This privacy statement was last updated on 3 December 2024 and applies to citizens and legal permanent residents of the European Economic Area and Switzerland.

In this privacy statement, we explain what we do with the data we obtain about you via https://magalimichaut.com. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:

• we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
• we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
• we first request your explicit consent to process your personal data in cases requiring your consent;
• we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
• we respect your right to access your personal data or have it corrected or deleted, at your request.

If you have any questions, or want to know exactly what data we keep of you, please contact us.

1. Purpose, data and retention period

We may collect or receive personal information for a number of purposes connected with our business operations which may include the following: (click to expand)

1.1 Contact - Through phone, mail, email and/or webforms

For this purpose we use the following data:

• A first and last name
• An email address

The basis on which we may process these data is:

Upon the provision of consent.

Retention period

We retain this data until the service is terminated.

1.2 Compiling and analyzing statistics for website improvement.

For this purpose we use the following data:

• IP Address
• Geolocation data

The basis on which we may process these data is:

Upon the provision of consent.

Retention period

We retain this data until the service is terminated.

1.3 Newsletters

For this purpose we use the following data:

• A first and last name
• An email address

The basis on which we may process these data is:

Upon the provision of consent.

Retention period

We retain this data until the service is terminated.

2. Cookies

Our website uses cookies. For more information about cookies, please refer to our Cookie Policy. 

3. Disclosure practices

We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.

If our website or organisation is taken over, sold, or involved in a merger or acquisition, your details may be disclosed to our advisers and any prospective purchasers and will be passed on to the new owners.

We have concluded a data Processing Agreement with Google.

Google may not use the data for any other Google services.

The inclusion of full IP addresses is blocked by us.

4. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorised access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

The security measures we use consist of:

• ISO27001/27002 Certification
• Vulnerability Detection
• Website Hardening/Security Features
• HTTP Strict Transport Security and related Security Headers and Browser Policies
• (START)TLS / SSL / DANE Encryption
• DKIM, SPF, DMARC and other specific DNS settings
• Login Security

5. Third-party websites

This privacy statement does not apply to third-party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

6. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

7. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us. You can contact us by using the information below. You have the following rights:

• You have the right to know why your personal data is needed, what will happen to it, and how long it will be retained for.
• Right of access: You have the right to access your personal data that is known to us.
• Right to rectification: you have the right to supplement, correct, have deleted or blocked your personal data whenever you wish.
• If you give us your consent to process your data, you have the right to revoke that consent and to have your personal data deleted.
• Right to transfer your data: you have the right to request all your personal data from the controller and transfer it in its entirety to another controller.
• Right to object: you may object to the processing of your data. We comply with this, unless there are justified grounds for processing.

Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person.

8. Submitting a complaint

If you are not satisfied with the way in which we handle (a complaint about) the processing of your personal data, you have the right to submit a complaint to the Data Protection Authority.

9. Contact details

Magali Michaut
137 rue des Pyrénées, 75020 Paris
France
Website: https://magalimichaut.com
Email: chansonsenboucle@gmail.com
Phone number: Les contacts se font principalement par email.

10. Data Requests

For the most frequently submitted requests, we also offer you the possibility to use our data request form

Name

Name

Email

Submit a request for access to the data we process about you.

Submit a request for deletion of the data if it is no longer relevant.

Submit a request to receive an export file of the data we process about you.

Annex

Solid Security

What personal data do we collect and why?

Cookies

Some forms on this site require the use of Google's reCAPTCHA service before they can be submitted. If you accept this service, a cookie is created to record your consent. This cookie automatically deletes itself after thirty days.

“Magic links” create a temporary cookie named "itsec-ml-lockout-bypass" that allows users to log in using a link sent to their email. This cookie references session data containing the user ID and IP address. It automatically expires after 30 minutes.

The "trusted devices" feature uses a cookie named "itsec-fingerprint-shp" to validate and ensure that users are logging in from devices considered to be trustworthy.

A cookie named "itsec_interstitial_browser" is created to track a user’s login process in order to implement enhanced security features.

Visiting the login page creates a temporary cookie that facilitates compatibility with some alternative login methods. This cookie contains no personal data and expires after one hour.

Some users may enable the "Remember This Device" feature to bypass the "Two-Factor" authentication when using the same device. This generates a cookie named "itsec_remember_2fa". It contains no personal data and expires after 30 days.

Security Logs

The IP addresses of visitors, the identifiers of logged-in users, and the usernames of login attempts are conditionally recorded to detect any malicious activity and protect the site against certain types of attacks. Conditions in which logging occurs include login attempts, logout requests, suspicious URL requests, changes to site content, and password updates. This information is retained for 60 days.

Protection of Login Devices

Session data, such as IP addresses and user agents, are stored to verify that users are logging in from reliable devices.

Who do we share your data with?

For security reasons, it is necessary to use Google's reCAPTCHA service, which is subject to Google's privacy policy and terms of use.

A QR code image is generated for users who set up two-factor authentication for this site. This image is generated using an API hosted by SolidWP. When generating this image, your username is sent to the API. These data are not stored. For more details on the privacy policy, please see the SolidWP privacy policy.

When they log into this website, some users may have their IP address transmitted to one of the following third parties, depending on their availability, to provide an approximate estimate of their location and prevent unauthorized access to their account: IP Info, Geobytes, GeoPlugin, and IP API.

When conducting a security check, solidwp.com will be contacted as part of a process to determine if the site supports TLS/SSL requests. No personal data is sent to solidwp.com as part of this process. Requests to solidwp.com include the site URL. For more details on the privacy policy of solidwp.com, please consult the SolidWP privacy policy.

This site is scanned by the SolidWP Site Scanner to detect potential malware and vulnerabilities. We do not send personal information to the scanner; however, the scanner may find personal information publicly displayed (such as in comments) during the scan.

To ensure file integrity, Solid Security retrieves data from wordpress.org, solidwp.com, ithemes.com, and amazonaws.com. No personal data is sent to these sites. Requests to wordpress.org include the version of WordPress, the site's local settings, a list of installed plugins, and a list of each plugin version. Requests to solidwp.com and amazonaws.com include the installed SolidWP products and their versions. For more details on the privacy policy of wordpress.org, please see the WordPress privacy policy. For more details on the privacy policy of solidwp.com, please consult the SolidWP privacy policy. Requests to amazonaws.com are intended to retrieve content added and managed by SolidWP, which is covered by the Amazon Web Services data privacy policy.

Data Retention Duration

Security logs are retained for 60 days.

Where we send your data

This site is part of a network of sites that protect themselves against distributed brute force attacks. To enable this protection, the IP address of visitors attempting to log into the site is shared with a service provided by solidwp.com. For more details on the privacy policy, please consult the SolidWP privacy policy.

Complianz | The Privacy Suite for WordPress

This website uses the Privacy Suite for WordPress by Complianz to collect consent records. For this functionality, your IP address is anonymized and stored in our database. For more information, consult the Complianz Privacy Statement.

LiteSpeed Cache

This site uses caching to facilitate faster response times and a better user experience. Caching potentially stores a copy of each web page displayed on this site. All cache files are temporary and are never accessible to a third party, except as necessary to obtain technical support from the cache extension provider. Cache files expire according to a schedule set by the site administrator but can easily be purged by the administrator before their natural expiration, if necessary. Please see https://quic.cloud/privacy-policy/ for more details.

Loco Translate

This extension does not collect data from your visitors.
Administrators and auditors can review the Loco Translate privacy policy.

The Events Calendar

What personal data do we collect and why?

Event, Venue, and Organizer Information

The use of the Events Calendar, Events Calendar PRO, The Events Calendar Filter Bar, Eventbrite Tickets, and Community Events plugins, as well as our Event Aggregator import service (contained within the Events Calendar plugin), may allow the collection and storage of information in your website's database.

If you create, submit, import, save, or publish information about an event, venue, or organizer, these details are retained in the local database:

Venue information: name, address, city, country, state, postal code, telephone, website, geographic coordinates (latitude and longitude).

Organizer information: name, phone number, website, email address.

Event information: website, cost, description, date, time, image.

Importing Events, Venues, and Organizers:

All data contained in a CSV or ICS file and external URLs (for events, venues, organizers, and tickets)

Source data of the import (URL from which the events are imported, such as Eventbrite, MeetUp, other compatible URL sources, etc., which may include similar or identical data to those listed above)

Eventbrite ticket information: name, description, cost, type, quantity.

Please note that to create new events through the Community Events form, a user must have an account on this domain. These details are retained in the local database. It is also possible to create events anonymously if the site owner has enabled this option.

When purchasing Eventbrite tickets, participant, purchaser, and order information are stored and managed by Eventbrite.

API Keys

The Events Calendar suite offers the use of third-party API keys. The main functions are to enhance the features we have integrated, some of which use Google Maps, PayPal, Eventbrite, Meetup, and Facebook. These API keys are not provided by Modern Tribe.

We make use of certain API keys to provide specific features.

These APIs may include the following third-party services: Google Maps (API key), Meetup (OAuth token), PayPal (email, client ID, client secret), Eventbrite (API key, authentication URL, client secret), and Zoom (email, client ID, client secret).

How long do you keep this data

All information (data) is retained in the local database indefinitely, unless otherwise deleted.

Some data may be exported or deleted upon user requests via the existing exporter or eraser.

Please note, however, that there are specific cases where we are unable to perfect the collection and exportation of all data for your accounts. We suggest conducting a search in your local database, as well as in the WordPress dashboard, to identify all data collected and stored for your specific requests.

Where we send your data

By default, the events calendar sends no user data outside of your website.

If you have extended our extension(s) to send data to a third-party service such as Eventbrite, Google Maps, or PayPal, user information may be transmitted to these external services. These services may be located abroad.