In order to carry out its business activities, the French Association of the International Film Festival (AFFIF), the Marché du Film (SOGOFIF) and the Cinéfondation, hereinafter referred to collectively as “the Festival,” may collect information (hereinafter “personal data”) concerning you on the following website: https://moncompte.festival-cannes.com and, for participants at the Marché du Film (SOGOFIF), on mydata.cinando.com.
Collection of personal data
Personal data is defined as being information that can be used to identify, either directly or indirectly, any natural person.
While browsing, the Festival collects data relating to your activity via cookies and tracers, which are strictly necessary to grant you access to the account, its functionalities, as well as to provide you with a secure experience.
The Festival also collects your personal data whenever you make a request on the account, in particular requests for film registration or accreditation.
The data, intended to determine your identity, can consist of: gender, last name, first name, country address, telephone number, etc.
There is data that will be mandatory in order for us to provide you with an answer or with the service requested. This date is indicated by asterisks (*).
The data collected during an accreditation process can be transmitted upon request to the competent French judicial and police authorities for security reasons.
This data, when the applicant is affiliated with a professional organization, may also be transmitted to the declared professional organization for verification purposes.
While browsing, certain links may redirect you to third-party websites with their own privacy policies, cookie policies, legal notices or different security measures.
The Festival cannot be held responsible for personal data collected and processed by these third-party websites. For more information on the processing of your data by these websites, please refer to their privacy policies or contact them directly.
Purpose of processing
All personal data that is processed is done so for specific purposes, which are defined before the data is collected by the Festival. The purposes are as follows:
• Connection to the aforementioned websites
• Registration of a film for the different official competitions and for the Short Film Corner
• Scanners at the entrances of the Palais des Festivals and at screenings of films
• Issuance of accreditation
In addition, for participants at the Marché du Film:
• Operation of a booth at the Marché du Film (location of material or services)
• Purchase of a screening time slot at the Marché du Film
• Participation in the Marché du Film programs
• Communication (newsletters, e-invites)
• Invitations to professional events
• Online and off-line publication (Guide, Industry Guides, Cinando, etc.) in trade publications
• Sending of practical and professional information (screening schedules, events)
Data retention period
All personal data collected and processed by the Festival can only be retained for a limited amount of time.
This retention period can be defined by the nature of the data in accordance with the legal provisions in force, or determined by the data controller relative to the purposes of processing.
Once the data retention period has been exceeded, the Festival pledges to delete or archive the data in question.
All personal data collected is processed exclusively by the Festival.
Nevertheless, this data may be transmitted to other recipients, such as the Festival’s service providers:
• Altec (technical support for the Festival)
• Agence Tournée Générale (Press Office for the Festival)
• Ambassador (official car service)
• ABDL (Festival protocol)
• LSCI (Security services for the Festival)
• SPJL (Festival protocol)
• Tech Event (data not submitted to them, but they have access)
In addition, for participants at the Marché du Film Online:
• Cellhire (data and cell phone service)
• Screen International
The Hollywood Reporter
• The European Audiovisual Observatory
Immosol (accommodation service)
And, solely for exhibiting companies:
• Viapass (Wi-Fi service)
• Bureau de Controle (prevention plan)
In no case will the Festival sell or rent out your personal data to third parties.
It is also possible that, within the context of a legal proceeding or inquiry, the Festival may transmit your personal data upon the request of judicial or supervisory authorities, while adhering to the legal framework established by French law or existing international agreements.
Transfer of data outside the European Economic Area
The Festival will conserve your data within the European Economic Area.
Nevertheless, it is possible that this data will be transferred to sub-contractors or commercial partners located in other countries. In this case, the Festival ensures that the protection of your personal data will be in compliance with legal provisions, in particular by means of the framework provided by the Standard Contractual Clauses developed by the European Commission in order to ensure a satisfactory level of privacy protection.
Security of processing
In its role as data controller, the Festival pledges to take all technological and organizational measures necessary to comply with applicable legal provisions, so as to ensure the security of the personal data collected.
The Festival shall thus protect your personal data from any alteration, accidental or intentional loss, or non-authorized use, disclosure or access.
Rights of data subjects
In accordance with the General Data Protection Regulation No. 2016/679 and the amended Data Protection Act of January 6, 1978, you have the right to access, rectify and delete your data, a right to the portability of your data, the right to object to the processing of your data or to request its limitation, as well as the right to define directives relating to the storage, communication and erasure of your data after your death .
These rights can be exercised by sending a request to the following address: firstname.lastname@example.org, by sending a letter to the following address: 5 rue Charlot, 75003 Paris.
We will commit to respond to your request within thirty (30) days of receipt. Note that in the event of an influx of requests or in the complexity of fulfilling your request, this period may be extended by thirty (30) days. In this case, you will be informed before the end of the first deadline.
Finally, you have the right to file a complaint with the National Data Protection Commission (CNIL).