Privacy Policy

Article 1: Preamble

​

This Privacy Policy aims to inform users of the website:

• About how their personal data is collected. Personal data is defined as any information that may identify a user. This includes, but is not limited to: full name, age, postal or email address, location data, or IP address;

• About their rights regarding such data;

• About the person responsible for processing personal data collected and processed;

• About the recipients of such personal data;

• About the site’s policy regarding cookies.

This policy complements the Legal Notice and the Terms and Conditions available to users at the following addresses:

• Terms and Conditions

• Legal Notice

​

Article 2: Principles relating to the collection and processing of personal data

​

In accordance with Article 5 of European Regulation 2016/679, personal data must be:

• Processed lawfully, fairly, and transparently with respect to the data subject;

• Collected for specified, explicit, and legitimate purposes (see Article 3.1 of this Policy), and not further processed in a manner incompatible with those purposes;

• Adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed;

• Accurate and, where necessary, kept up to date. Every reasonable step must be taken to ensure that personal data that is inaccurate, having regard to the purposes for which they are processed, is erased or rectified without delay;

• Kept in a form that permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed;

• Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organizational measures.

​

Processing is lawful only if, and to the extent that, at least one of the following conditions is met:

• The data subject has given consent to the processing of their personal data for one or more specific purposes;

• The processing is necessary for the performance of a contract to which the data subject is a party, or in order to take steps at the request of the data subject prior to entering into a contract;

• The processing is necessary for compliance with a legal obligation to which the controller is subject;

• The processing is necessary to protect the vital interests of the data subject or another natural person;

• The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;

• The processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject, in particular where the data subject is a child.

​

Article 3: Personal data collected and processed during site navigation

​

Article 3.1: Data collected
The personal data collected in the context of our activity are as follows:

• First and last name (if provided through forms);

• Email address (if provided through forms);

• Telephone number (if provided through forms);

• Browsing data (cookies, IP address, pages visited, duration of visit, etc.);

• Information related to preferences (for example, newsletter subscription, services viewed if provided through forms).

 

The collection and processing of this data serve the following purposes:

• Management of requests sent via the contact form;

• Sending newsletters and information related to ECR Global Consulting (news, services, events);

• Monitoring and improving the quality of services provided;

• Compliance with legal and regulatory obligations;

• Management of relationships with prospects and clients.

 

Article 3.2: Methods of data collection
When you use our website, the following data are automatically collected:

• IP address;

• Connection and browsing data (pages visited, duration of visit, origin of connection, type of device and browser used, cookies and technical trackers).

 

Other personal data are collected when you perform the following actions on the platform:

• Contact form: first name, last name, email address, telephone number (if provided), country of residence, occupation (to respond to your requests and ensure customer/prospect follow-up);

• Newsletter subscription: email address, first name (to send you news, advice, and information related to services and the luxury sector).

 

Personal data are retained by the data controller until consent is withdrawn or unsubscribed (for the newsletter), or for a maximum of 3 years from the last contact.
The company may retain certain personal data beyond the time limits indicated above in order to comply with its legal or regulatory obligations.

 

Article 3.3: Data hosting
The hosting provider of the website https://www.ecr-global-consulting.com is Wix Online Platforms Limited, with its registered office at 1 Grant's Row, Dublin 2 D02HX96, Ireland, reachable here: contact.

 

Article 3.5: Cookie policy
The user is informed that during visits to the site, a cookie may be automatically installed on their browser.

Cookies are small files temporarily stored on the user’s device by the browser and are necessary for the use of the site https://www.ecr-global-consulting.com. Cookies do not contain personal information and cannot be used to identify anyone. A cookie contains a unique identifier, randomly generated and anonymous. Some cookies expire at the end of the user’s session, while others remain.

The information contained in cookies is used to improve the website https://www.ecr-global-consulting.com. By browsing the site, the user accepts them.

However, the user must consent to the use of certain cookies. Without acceptance, the user is informed that some functionalities or pages may not be accessible.

The user may disable cookies through the settings in their browser.

 

Article 4: Data controller and Data Protection Officer

​

Article 4.1: Data controller
Personal data are collected by ECR GLOBAL CONSULTING, SASU with a share capital of €10,000, registered under number 942832668.

The data controller can be contacted as follows:

• By mail: 231 RUE SAINT-HONORE 75001 PARIS

• By email: catherine.rachel@ecr-global-consulting.com

 

Article 4.2: Data Protection Officer
The Data Protection Officer of the company or the controller is:
Catherine Rachel
catherine.rachel@ecr-global-consulting.com

If you believe, after contacting us, that your “Data Protection Rights” are not respected, you may lodge a complaint with the CNIL (French Data Protection Authority).

 

Article 5: User rights regarding data collection and processing

​

Any user concerned by the processing of their personal data may exercise the following rights, in accordance with European Regulation 2016/679 and the French Data Protection Act (Law No. 78-17 of January 6, 1978):

• Right of access, rectification, and erasure of data (Articles 15, 16, and 17 of the GDPR);

• Right to data portability (Article 20 of the GDPR);

• Right to restriction of processing (Article 18 of the GDPR) and to object to processing (Article 21 of the GDPR);

• Right not to be subject to a decision based solely on automated processing;

• Right to decide the fate of data after death;

• Right to lodge a complaint with the competent supervisory authority (Article 77 of the GDPR).

To exercise your rights, please send a letter to ECR GLOBAL CONSULTING, 231 RUE SAINT-HONORE 75001 PARIS, or by email to catherine.rachel@ecr-global-consulting.com.

To enable the data controller to respond to your request, you may be required to provide certain information such as your full name, email address, and account, personal space, or subscriber number.

Please visit the website cnil.fr for more information on your rights.

 

Article 6: Conditions for modifying the Privacy Policy

​

The publisher of the website https://www.ecr-global-consulting.com reserves the right to modify this Policy at any time to ensure compliance with applicable laws.

Any modifications shall not affect purchases previously made on the site, which remain subject to the Policy in effect at the time of purchase and accepted by the user at the time of validation.

Users are invited to review this Policy each time they use our services, without formal notice being required.

This Policy, published on 03/10/2025, was last updated on 03/10/2025.