1. Introduction
As part of its business activities, NOCTIS EVENT (trading under the name PARIS SOCIETY), in its capacity as data controller, collects and processes personal data relating to visitors to the paris-society.com website and the services it offers.
The main purpose of this document is to provide concise, transparent, understandable, and easily accessible information about the data processing operations carried out so that you can understand the conditions under which your data is processed.
If necessary, you can ask your questions directly by sending an email to donnees.privees@paris-society.com or a letter to the following address:
NOCTIS EVENT
38, avenue des Champs Élysées
75008 PARIS
2. Fair and transparent collection of your data
In the interests of fairness and transparency towards its visitors, NOCTIS EVENT takes care to inform the persons concerned of each processing operation it carries out by means of information notices.
This data is collected in a fair and loyal manner. No data is collected without the knowledge of the individuals concerned and without their being informed.
3. A legitimate and proportionate use of your data
When NOCTIS EVENT processes data, it does so for specific purposes: each data processing operation carried out has a legitimate, determined, and explicit purpose.
For each processing operation carried out, it undertakes to collect and use only data that is adequate, relevant, and limited to what is necessary in relation to the purposes for which it is processed.
NOCTIS EVENT ensures that the data are, if necessary, updated and implements procedures to allow the deletion or rectification of inaccurate data.
4. The personal data we process
NOCTIS EVENT collects and processes the following categories of personal data:
| Categories of data | Detail of data |
|---|---|
| Categories of data Identification data |
Detail of data
|
| Categories of data Data relating to personal and professional life | Detail of data Profession |
| Categories of data Technical data | Detail of data Browsing data collected during your visit to our website through cookies and other trackers. |
5. Legal bases and purposes of our data processing
The data processing carried out by NOCTIS EVENT pursues the purposes identified below and is based on the following legal bases:
| Legal basis of the processing | Purposes |
|---|---|
| Legal basis of the processing Consent | Purposes Collect enquiries with the contact form |
| Legal basis of the processing Legitimate interest of the company |
Purposes
|
6. The recipients of your data
We share your personal data with individuals who are strictly authorised to do so in accordance with their roles within NOCTIS EVENT.
Third parties outside NOCTIS EVENT, listed in the table below, are also recipients of your data:
We ensure that only authorized persons can access this data.
| Categories of recipients | Finality |
|---|---|
| Categories of recipients Content managers (Wordpress and Webflow) | Finality Contact form management |
| Categories of recipients Booking software editor (Sevenrooms) | Finality Booking management |
| Categories of recipients NOCTIS EVENT group companies |
Finality
|
7. Transfers of your data
We may transfer your personal data outside the European Union in connection with the IT tools used for our activities.
In the event that the recipient country does not provide a level of personal data protection equivalent to that of the European Union, NOCTIS EVENT undertakes, in the absence of an adequacy decision and after assessing the level of protection of your rights in the territory of the third country where the recipient of your personal data is established, to take all necessary measures to ensure the protection of your personal data on the basis of appropriate safeguards (in particular standard contractual clauses defined by the European Commission), which can be obtained directly from NOCTIS EVENT at the following address donnees.privees@paris-society.com.
8. The periods for which we keep your data
NOCTIS EVENT ensures that data is only kept in a form that allows the identification of the individuals concerned for as long as necessary for the purposes for which it is processed.
The retention periods we apply to your personal data are proportionate to the purposes for which it was collected.
More specifically, we organise our data retention policy as follows:
Please note that in the event of a pre-litigation or litigation dispute between you and NOCTIS EVENT, your personal data will be retained until the dispute is settled amicably or, failing that, until the corresponding legal action becomes time-barred (5 years in civil and commercial matters).
| Data and purposes | Retention period |
|---|---|
| Data and purposes Contact and customer relationship management | Retention period 3 years from the last incoming contact |
| Data and purposes Analysis and audience marketing campaigns and site | Retention period 25 months |
| Data and purposes Request for the exercise of rights | Retention period Duration of the processing of the request increased by a conservation in archives for the duration of prescription and mandatory conservation |
| Data and purposes Cookies | Retention period Maximum 13 months for validity, consent 6 months, and data from cookies 25 months |
9. Security of personal data
NOCTIS EVENT has implemented technical and organisational measures appropriate to the sensitivity of personal data in order to ensure the integrity and confidentiality of the data and to protect it against malicious intrusion, loss, alteration or disclosure to unauthorised third parties.
Nevertheless, the security and confidentiality of personal data depend on the good practices of each individual; the data subject is therefore invited to remain vigilant in this regard.
10. Subcontracting
When NOCTIS EVENT uses a service provider, it only discloses personal data to the service provider after obtaining a commitment and guarantees from the service provider regarding its ability to meet these security and confidentiality requirements.
We enter into contracts with our subcontractors in accordance with our legal and regulatory obligations, which precisely define the general conditions for the processing of personal data by them.
11. Cookies
Cookies are subject to a Cookies policy. Please click here to access the cookie policy.
12. Your Rights
NOCTIS EVENT is particularly concerned with respecting your rights in relation to the data processing it carries out, in order to ensure fair and transparent processing, taking into account the specific circumstances and context in which your personal data is processed.
12.1 Your right of access
Under this heading, you will be informed whether or not your personal data is being processed and, if so, you have the right to request a copy of your data and information concerning:
- the purposes of the processing ;
- the categories of personal data concerned;
- the recipients or categories of recipients and, where applicable, if such communication is to be made, the international organisations to which the personal data have been or will be disclosed, in particular recipients established in third countries;
- where possible, the period for which the personal data will be stored or, where that is not possible, the criteria used to determine that period;
- the existence of the right to request the data controller to rectify or erase personal data concerning you, the right to request a restriction on the processing of personal data concerning you and the right to object to such processing;
- the right to lodge a complaint with a supervisory authority;
- information about the source of the data where it is not collected directly from the data subjects;
- the existence of automated decision-making, including profiling, and in the latter case, relevant information about the underlying logic and the significance and envisaged consequences of such processing for the data subjects.
12.2 Your right to rectify your data
You may ask us to rectify or complete your personal data if it is inaccurate, incomplete, ambiguous or obsolete.
12.3 Your right to erase of your data
You may ask us to delete your personal data in the cases provided for by law and regulations.
Please note that the right to erasure is not a general right and can only be exercised if one of the reasons provided for by the applicable regulations applies.
12.4 Your right to restrict data processing
You may request the restriction of the processing of your personal data in the cases provided for by law and regulations.
12.5 Your right to object to data processing
You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you where the legal basis is the legitimate interest pursued by the data controller (see the article above on the legal basis for processing).
If you exercise this right to object, we will ensure that we no longer process your personal data in the context of the processing in question, unless we can demonstrate compelling legitimate grounds for continuing the processing. These grounds must override your interests, rights and freedoms, or the processing must be justified for the establishment, exercise or defence of legal claims. You have the right to object to personalised marketing.
12.6 Your right to data portability
You have the right to the portability of your personal data. Please note that this is not a general right. Not all data from all processing operations is portable, and this right only applies to automated processing, which excludes manual or paper-based processing.
12.7 Your right to withdraw consent
Where our processing of data is based on your consent, you may withdraw it at any time. We will then cease processing your personal data without affecting any previous operations to which you have consented.
12.8 Your right to appeal
You have the right to lodge a complaint with the GDPR supervisory authority in the country in which you are located, without prejudice to any other administrative or legal remedy.
12.9 Your Right to Set Post-Mortem Instructions
You have the right to define specific instructions regarding the storage, deletion and disclosure of your personal data after your death, as indicated below. These special instructions will only apply to the processing we carry out and will be limited to that scope.
You must also, once this person has been appointed by the executive authority, define general guidelines for the same purposes.
12.10 How to exercise your rights
All of the rights listed above can be exercised by sending an email to the following address: donnees.privees@paris-society.com or by writing to: NOCTIS EVENT, 38 avenue des Champs-Élysées 75008 PARIS, FRANCE, providing proof of your identity by any means.
13. Modification of this document
We invite you to regularly consult this policy on our Website. It may be updated.
Updated on 13/08/2025.