Your personal data is very important to BMP S.A. (“BMP”, “we” or “our”). This notice (the “Privacy Notice”) is to inform you about the processing of personal data that we may collect when you access our online and offline services, including the personal data we collect through our various channels, such as our website, applications, social networks, our customer relations centre, our boutique and the events we organize.
BMP is part of Audemars Piguet group. We are responsible for the collection and processing of your personal data, at the local level, for the purposes of managing the commercial or contractual relationship relating to our products and services, in accordance with the applicable local laws. At the group level, Audemars Piguet (Marketing) SA is responsible for defining the overall policy for the processing and management of your personal data for commercial and marketing purposes (such as management of the central group CRM system and promotional campaigns at the group level as opposed to local campaigns).
This Privacy Notice is governed and interpreted by the EU General Data Protection Regulation 2016/679 (the “GDPR”) and the Federal Act on Data Protection of 19 June 1992 (the “FADP”), under the control of the Federal Data Protection and Transparency Officer. However, Audemars Piguet group may take into account provisions that are stricter than those of the GDPR or the FADP, when required by law.
We invite you to take the time to read this Privacy Notice in its entirety. We are available at the e-mail address firstname.lastname@example.org to answer any questions you may have, particularly in the exercise of your rights to your personal data described in Section VI.
I. PERSONAL DATA WE COLLECT
This Privacy Notice applies to any personal data we may collect from you or about you (see below), from the following sources:
- visiting our website and using Audemars Piguet mobile applications (the “Site”): in particular, for the response to a form or the use of a service (limousine service or information request);
- electronic and telephone communications between you and BMP, another Audemars Piguet entity or Audemars Piguet customer relations centres;
- our boutique;
- purchases of products sold in our boutique or requests for after-sales service;
- registration forms that we collect, either printed or available on electronic tablets, especially in our boutique or in the context of events;
- data that you share publicly on social networks as part of your interaction with BMP (for example, when you “like” a BMP page on social networks).
We may collect different types of information from you depending on the purpose and the manner in which you interact with BMP or another Audemars Piguet entity (online, offline, over the phone, etc.), as indicated below:
- Personal details: any information you provide us that would allow us to contact you, such as your name, e-mail address, postal address or telephone number, as well as your purchase history and any after-sales services that you may request. We may also process the images taken as part of the surveillance systems in place in our boutique.
- Demographic information: any information describing your demographic and behavioural characteristics. This includes, for example, your date of birth, gender, nationality, geographical location (e.g. postal code), language preference, other preferences, such as your favourite products, your list of favourites, your professional situation (professional title, company/employer, professional contact details), your marital status, your interests (sports, leisure) and your lifestyle.
- Customer feedback: This is information that you voluntarily share with us about your experience using our products and services.
- Payment information: any of the information that we need to carry out an order or that you use to make a purchase, and, if you so request, the data necessary to refund the VAT (the name of the cardholder, credit card number, expiry date, a copy of your identity card, etc.) and information or documents required by anti-money laundering laws.
Privacy and protection of minors. Our Site is not intended for users under 16 years old. We do not knowingly collect personal data from children under 16 years of age. If you are a parent or guardian and you know that your child has provided us with personal data, please contact us. If we realize or are aware that we collected personal data from a child under the age of 16 without verification of parental consent, we will take steps to remove such information from our servers, unless we are required to retain it by law (accounting or purchase data, data necessary for applicable guarantees or the management of complaints, etc.). In any event, users under 16 who provide us with personal data have the discretionary right to the erasure of their data that they can exercise, at any time and without cause, alone or through their usual guardian, by contacting us at the address mentioned in Section VIII “Contact Us”. Requests for erasure will be processed in the conditions and subject to the reservations described above.
II. USE OF YOUR PERSONAL DATA
We collect and use your personal data for the purposes described below. Please note that the types of use listed below depend on your use of our services and do not systematically affect each user:
- processing of your orders, purchases (including any VAT refund requests) and deliveries;
- answering your queries, questions and/or requests of any kind;
- improving customer service and managing customer relations, including managing VIP programs and loyalty programs. The data collected helps us respond to your requests, meet your needs more effectively and improve our products and services;
- sending you regular information, in particular about us, Audemars Piguet, news on our products and after-sale services, our events, the opening of new boutiques, points of sale or satisfaction surveys concerning our products and services, with your consent when required;
- providing after-sales services, including in the context of calls upon warranty;
- managing and registering lost, stolen or counterfeit products;
- taking the necessary steps to detect fraud;
- managing our Site. We are also likely to cross-reference this data to better understand how users, as a group, use the services and/or resources available on our Site;
- complying with our billing and accounting obligations, as well as our legal and regulatory obligations (such as those arising from anti-money laundering laws);
- dealing with any claims or litigation (particularly in the context of the exercise of legal claims and defences in the event of litigation);
- producing reports and statistics, particularly for the purpose of measuring traffic on the Site;
- guaranteeing the safety of our boutique;
- guaranteeing IT security and IT operations.
III. HOW WE PROTECT YOUR PERSONAL DATA
We have put in place adequate security practices and measures relative to the processing of personal data in order to prevent unauthorized third-party access to your personal information and to protect it from being altered, disclosed or destroyed. These security measures consist primarily in a strict control of access and administrators, encryption of all personal data in our database of customer and potential customer relationships, periodic review of access, constant supervision of the infrastructure, as well as a risk analysis and remediation strategy.
Nevertheless, even if we strive to protect your personal data, we cannot guarantee the security of the information transmitted on our Site during its transit through the Internet by means of any unsecured protocol.
IV. SHARING OF YOUR PERSONAL DATA
We undertake not to sell, exchange, rent or transfer in any way your personal data without your consent (which will have been given after receipt of prior information) and subject to the cases listed below:
- Transfers within Audemars Piguet: the various Audemars Piguet entities (including BMP) can share your personal data with each other in order to ensure the continuity of our services, our relationship with our customers, our potential customers and the users of our Site, as well as to ensure the continuity of our offers and information intended for you. To ensure a sufficient level of protection, transfers are governed, if necessary, by the contractual clauses in force adopted by the European Commission or through mechanisms validated by the latter or by the competent authorities in charge of the protection of personal data within of the European Economic Area and, if applicable, by additional measures that may be required in other jurisdictions.
- Transfers to third-party service providers: In addition, we may share your personal data with third parties located abroad, for the following purposes:
- For the purposes described in Section II hereinabove, we may share with our commercial and advertising partners cross-references of demographic information of a generic nature, containing no direct identification of our visitors, for statistical purposes.
- We may disclose such information to a third party in connection with any merger or acquisition, or to any organisation involved in any transfer or sale of our business or our capital.
We always require these third parties to provide sufficient guarantees of confidentiality and security and to take the necessary organisational and technical measures to protect your personal data in accordance with the applicable legislation. To ensure a sufficient level of protection, transfers are governed, if necessary, by the contractual clauses in force adopted by the European Commission or through mechanisms validated by the latter or by the competent authorities in charge of the protection of personal data within the European Economic Area and, if applicable, supplemented by measures that may be required in other jurisdictions. In addition, service providers are only allowed access to your personal data and use it on our behalf in relation to the specific tasks assigned to them, based on our instructions.
- Transfers to third parties for legal reasons: we may disclose personal data to meet legal requirements, respond to a request from a competent law enforcement agency, exercise our rights or defend ourselves in the context of a claim or legal proceeding or to provide evidence to protect the interests of BMP/an Audemars Piguet entity and to fight against fraud.
V. STORAGE OF YOUR PERSONAL DATA
We keep your personal data for the time necessary to satisfy the different purposes set out in Section II hereinabove, except in cases in which the law allows us or requires us to keep such data longer.
- the personal data used to manage our relationship with you or to send you information, especially about us, Audemars Piguet, news on our products or after-sale services, events or satisfaction surveys will be kept for the duration necessary for the management of our relationship with you, and no longer than a three-year period from the end of your business relationship with us or your last contact with BMP/Audemars Piguet group if you are from a country of the European Economic Area or Switzerland. This period is extended to ten years if you are from the United States and five years if you are from any other country.
- Data related to the management and history of your purchases and the services provided to you, as well as the management of complaints and calls upon guarantees will be retained for a maximum period of ten years from the last event. Audemars Piguet group (including BMP) will keep the data you provided as part of any VAT refund application for a maximum period of one month.
- The personal data processed for the management of requests for access to or rectification of personal data will be kept for a maximum period of three years.
These maximum periods apply unless you request the deletion or termination of the use of your data before the expiry of these periods for any ground compatible with a legal obligation of conservation that may be imposed on Audemars Piguet group (including BMP).
VI. YOUR RIGHTS TO YOUR PERSONAL DATA
Access to personal data, modification, updates and deletion: if applicable law provides so, you may (i) request access to your personal data held by BMP, consult such data and obtain a paper or electronic copy thereof, and (ii) request the correction, limitation, updating or deletion of your personal data or oppose the processing of such data. You may exercise such rights by sending a written request, along with a copy of an identity document, to BMP or to the postal or electronic address indicated in Section VIII “Contact Us”, below. We will endeavour to present the personal data concerned, to correct or delete such data, according to your request and under the conditions provided by the applicable law.
Please note that we may have to keep some of your personal data after a removal request, in order to meet our legal or contractual obligations. We may also be permitted by applicable law to retain some of your personal data to comply with our legal obligations.
Opt-out: you may also ask to no longer receive information or offers from us at any time, either by following the unsubscribe process described in the messages you may receive from us, or by writing to us at the address indicated in Section VIII “Contact Us”, below.
VII. AMENDMENTS TO OUR PRIVACY NOTICE
We reserve the right to change this Privacy Notice at any time. We encourage you to check this page periodically for updates and to stay informed about the steps we take to protect the personal data we collect. You agree and acknowledge that it is your responsibility to regularly review our Site to be aware of any changes made thereto.
VIII. CONTACT US
If you have any questions about this Privacy Notice, please contact us at email@example.com or at the following address: Audemars Piguet (Marketing) SA, Attn: Data Protection Officer, Route de France 16, 1348 Le Brassus, Switzerland.
This document was last updated on January 8, 2019.