cyril-amar
commented
4 years ago See attached (privacy prologin.html.txt) with the revised Privacy declaration for Prologin website. It must be linked to from all the forms (new website user, first subscription to the contest, edit profile) and available at all time in the footer.
Add the following text on the forms (right before the submit button): Je consens au traitement de mes données personnelles ci-dessus par Prologin.
Add the following text on the forms (after the submit button): Prologin est organisés par l'association Prologin, qui agit en tant que contrôleur de données. Les réponses collectées dans ce formulaire nous permettent de fournir les services (communication et juge en ligne) et préparer le concours : sélections, restrictions alimentaires, etc... Pour en apprendre plus à propos de notre gestion des données et de vos droits, consultez notre page dédiée.
Note: processing under the legal basis of Contractual execution is quiet dangerous and complicated, as it requires the contract to be valid under national laws (cf <18yo for instance). I think the better way to go is explicit consent, which will require to collect consent for all existing users (and store the date/time of consent). An alternative would be the Legitimate interest of the data controller, but the definition is a bit unclear.
AurelReb
See gcc.prologin.org and ask Oxian for details, he's the expert. It's probably not difficult, just adding a page about the privacy and modify the inscription page a bit. gcc.prologin.org is apparently more up to date on this subject.