PRIVACY POLICY

Pacific Games Website - Tahiti 2027

Article 1 - Purpose of the Policy

The purpose of this Privacy Policy is to inform any natural person accessing the official Pacific Games – Tahiti 2027 website, available at https://www.tahiti2027.pf (hereinafter the “Website”), of the conditions under which their personal data is collected, used, stored, secured and, where applicable, disclosed by the PACIFIC GAMES ORGANISING COMMITTEE – TAHITI 2027.

It also aims to inform users of their rights, the procedures for exercising those rights, as well as the rules applicable to cookies, trackers and similar technologies used while browsing the Website.

This Policy forms part of the regulatory framework applicable to the protection of personal data, in particular the General Data Protection Regulation (GDPR) and the French Data Protection Act (Loi Informatique et Libertés).

Article 2 - Identity of the Data Controller

The controller of the personal data processing operations carried out via the Website is:

PACIFIC GAMES ORGANISING COMMITTEE - TAHITI 2027

Tahiti Registration No.: E88433

Registered office: Complexe Napoléon Spitz, Rue Coppenrath, Pirae

Administrative offices: Ground floor, Immeuble Philanthropique, corner of Edouard Ahnne Nansouty streets, Papeete

Phone: 87 01 08 08

Email address: secretariat@tahiti2027.pf

Hereinafter referred to as the “COJ” or the “Data Controller.”

Article 3 - Data Protection Officer (DPO)

For any questions relating to the protection of personal data or any request concerning the exercise of your rights, you may contact the Data Protection Officer (DPO) at the following address: secretariat@tahiti2027.pf

Article 4 - Scope

This Policy applies to all processing of personal data carried out in connection with:

  • browsing the Website
  • use of contact forms
  • subscription to institutional communications or newsletters
  • submission of applications, in particular through the volunteers area
  • accreditation requests
  • access to the press / media area
  • use of a ticketing service or any associated service

access to any secure area, user account, subdomain or digital service linked to the Website.

Where certain services are subject to additional information or specific terms and conditions, such provisions shall supplement this Policy.

Article 5 - General Principles Applicable to Processing

The COJ undertakes to process personal data in accordance with the principles applicable to data protection, and in particular to:

  • process data lawfully, fairly and transparently
  • collect data for specified, explicit and legitimate purposes
  • limit the data collected to what is strictly necessary
  • ensure, where possible, that the data is accurate and kept up to date
  • retain data for no longer than is necessary

ensure an appropriate level of security.

Article 6 - Categories of Data Collected

Depending on the functionalities used, the COJ may collect or process the following categories of data.

6.1 Identification Data

This may include, in particular:

  • surname / last name
  • first name
  • title
  • date of birth
  • nationality
  • photograph
  • application, accreditation or file reference number

account identifier, where applicable.

6.2 Contact Data

This may include, in particular:

  • email address
  • telephone number
  • postal address

country or territory of residence.

6.3 Data Relating to Requests Submitted to the COJ

This may include, in particular:

  • subject of the request
  • content of the message
  • information provided in forms
  • attachments

history of exchanges.

6.4 Data Related to Specific Areas

Depending on the services offered on the Website, the following may also be processed:

  • volunteer application data
  • availability
  • skills
  • languages spoken
  • experience
  • assignment preferences
  • supporting documents required for accreditation
  • professional information for the press area

information relating to an order, booking or access control in connection with ticketing.

6.5 Technical and Browsing Data

This may include, in particular:

  • IP address
  • date and time of connection
  • pages viewed
  • connection logs
  • browser type
  • operating system
  • device type
  • technical preferences

data relating to consent to or refusal of cookies.

6.6 Data Relating to the Exercise of Rights

When you contact the COJ or its DPO to exercise your rights, certain data may be processed in order to verify your identity, handle your request and retain proof of the response provided.

7. Purposes of Processing

Personal data may be processed for the following purposes.

7.1 Website Management and Administration

Data may be used to:

  • enable the normal operation of the Website
  • ensure its security
  • prevent technical incidents
  • administer services
  • maintain the integrity of information systems

manage technical logs.

7.2 Management of Requests and Forms

Data may be used to:

  • receive and process information requests
  • respond to messages sent via the Website
  • monitor exchanges
  • direct the request to the competent department

process reports or notifications.

7.3 Management of Institutional Communications

Data may be used to:

  • send news updates
  • send newsletters
  • issue alerts

communicate useful information relating to the Games.

7.4 Management of the Volunteer Programme

Data may be used to:

  • receive applications
  • verify eligibility
  • review applications
  • select candidates
  • manage assignments
  • organise missions

ensure the administrative and operational management of volunteers.

7.5 Accreditation Management

Data may be used to:

  • receive and review applications
  • verify supporting documents
  • manage access categories
  • issue, control, suspend or withdraw accreditations

ensure the safety and security of venues and events.

7.6 Management of the Press / Media Area

Data may be used to:

  • verify the professional status of applicants
  • authorise access to the press area
  • manage media registrations
  • distribute press resources

manage embargoed content.

7.7 Ticketing and Access Management

Where a ticketing service is offered, data may be used to:

  • process orders or bookings
  • manage the user relationship
  • combat fraud
  • control access to venues

ensure event security.

7.8 Audience Measurement and Service Improvement

Data may be used to:

  • analyse Website traffic
  • improve ergonomics and usability
  • measure performance
  • identify the most frequently consulted sections

correct anomalies.

7.9 Compliance with Legal Obligations and Protection of Rights

Data may be used to:

  • comply with legal or regulatory obligations
  • retain evidence
  • respond to requests from competent authorities
  • prevent or manage disputes

exercise or defend the rights of the COJ.

Article 8 - Legal Bases for Processing

The processing carried out via the Website is based, depending on the circumstances, on one or more of the following legal bases:

  • the performance of pre-contractual measures taken at the request of the data subject
  • the performance of a contract, where justified by the service concerned
  • compliance with a legal obligation
  • the legitimate interest of the COJ, in particular to ensure security, the proper functioning of the Website, the management of institutional relations, fraud prevention or the organisation of the Games

consent, where required, in particular for certain cookies, certain electronic communications or certain specific processing operations.

The GDPR requires that each processing operation be based on an identifiable legal basis.

Article 9 - Mandatory or Optional Nature of Data

Where forms are available on the Website, fields identified as mandatory are necessary for the COJ to properly process the relevant request.

Failing the provision of such information, the COJ may be unable to:

  • respond to a request
  • review an application
  • process an accreditation
  • register a subscription or registration

or provide the requested service.

Fields not identified as mandatory are, unless otherwise stated, optional.

Article 10 - Recipients of Data

Personal data collected via the Website is accessible, within the limits of their respective responsibilities, only to duly authorised persons.

It may be disclosed to:

  • the competent internal departments of the COJ
  • authorised personnel responsible for the administration of the Website
  • technical service providers involved in the operation, hosting, maintenance, security or administration of the Website
  • service providers responsible, where applicable, for managing the newsletter, applications, accreditations, ticketing, forms or the press area
  • strictly authorised partners where such disclosure is necessary for the organisation of the Games

administrative, judicial or supervisory authorities where required or authorised by law.

The COJ ensures that any disclosure to third parties is appropriately governed and limited to what is necessary.

Article 11 - No Transfer Outside the European Union

Personal data processed in connection with the Website is not transferred outside the European Union.

In other words, the COJ does not organise any transfer of data to a third country within the meaning of the applicable regulations.

Article 12 - Data Retention Periods

The COJ retains personal data for no longer than is necessary for the purposes for which it is collected and processed, plus, where applicable, any additional period required to comply with legal, regulatory or evidentiary obligations.

As a general rule:

  • contact or information request data is retained for the time necessary to process the request
  • data relating to newsletter subscriptions is retained until consent is withdrawn or the user unsubscribes
  • data relating to volunteer applications is retained for the period necessary to review the application, organise the programme and manage any relevant follow-up
  • data relating to accreditations is retained for the period necessary for review, issuance, control and useful archiving
  • data relating to the press area is retained for the period necessary to manage access and media relations
  • data relating to ticketing is retained for the period necessary to manage orders, access control, fraud prevention and applicable accounting or evidentiary obligations

technical logs and security data are retained for the period necessary for security, supervision and evidentiary purposes.

The data may then be deleted or subject to intermediate archiving where necessary.

Article 13 - Data Security

The COJ implements appropriate technical and organisational measures to ensure a level of security appropriate to the risk and to protect personal data against:

  • accidental or unlawful destruction
  • loss
  • alteration
  • unauthorised disclosure
  • unauthorised access

or any other form of unauthorised processing.

Such measures may include, in particular:

  • restricting access to authorised persons only
  • authentication mechanisms
  • password management policies
  • backups
  • access logging
  • security maintenance
  • system updates
  • segregation of environments

and any other relevant measure in light of the risks.

Article 14 - Rights of Data Subjects

In accordance with the applicable regulations, any data subject may have, depending on the situation and subject to the limits provided by law, the following rights:

  • right of access to their data
  • right to rectify inaccurate or incomplete data
  • right to erasure in the cases provided for by law
  • right to restriction of processing
  • right to object to processing, under the conditions provided for by law
  • right to data portability where applicable
  • right to withdraw consent at any time where processing is based on consent

right to define instructions concerning the fate of their data after their death, where applicable.

Article 15 - Exercising Your Rights

Any request relating to your personal data or the exercise of your rights may be sent by email to:

In order to protect data subjects, proof of identity may be requested where necessary to verify the request.

Article 16 - Complaint to the Competent Authority

If, after contacting the COJ or its DPO, you believe that your rights have not been respected or that the processing of your data is not compliant with the applicable regulations, you may lodge a complaint with the competent supervisory authority, namely the French Data Protection Authority (CNIL).

Article 17 - Definition of Cookies and Trackers

A cookie is a small file placed on your device when you visit a website. Other similar technologies may also be used, such as pixels, tags, technical identifiers, local storage or other trackers.

Depending on the case, these technologies may allow:

  • the technical operation of the Website
  • your preferences to be remembered
  • secure browsing
  • audience measurement
  • performance improvement

integration of third-party content or services.

Article 18 - Principles Applicable to Cookies

In accordance with the applicable rules:

  • certain trackers may be used without prior consent where they are strictly necessary for the operation of the Website or for the provision of a service expressly requested by the user

other trackers require prior consent, in particular where they are used for non-exempt audience measurement, non-essential personalisation, the integration of third-party content or other similar purposes.

Article 19 - Categories of Cookies Likely to Be Used

19.1 Strictly Necessary Cookies

These cookies are necessary for the operation of the Website or for the provision of a service expressly requested. For example, they may allow:

  • the storage of your cookie preferences
  • the technical management of a session
  • secure browsing
  • load balancing
  • certain authentication functions

the prevention of security incidents.

These cookies may be placed without consent where they strictly serve this purpose.

19.2 Audience Measurement Cookies

These cookies make it possible to compile statistics on Website traffic and usage in order to improve content, usability and performance.

19.3 Personalisation Cookies

These cookies make it possible to remember certain preferences or display settings where such functionalities are not strictly necessary.

19.4 Cookies Related to Third-Party Content or Services

The Website may integrate third-party services, for example:

  • video players
  • interactive maps
  • sharing buttons
  • social media feeds
  • external forms

partner platforms.

These services may place their own trackers under their own responsibility and in accordance with their respective policies. Where such placement is not strictly necessary, prior consent is required.

19.5 Advertising Cookies

As of the date of this Policy, the Website is not intended to use advertising or behavioural targeting cookies, unless any future change is expressly brought to users’ attention.

Should such cookies be implemented, they would be subject to specific information and, where required, prior consent.

Article 20 - Legal Basis Applicable to Cookies

Strictly necessary cookies are based on the legitimate interest of the COJ in ensuring the operation, security and administration of the Website, or on their technical necessity for the requested service.

Other cookies are based on the user’s prior consent where required.

Article 21 - Collection and Management of Consent

Where consent is required, it is collected by means of a banner or preference management module displayed upon the user’s first visit to the Website or whenever renewed solicitation is necessary.

The user must be able to:

  • accept all or some cookies
  • refuse all or some cookies
  • configure choices by purpose

review and change preferences at any time.

Article 22 - Retention Period of Cookies

Cookies and trackers are retained for a limited period compatible with their purpose.

As a general rule:

  • strictly necessary cookies are retained for the period strictly necessary for their function
  • choices expressed regarding consent or refusal are retained for a reasonable period in order to avoid excessive solicitation

audience measurement or personalisation cookies are retained for the period defined by their settings, in compliance with the applicable rules.

The exact retention periods must be consistent with the applicable recommendations and with the intended purpose.

Article 23 - Management of Cookies by the User

Users may manage cookies:

  • via the preference management tool made available on the Website
  • via their browser settings

and, where applicable, via the settings offered by certain third-party services.

However, browser settings may affect certain functionalities of the Website.

Article 24 - List of Cookies and Trackers Used

The exact list of cookies used on the Website must be kept up to date according to the tools actually deployed.

As of the publication date of this Policy, the following categories may be used:

24.1 Strictly Necessary Cookies

  • cookie storing the user’s cookie preferences
  • technical session cookies
  • secure browsing cookies

cookies necessary for the operation of certain forms or secure areas.

24.2 Audience Measurement Cookies

statistical cookies or trackers, only if an audience measurement tool is actually deployed on the Website.

24.3 Third-Party Service Cookies

cookies or trackers linked to social networks, video players, external modules or partner platforms, only where such services are actually integrated into the Website.

The cookie policy must reflect the trackers actually present on the Website and be updated accordingly.

Article 25 - Minors

Where certain sections or functionalities of the Website are accessible to minors, their use shall take place under the responsibility of the holder(s) of parental authority or the legal representative.

The COJ may require any supporting document or useful authorisation where the nature of the relevant service makes this necessary.

Article 26 - Changes to the Policy

The COJ reserves the right to amend this Policy at any time in order to take account of:

  • legal or regulatory developments
  • doctrinal developments
  • changes to the Website
  • changes to the processing operations carried out

changes to the tools used, in particular regarding cookies.

The applicable version is the one published on the Website on the date of consultation.

Article 27 - Contact

For any question relating to this Policy or any request concerning your personal data, you may contact:

PACIFIC GAMES ORGANISING COMMITTEE – TAHITI 2027

Complexe Napoléon Spitz, Rue Coppenrath, Pirae

Ground floor, Immeuble Philanthropique, corner of Edouard Ahnne Nansouty streets, Papeete

Phone: 87 01 08 08

Email: