• Last Updated: 7 February 2025
  
  Introduction Welcome to Specter Visual (“we,” “our,” or “us”). We are a professional videography and photography agency based in France, committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) and French data protection laws. This Privacy Policy explains how we collect, use, and safeguard your personal information when you visit our website, contact us, or use our services. By using our website and services, you agree to the collection and processing of your personal data as described in this policy.

Data We Collect

• We collect different types of personal data, depending on how you interact with us.

Data You Provide to Us

• Contact Information: Name, email address, phone number, and company name when you contact us via our website, email, or phone.
• Booking Details: Information related to your project, such as event details, locations, and preferences.
• Payment Information: If you make a purchase, we may collect billing details (processed securely by our payment providers).
• Media Content: Images and videos captured during our services, which may contain identifiable individuals.

Data We Collect Automatically

• When you visit our website, we may collect:

• Technical Data: IP address, browser type, operating system, and device information.
• Usage Data: Pages visited, time spent on our site, and interaction with our content.

How We Use Your Data

• We use your personal data for the following purposes:

• To provide and manage our photography and videography services.
• To process bookings, payments, and customer inquiries.
• To improve our website and user experience.
• To send updates, offers, and marketing communications (with your consent).
• To comply with legal obligations, such as tax or regulatory requirements.

Legal Basis for Processing Data

• Under GDPR, we process your data based on the following legal grounds:

• Contractual Necessity: To fulfill our agreement with you (e.g., processing bookings).
• Legitimate Interest: For business operations like website analytics and security.
• Consent: For marketing communications (you can withdraw your consent at any time).
• Legal Obligation: To comply with French and EU legal requirements.

How We Share Your Data

• We do not sell or rent your data. However, we may share it with:

• Service Providers: Payment processors, hosting providers, or business partners assisting in service delivery.
• Legal Authorities: If required by law or in response to legal requests.
• Clients (with consent): If your image is featured in promotional materials or portfolios.

• All third parties handling personal data comply with GDPR.

Data Retention

• We retain personal data only as long as necessary for the purposes stated in this policy or as required by law. Generally:

• Client information is kept for 5 years for legal and contractual records.
• Media files may be stored longer if agreed upon in contracts.
• Website usage data is anonymized or deleted after 12 months.

• When no longer needed, data is securely deleted or anonymized.

Your Rights Under GDPR

• As a data subject under GDPR, you have the following rights:

• Access: Request a copy of your personal data.
• Rectification: Correct inaccurate or incomplete information.
• Erasure ("Right to be Forgotten"): Request deletion of your data.
• Restriction: Limit how we process your data.
• Portability: Obtain your data in a structured format.
• Objection: Object to data processing, including for marketing.
• Withdraw Consent: Stop receiving marketing communications at any time.

• To exercise your rights, contact us through our Contact page]. We will respond within one month as required by GDPR.

Data Security

• We implement strict security measures to protect your personal data from unauthorized access, loss, or misuse, including:

• Encryption of sensitive data.
• Access controls to restrict unauthorized use.
• Secure servers and regular security audits.

• However, no method is 100% secure. If you suspect a data breach, please contact us immediately.

International Data Transfers

• If your data is transferred outside the European Economic Area (EEA), we ensure it is protected by GDPR-compliant safeguards, such as:

• Adequacy decisions by the European Commission.
• Standard contractual clauses approved by the EU.
• Binding corporate rules with third-party processors.

Changes to This Privacy Policy

• We may update this policy periodically. The latest version will always be available on our website, with significant changes notified via email or website notice.

Contact Us

• If you have questions about this Privacy Policy or your personal data, please reach us through our Contact page.
  
  If you believe your rights have been violated, you may also lodge a complaint with the CNIL (Commission Nationale de l'Informatique et des Libertés), the French data protection authority.
  
  🔗 CNIL Website: https://www.cnil.fr/