The following companies of the AT PARTNER group: AT PARTNER, AFP France and AMCC Fenêtres et Portes whose head offices are located at 22 A Rue de Gumbrechtshoffen in Gundershoffen (67110) (hereinafter “we”) are aware of the importance of protecting privacy and individual freedoms.
Consequently, we are dedicated to safeguarding personal data in accordance with applicable legislation, specifically the EU Regulation 2016/679 of April 27, 2016 (hereafter referred to as the “Regulation”) and the French Law n°78-17 of January 6, 1978 on Information Technology, Data files and Individual liberties as amended.
The purpose of this privacy policy (hereinafter referred to as the "Policy") is to inform you about the principles governing our processing of your personal data. We act as data controllers as defined by the applicable Regulation. This Policy applies when you browse our websites (hereinafter referred to as the "Sites").
- https://www.atpartner.fr/
- https://www.porte-fenetre.fr/
- https://www.amcc-fenetres.fr/
- https://www.amgo.fr/
- https://www.closy.fr/
For certain data processing operations, AT PARTNER, AFP France, and AMCC Fenêtres et Portes act as joint controllers within the meaning of Article 26 of the General Data Protection Regulation (GDPR).
1. Categories of personal data and purposes of processing
1.1. Internet users and site visitors
When you browse the Sites, we may process the following categories of data:
- Identification and contact data: title, surname, first name, telephone number, e-mail address, zip code, social media user account;
- Professional data: e-mail address, social media user account;
- Technical and usage data: data from cookies, logs and IP address;
- Other: information about your project, content of your message, order reference.
| Purpose of processing | Legal basis |
| Management of contact requests |
Execution of pre-contractual measures (BtoC relationship). Our legitimate interest in developing our commercial activity (BtoB) |
| Communication management | Our legitimate interest in managing communications and promoting the Group's brands |
| Management of social network | Our legitimate interest in managing communications and promoting the Group's brands |
| Creation of your customer account | Our legitimate interest in offering follow-up tools to our customers (BtoB) |
| Acquisition and analysis of website traffic | Our legitimate interest in analyzing traffic |
Based on the nature of our interactions, personal data collected may be transferred to other companies within AT PARTNER group.
1.2. Prospects and customers
We may process the following categories of data relating to our prospects and customers:
- Identification and contact data: surname, first name, postal address, building site address, telephone number, e-mail address, signature;
- Professional data: employer, job title, postal address, telephone number, e-mail address;
- Economic and financial data: invoicing information, RIB, bank details, checks, bank transfer information, balance sheet statement;
- Others: information relating to your project, order number, invoice number, order status and after-sales service (spare parts, service, QR Code, photos or vidéos), image rights certificate, Information relating to the construction site, VAT certificate, delivery note, information pertaining to the debt recovery file, History of your requests.
The provision of specific aforementioned information is a prerequisite for the potential execution of a contract. The personal data obtained is utilized exclusively for the purposes delineated below, in accordance with their respective legal grounds.
| Purpose of processing | Legal basis |
|
Management of commercial prospecting Organization of meetings with sales representatives Making contact at trade fairs |
Execution of pre-contractual measures (BtoC). Our legitimate interest in developing our commercial activity (BtoB) |
| Administration of direct marketing activities via electronic mail and text messaging |
Consent (BtoC) Our legitimate interest in developing our commercial activity (BtoB) |
| Compilation and analysis of direct marketing performance metric |
Execution of pre-contractual measures (BtoC) Our legitimate interest in developing our commercial activity (BtoB) |
| Assessing the financial viability of potential business clients | Our legitimate interest in managing the financial risk of customer projects |
| Order management |
Performance of a contract (BtoC) Our legitimate interest in developing our commercial activity (BtoB) |
| Providing tools to customers | Our legitimate interest in offering follow-up tool to our customers (BtoB) |
| Managing deliveries | Our legitimate interest in fulfilling orders |
| Billing management (BtoC) |
Performance of a contract (General terms and Conditions of sale) Our legitimate interest in obtaining payment for our products and services |
| Management of Customer Service and Warranties |
Performance of a contract (BtoC) Our legitimate interest in developing our commercial activity (BtoB) Legal obligation |
| Organization of after-sales operations |
Our legitimate interest in fulfilling orders Legal obligation (legal warranties) |
| Debt Collection management | Our legitimate interest in collecting outstanding debts |
| Accounting management | Legal obligation |
| Newsletter dispatch |
Consent of data subjects (BtoC) Our legitimate interest in communicating about our brands (BtoC and BtoB relationships) |
| Management of GDPR requests by Data Subjects | Legal obligation |
1.3. Suppliers
Regarding our suppliers, we are required to process the following categories of data:
- Identification data: surname, first name, signature;
- Professional data: employer, position, postal or delivery address, telephone number, E-mail address, Kbis (business registration document), social vigilance certificate, nominative list of foreign employees or a sworn statement certifying that foreign employees are not employed ;
- Economic and financial data: banking information, financial solvency information, tax compliance certificate;
- Others: supplier reference number, purchase order.
The provision of certain data mentioned above is a condition for the potential conclusion of a contract. The personal data collected is used solely for the purposes described low, based on the associated legal grounds:
| Purpose of processing | Legal basis |
| Purchasing management | Our legitimate interest in sourcing and using external expertise |
| Suppliers evaluation | Our legitimate interest in analyzing the reliability of our suppliers |
| Payment of supplier invoices | Our legitimate interest in paying our suppliers |
| Accounting management | Legal obligation |
| Management control | Our legitimate interest in analyzing and managing internal objectives |
| Management of the exercise of rights by Data Subjects (GDPR Requests) | Legal obligation |
2. Retention periods
Personal data is retained only for as long as necessary to fulfill the intended purposes, while considering applicable limitation periods and the principle of proportionality, in particular:
| Person involved | Shelf life |
| Internet users | Please consult our cookie policy. Customer accounts and contact requests are subject to the deadlines applicable for prospects and clients. |
| Prospects | 3 years from your last contact with us. The data of legal entities will be kept indefinitely. |
| Customers |
5 years after the end of our contractual relationship or after the end of our product warranties. The data of legal entities will be kept indefinitely. Invoicing: 10 years. Exercise of rights: 3 years. Newsletter: until you unsubscribe. |
| Suppliers |
5 years after the end of our contractual relationship. The data of legal entities will be kept indefinitely. Invoicing: 10 years. Exercise of rights: 3 years. |
Upon the expiration of the aforementioned periods, personal data will be either deleted or rendered anonymous.
3. Data recipients
Your data is intended for our internal departments in order to meet the aforementioned purposes. It may also be communicated to companies belonging to the AT PARTNER group, as well as to our subcontractors, in particular :
- our IT service providers;
- our Customer Acquisition providers;
- our marketing service providers;
- our credit insurance company;
- social networks, in their use;
- our carriers;
- our chartered accountant and financial support firms;
- our debt collection agency;
- our lawyers and legal advisors;
- our data protection officer.
Your data may be transferred to a country outside the European Union. When your personal data is transferred outside the EU/EEA, we ensure that a recognized safeguard in accordance with applicable data protection regulations is utilized to facilitate the transfer. We employ the following guarantees:
- A decision by the European Commission affirming that the country outside the EU/EEA to which your personal data is transferred provides an adequate level of protection, equivalent to that guaranteed by the applicable regulations within the EU;
- The execution of standard contractual clauses as established by the European Commission. Additionally, we implement appropriate technical, legal and organizational measures to further govern these transfers. The specific safeguards we adopt are determined by what is technically feasible and sufficiently effective for the particular transfer involved.
4. Security measures
We are dedicated to safeguarding confidentiality, integrity, availability and security of your personal data.
In compliance with Article 32 of the Regulation, we strive to implement appropriate technical, logical and organizational measures to ensure a level of security that is commensurate with the risks associated with the processing of your personal data.
Furthermore, we take proactive steps to prevent, to the greatest extent possible, any loss, accidental destruction, alteration or unauthorized access to your personal data.
5. How to exercise your rights
Pursuant to applicable legislation, you are entitled to the following rights in relation to your personal data:
1. Right to Access and rectify your personal data (Right to Access and Rectification);
2. Right to Object to the processing of your personal data where such processing is based on legitimate interests ;
3. Right to request that the processing of your personal data be restricted of that your personal data be erased (Right to Restriction of processing and right to Erasure) ;
4. Right to request the portability of your personal data (right to data portability);
5. Right to Withdraw Consent:
Furthermore, you retain the right to file a complaint with the supervisory authority, namely the Commission Nationale de l'Informatique et des Libertés (CNIL), regarding the processing of your personal data.
6. Data Protection Officer
We have appointed EDOS, whose registered office is located at 9 rue Schimper in Strasbourg, as our Data Protection Officer (DPO).
You can contact our DPO at the following address if you have any questions about this policy or if you have any queries about the processing of your data: privacy@atpartner.fr.
7. Policy updates
We may update this Policy as necessary whether due to the introduction of new processing activities involving your personal data, to enhance clarity for your understandings, or to ensure compliance with current data protection regulations.
We encourage you to review the Policy regularly to remain informed of any changes.
The date of the most recent update to this Policy is indicated at the end of this page.
Version 02/01/2025