Use of personal data
COOBOO respects the user’s personal data. The personal information collected when creating an account or a transaction is intended solely for COOBOO and the partner concerned by the transaction in question. Their use is limited to the smooth running of the transaction. None of this data is sold, given, transferred or exchanged. The computer processing relating to the files of the COOBOO system has been declared to the CNIL under number 1089308.
In accordance with European Regulation 2016/679 of 27 April 2016, the details of the processing of your personal data can be found below:
| Purpose | Data used | Recipient | Legal basis | Retention period |
|---|---|---|---|---|
| Registration and account management | Email address, password, IP address | COOBOO | Execution of the contract | 3 years after the last activity |
| Search and navigation | Destination, travel dates, number of people, preferences and favorites | COOBOO | Execution of the contract and legitimate interests | 1 year after the last activity |
| Assessment of an establishment | Email address, address IP, content relating to the stay | COOBOO | Execution of the contract and legitimate interests | Duration of publication of the establishment |
| Reservation of a tourist service | Name, first name, title, postal address, email address, telephone number | COOBOO and service provider concerned | Execution of the contract and legal obligation | 10 years for invoicing |
| Subscription to a professional service or purchase of photos | Name, first name, title, postal address, email address, telephone number | COOBOO | Legal obligation | 10 years for invoicing |
Following a transaction on COOBOO, the user receives by email information relating to this transaction specifically, but does not automatically subscribe to a recurring sending of information.
Payment information when required is always processed by an approved and fully secure provider. No payment data is stored on our systems.
In accordance with Article 6-II of the Law of 21 June 2004 on Confidence in the Digital Economy, data likely to enable the identification of the user may be communicated to the judicial authority when it requires it in the interest of national security, the public interest or the application of the law.
When you log in via Google or Facebook, a direct connection is established to the servers of the associated platform to inform you that certain data from your Google or Facebook account will be made available to us. If you have expressly given your consent to Google or Facebook in accordance with Article 6 (1) (a) GDPR, this data will be transmitted to us as part of the registration process via these platforms. We only use your email address, your first and last name from the transmitted data, which we store until their automatic deletion. This data is used to set up your user account.
Right of access, modification and deletion
In accordance with Article 39 of Law No. 78-17 of 6 January 1978 relating to information technology, files and freedoms, amended by Law No. 2004-801 of 6 August 2004 (art. 5) and European Regulation 2016/679 of 27 April 2016, the user has the right to access, modify, rectify and delete data concerning him/her. He/she may exercise this right by logging into his/her user account, from which he/she is able to modify, rectify, update and correct all information concerning him/her. Alternatively, he/she may send his/her request by post to the COOBOO Service, IBAOO, 690 route des Reveyrons, 73170 Saint-Pierre-d’Alvey, France.
Cookies and site navigation
Some technical and non-personal information may be collected when browsing COOBOO, such as the browser version, operating system, and IP address of the terminal used. In addition, browsing the site may result in the implantation of cookie files in this terminal, with the aim of improving the ergonomics of the dialogue between COOBOO and the user. Only the issuer of a cookie is likely to read or modify information contained therein.
Cookies managed by COOBOO may be used to establish attendance statistics, adapt the presentation to the display capabilities of the terminal used, memorize information relating to the user’s preferences or to a form already completed, or to access the private area of the user’s account. The retention period of a cookie issued by COOBOO in the user’s terminal is 180 days maximum.
On some pages, cookies issued by COOBOO partners may be placed by them on the user’s terminal, subject to the choices that the user may have previously made. The issue and use of cookies by these partners are subject to their own privacy protection policy. In particular, Adara, Sojern and Travel Audience are third parties that may place cookies for the purposes of enriched advertising targeting. If you do not wish to be subject to this, you can visit https://adara.com/company/privacy-promise/, https://www.sojern.com/privacy/ & https://travelaudience.com/product-privacy-policy/
The user has the option to refuse cookies on his terminal by modifying his browser settings. However, since cookies are essential to the operation of COOBOO, their deactivation results in the alteration of navigation on the site and the impossibility of accessing certain essential services. Furthermore, COOBOO declines all responsibility for the consequences linked to the degraded operation of the site’s services resulting from the impossibility of using cookies necessary for their operation and that the user has refused or deleted. The user can also modify his cookie preferences at any time.
If the terminal is used by several people or if it has several browsers, the consistency of the content displayed on COOBOO can only be ensured if the user logs into their personal account.
Protection of information
Concerned about the trust shown by the user when he connects to the site to organize his vacation, COOBOO is attentive to the respect of the protection of the information collected. To ensure this protection, COOBOO implements technical and organizational measures against unauthorized processing, alteration and loss of data. COOBOO’s computer systems are equipped, among other things, with encryption of sensitive data and a software protection device.
