This policy describes how SFOPA processes personal data collected through the sfopa.org website, in accordance with the General Data Protection Regulation (GDPR) and applicable French law.

1. Data Controller

The data controller is:
Société Française d’Orthodontie par Aligneurs (SFOPA)
Address: 4 Rue du Puits 67210 OBERNAI
Email: contact@sfopa.org

2. Data Collected

Depending on the features used on the website, SFOPA may collect the following categories of data:

• Identification information: last name, first name, title, specialty, RPPS number or equivalent, if applicable.

• Contact information: email address, business mailing address, phone number.

• Membership information: membership type, year of enrollment, status (membership dues paid up to date), billing information (billing address, country, and any EU VAT number).​

• Information regarding conference and training registrations: selected events, chosen options, and any logistical details (workshops, meals, preferences).​

• Payment information: Online payments are processed by a secure service provider (e.g., payment platform, bank); SFOPA does not store full credit card numbers.

• Browsing data: shortened IP addresses, connection logs, pages viewed, technical cookies, and audience measurement cookies.

3. Purposes and Legal Basis

The data is processed for the following purposes:

• SFOPA Membership Management: creating and maintaining member accounts, billing membership fees, and sending receipts. Legal basis: performance of a contract (Article 6(1)(b) of the GDPR).

• Management of registrations for SFOPA conferences, workshops, and training sessions: registration, confirmations, practical information, and billing. Legal basis: performance of the contract.

• Distribution of scientific and institutional information(newsletters, conference updates, information about the society’s activities). Legal basis: SFOPA’s legitimate interest in informing its members and professional contacts; you may unsubscribe at any time via the link provided in each email.

• Response to requests submitted via the contact form. Legal basis: legitimate interest or pre-contractual measures, depending on the nature of the request.

• Website improvements and anonymized traffic statistics. Legal basis: legitimate interest in better understanding how the website is used, supplemented by consent where required by law for certain cookies.

4. Recipients of the data

The data is primarily intended for:

• to the members of the SFOPA executive committee and to those responsible for the administrative, accounting, and logistical management of events;​

• technical service providers working on behalf of SFOPA (website host, developer, online payment provider, email marketing tool), acting as processors within the meaning of the GDPR.

SFOPA does not sell or rent personal data to third parties. Certain information may be disclosed to the relevant authorities in compliance with a legal or regulatory obligation.

5. Shelf life

Data is retained for limited periods of time, commensurate with the purposes for which it is collected:

• Membership and billing data: duration of the contractual relationship, followed by the legally required retention period for accounting records (generally 10 years).

• Data related to conference or training course registrations: retained for the duration necessary to organize and manage the event, then archived for evidentiary and statistical purposes.

• Marketing data (newsletters, scientific information): until you request to unsubscribe or three years after the last active contact.

• Technical logs and browsing data: from a few months to a maximum of one year, depending on security requirements and the need for aggregated statistics.

6. Individual Rights

In accordance with the GDPR, you have the following rights regarding your data:

• right of access and correction;

• the right to object to processing or to restrict processing, under the conditions set forth in the Regulation;

• the right to erasure (“right to be forgotten”) when the conditions are met;

• the right to data portability where the processing is based on consent or the performance of a contract and is carried out by automated means;

• the right to set guidelines regarding what happens to your data after your death.

To exercise these rights, you can contact SFOPA at the following email address: contact@sfopa.org, attaching proof of identity if necessary.
You also have the right to file a complaint with the CNIL (www.cnil.fr).

7. Cookies and trackers

The sfopa.org website may use:

• cookies that are strictly necessary for the website to function (session management, shopping cart, security);

• anonymized audience measurement cookies to collect traffic statistics;

• in some cases, third-party cookies (embedded videos, social media) when these services are used on the site.

During your first visit, an information banner will ask you to accept, decline, or configure non-essential cookies. You can change your settings at any time through your browser settings or, if available, through a consent management tool.

8. Safety

SFOPA implements reasonable technical and organizational measures to protect personal data against loss, misuse, unauthorized access, disclosure, alteration, or destruction.
However, since no system is completely secure, SFOPA cannot guarantee the absolute security of information transmitted over the Internet.

9. Policy Update

This privacy policy may be updated from time to time, particularly to reflect changes in the law or changes to the services offered by SFOPA.
The date of the last update will appear at the bottom of the page. In the event of a significant change, a specific notice may be posted on the website or sent via email.

Last updated: December 8, 2026.