8. Personal data
For the purpose of this article:
“Personal Data” means any information relating to an identified or identifiable Person. A Person is deemed identifiable when she / he can be identified directly or indirectly, especially by reference to an identifier or to one or more specific items that are specific to the Person’s identity.
“EEA” means the European Economic Area, which, on the date of the Contract, includes the European Union, Norway, Iceland, and Liechtenstein.
“Guarantees” means the appropriate guarantees taken to maintain the security and confidentiality of Personal Data Transferred outside the EEA to a country with legislation that the European authorities have not deemed adequate, under the conditions set out in the Data Regulations.
“Person” means any physical person (client, employee, service provider, supplier, etc.) whose Personal Data are likely to be Processed as part of the Contract.
“Data Regulation” means the regulation applicable to the CLIENT in matters of using Personal Data, especially law no. 78-17 of 6 January 1978 on information technology, files, and freedoms, as well as any regulation that supplements it or that replaces it, especially Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.
“Data Controller” means the Party that determines, alone or in conjunction with another Data Controller, the purposes and means of Processing that it may entrust, in full or in part, to one or more Subcontractors.
“Subcontractor” means any physical or legal person who Processes Personal Data for and on behalf of a Data Controller.
“Process” or “Processing” means carrying out any operation or series of operations covering Personal Data, such as collecting, recording, organising, storing, adapting, modifying extracting, consulting, using, communicating by transmission, circulation or any other means of provision, convergence, interconnection, locking, deletion, and destruction, regardless of whether or not that operation is carried out automatically.
“Transfer” or “Transferring” means transferring Personal Data or giving access thereto, including by provision, from the territory of an EEA Member State to a country outside the EEA.