data

    • Shelf life: Indefinitely
    • G29 Opinion 05/2014 on Anonymization Techniques adopted on April 10, 2014

4.11. Service-related invoices

    • Shelf life: 10 years
    • Article L123-22 of the Commercial Code

At the end of the durations mentioned above, the personal data will be deleted or the Company will proceed to their anonymization.

5. Subcontractors

The data may also be communicated to the Company's subcontractors who act in the name and on behalf of the Company, and in particular for the purposes described below:

    • Collection of outstanding payments.
    • Payment providers.
    • The management of the chat, telephone calls, their possible recordings and the sending of mail by post.
    • The personalization of the content of our site and mobile application.
    • Carrying out maintenance and technical development operations for the website, internal applications and the information system.
    • Collection of customer reviews.
    • Sending commercial prospecting emails and mobile notifications.
    • Administrative and financial management.

6. Transfer outside the EU

We do not transfer your data outside the European Union. In the event of a change in policy, this section will be subject to modification.

7. The security measures we put in place to protect your data

As Data Controller, the Company takes all necessary precautions to preserve the security and confidentiality of your data. This includes physical security of the buildings housing our systems and IT system security to prevent external access to your data. Access to your data is limited to those who need to know it.

8. Third Party Websites and Social Media

The Site may contain hypertext links giving access to other websites published and managed by third parties and not by the Publisher. The Publisher cannot be held responsible directly or indirectly in the event that said third-party sites do not comply with the legal provisions.

The creation of hypertext links to the Site can only be made with the prior written authorization of the Publisher.

We draw your attention to the social networks we use and with which you may interact to support us and/or share one of our publications. During your interaction, cannot be held responsible in the event of a problem. Please be aware that when you use these links, information about you may be collected or shared. You should consult the privacy policies and settings of the social networks with which you interact, in order to know what information may be collected, used or shared by these sites.

9. Cookies & other tracers policy

9.1. What is a cookie ?

Cookies are small data files placed on your computer or mobile device by your browser when you visit a website. Typically, a cookie contains the name of the website using it and a text string or "unique identifier" that allows websites to recognize that cookie on each subsequent visit throughout its lifetime.

Cookies can collect and store a wide range of information, such as the type of browser or operating system used, language or other browser settings, or your interactions with the website. Usually, cookies are not used to collect data that identifies an individual. However, information collected with cookies can be associated with a natural person, if combined with personally identifiable data such as a person's email address.

The deposit of cookies is indicated to you, during your connection, by a banner. Your consent for the deposit of certain cookies is essential. You can accept or refuse the deposit of certain cookies on your computer or mobile device. If you choose not to use cookies, you may be deprived of certain features on the site.

Two types of cookies are used on this site:

    • Session cookies are used to store information about your activities on this site for the duration of your visit. They are erased when you close your browser,
    • Persistent cookies are stored in one of your browser's subfolders for one or more sessions. They expire after a certain period (defined in the file) or can be deleted manually.

Web Beacons, Scripts, Embeds, and Other Similar Technologies.

We and our partners may also use similar technologies on this site, such as web beacons (also called Pixel-Tags or GIFs) or scripts.

Web beacons are small graphic images that can be embedded in websites or in HTML emails that are generally not visible to the user. They make it possible to follow the interaction of the user with the site or our newsletters.

A script or embedded pixel is code designed to collect information about your interactions with this site, such as the links you click on. The code is temporarily downloaded to your device from our web server or that of a third-party service provider. It is active only when you are logged into the website, and is deactivated or deleted thereafter. Disabling cookies will prevent the aforementioned technologies from working.

In accordance with Directive 2002/58/EC of July 12, 2002, we obtain your prior consent to the deposit of advertising cookies, audience measurement and sharing on social networks.

9.2. What type of cookies do we use and for what purpose?

Strictly Necessary Cookies
These cookies are necessary for the operations specific to the services that are provided on our websites. They are used to provide the basic functionality of our websites, such as remembering information that has been entered into a form. If you prevent the installation of these cookies, you will no longer be able to use these functionalities and the website may not function effectively.

Performance cookies
These cookies are used to collect anonymous data for statistical purposes. They allow us to measure the audience of the website and to analyze how visitors surf the website (number of visitors to the website, number of visits per page, time spent on each page, location of clicks, advertising effectiveness measures, etc.). They are also used to detect navigation problems and any other difficulties. These cookies help us to improve our website and your navigation.

Personalization or functionality cookies
These cookies are used to remember your choices, settings and content preferences on the website.

Specificity of sharing cookies
These cookies are specifically linked to the use of sharing buttons on a site page on social networks (Facebook, Twitter, LinkedIn, etc.).

9.3. Setting and blocking cookies via our cookie manager

The list of cookies we use can be viewed on the website and can be found here:


    • Supplier: Complianz
    • Purpose: Management of your consent to cookies
    • Lifespan: Persistent (13 months)
    • Purpose: Operation


    • Provider: Google Analytics
    • Purpose: Audience measurements
    • Lifespan: Persistent (14 months)
    • Purpose: Statistics


    • Provider: Google Analytics
    • Purpose: Audience measurements
    • Lifespan: Persistent (1 minute)
    • Purpose: Statistics


    • Provider: Google Analytics
    • Purpose: Audience measurements
    • Duration: Persistent (24 hours)
    • Purpose: Statistics


    • Provider: Google Analytics
    • Purpose: To store the keyword used and the search engine
    • Lifespan: Persistent (6 months)
    • Purpose: Statistics


    • Provider: Google Analytics
    • Purpose: To store the duration of the visit
    • Duration: Persistent (30 minutes)
    • Purpose: Statistics


    • Provider: Google Analytics
    • Purpose: To calculate the time before purchase
    • Lifespan: Persistent (12 months)
    • Purpose: Statistics


    • Provider: Q Translate
    • Purpose: Language settings
    • Lifetime: Session
    • Purpose: Operation


    • Provider: Q Translate
    • Purpose: Language settings
    • Lifetime: Session
    • Purpose: Operation


    • Provider: Q Translate
    • Purpose: Language settings
    • Lifetime: Session
    • Purpose: Operation


    • Provider: WordPress
    • Purpose: Checks if the web browser is configured to allow or refuse cookies
    • Lifetime: Session
    • Purpose: Operation


    • Provider: WordPress
    • Purpose: Customize the user interface
    • Lifespan: Permanent
    • Purpose: Operation


    • Provider: WordPress
    • Purpose: Indicates when you are logged in and who you are
    • Lifetime: Session
    • Purpose: Operation


    • Provider: Cloudflare
    • Purpose: Used by the Cloudflare content network, to identify trusted web traffic
    • Lifespan: Persistent (12 months)
    • Purpose: Statistics
  • geoloc:
    • Supplier: La Fermiere
    • Purpose: Stores your position to display the nearest stores
    • Lifespan: Persistent (1 day)
    • Purpose: Operation

9.4. Setting and blocking cookies via your browser settings

For the management of cookies and your choices, the configuration of each browser is different. It is described in the help menu of your browser, which will allow you to know how to modify your wishes in terms of cookies.

You can obtain more information on the CNIL website: https://www.cnil.fr/cnil-direct/recherche/cookies

As an indication, you can find the procedures at the following links:

The CNIL (Commission Nationale Informatique et Liberté) offers a free download of cookie management software on its website: go to the address https://www.cnil.fr/

9.5. Setting up your smartphone's operating system

You have the possibility to control the deposit of cookies on your smartphone in the rules of the operating system.

You also have the option of opposing the deposit of cookies by accessing the website: http://www.youronlinechoices.com/fr/controler-ses-cookies/

9.6. Geolocation

The Company allows you to geolocate yourself using Google location. This information could make it possible to deduce information on the habits and lifestyles of users (living and working places, frequentation habits, mobility, frequentation of healthcare establishments or places of worship) If you want to have an overview of the impact of the permanent activation of the geolocation tool, go to Google Location.

You can also find information at: https://www.cnil.fr/fr/maitrisez-les-reglages-vie-privee-de-votre-smartphone

10. Modification of this data protection policy

The Company may modify this Data Protection Policy at any time. The Company will inform Users by any means of the modifications made to this document.

Publication date of this policy: March 25, 2021