Data Policy - Protection of personal data
1. Data collected
For the use of our website, we are likely to collect certain data concerning the users: civil status, identity, identification...
Your data will not be disclosed to third parties. You are informed, however, that they may be disclosed pursuant to a law, a regulation or a decision of a competent regulatory or judicial authority.
If we were to take part in a merger, acquisition or any other form of disposal of assets, we undertake to obtain your prior consent to the transmission of your personal data and to maintain the level of confidentiality of your personal data to which you have consented.
Collection of Identity Data
The consultation of the website does not require prior registration or identification. It can be carried out without you communicating any personal data concerning you (surname, first name, address, etc.). We do not record any personal data for the simple consultation of the website.
Subscription to our newsletter or to specific promotional offers
Subscribing to our newsletter or to a promotional offer implies giving us your name, first name and e-mail address on the registration form. The data collected during this operation is collected solely for this purpose. They are not resold to third parties. They are deleted at the end of the contract. You can unsubscribe by contacting us directly at: firstname.lastname@example.org.
Collection of terminal data
Collection of profiling and technical data for the purpose of providing the service : some of the technical data of your device are collected automatically by the website. This information includes, but is not limited to, your IP address, Internet service provider, hardware configuration, software configuration, browser type and language. The collection of this data is necessary for the provision of services.
Collection of technical data for advertising, commercial and statistical purposes : the technical data of your device are automatically collected and recorded by the website for advertising, commercial and statistical purposes. This information helps us to customize and continually improve your experience on our website. We do not collect or store any personal data (surname, first name, address, etc.) that may be attached to technical data.
2. Purpose of the use of the personal data collected
The data collected can be used for :
Carry out operations relating to the management of clients concerning :
contracts; orders; deliveries; invoices; accounting and in particular accounts receivable management. In this context, data may be transmitted to third party distribution centers used by the website;
a loyalty programme within one or more legal entities;
customer relationship management such as customer satisfaction surveys, complaints management and after-sales service;
the selection of customers to carry out studies, surveys and product tests (except with the consent of the data subjects collected under the conditions laid down in Article 6, these operations must not lead to the establishment of profiles likely to reveal sensitive data - racial or ethnic origin, philosophical, political, trade union or religious opinions, sexual life or health of persons).
Carry out operations relating to prospecting:
the selection of people to carry out loyalty actions, prospecting, surveys, product testing and promotion. Except with the consent of the data subjects collected under the conditions laid down in Article 6, these operations must not lead to the establishment of profiles likely to reveal sensitive data (racial or ethnic origin, philosophical, political, trade union or religious opinions, sex life or health of persons).
The development of trade statistics
The organization of contests, lotteries or any promotional operation with the exception of online gambling and games of chance subject to the approval of the Online Gaming Regulatory Authority.
Management of requests for access, rectification and opposition rights/strong>
The management of unpaid debts and litigation, provided that it does not relate to infringements and/or does not result in the exclusion of the person from benefiting a right, benefit or contract
Managing people's opinions on products, services or content<
3. Data Aggregation
Agregation with non-personal data
We may publish, disclose and use aggregated information (information about all of our Users or specific groups or categories of Users that we combine so that an Individual User can no longer be identified or mentioned ) and non-personal information for industry and market analysis, demographic profiling, promotional, advertising and other commercial purposes.
Cookies storage time
In accordance with the recommendations of the CNIL, the maximum retention period for cookies is a maximum of 13 months after their first deposit in the User's terminal, as is the duration of the validity of the User's consent to the use of these cookies. The lifetime of cookies is not extended with each visit. The User's consent must therefore be renewed at the end of this period.
Purposes of the cookies
Cookies may be used for statistical purposes, in particular to optimise the services rendered to the User, from the processing of information concerning the frequency of access, the personalisation of pages as well as the operations carried out and the information consulted.
We may deposit cookies on your terminal. The cookie records information relating to navigation on the service (the pages you have consulted, the date and time of the consultation...) that we will be able to read during your subsequent visits.
To see the list of cookies that may be used by our host Shopify : https://www.shopify.fr/legal/cookies.
Possible association of cookies with personal data to enable the operation of the service
5. Storage of technical data
Technical data are kept for the time strictly necessary to achieve the purposes referred to above.
6. Time limit for storing personal data and anonymization
- Storage of data for the duration of the contractual relationship
In accordance with Article 6-5° of the Law n°78-17 of January 6, 1978 related to data processing, files and liberties, personal data subject to processing are not to be kept beyond the time necessary for the performance of the obligations defined at the time of the conclusion of the contract or the predefined duration of the contractual relationship.
- Storage of anonymised data beyond the contractual relationship / after deletion of the account
We keep personal data for the time strictly necessary to achieve the purposes described above. Beyond this period, they will be anonymised and kept exclusively for statistical purposes and will not be used for any other purpose whatsoever.
- Deletion of data after account deletion
Means shall be put in place to purge data in order to delete them effectively as soon as the retention or archiving period necessary for the fulfilment of the purposes determined or imposed is reached. In accordance with the Law n°78-17 of January 6, 1978 relating to data processing, files and liberties, you also have a right of deletion of your data, which you can exercise at any time by contacting us.
- Deletion of data after 3 years of inactivity
For security reasons, if you did not connect on the website for a period of three years, you will receive an e-mail inviting you to connect as soon as possible, otherwise your data will be deleted from our databases.
7. Information in the event of a security breach
- User information in the event of a security breach
We undertake to implement all appropriate technical and organisational measures to guarantee an appropriate level of security against the risks of accidental, unauthorised or illegal access, disclosure, alteration, loss or destruction of your personal data.
In the event that we become aware of illegal access to your personal data stored on our servers or those of our service providers, or unauthorized access resulting in the realization of the risks identified above, we undertake to:
- Notify you of the incident as soon as possible;
- Examine the causes of the incident and inform you about such causes;
- Take the necessary measures (within the limits of reasonableness) in order to mitigate the negative effects and prejudices that may result from the incident.
- Limitation of liability
Under no circumstances can the commitments defined in the above point be assimilated to any admission of fault or liability for the occurrence of the incident in question.
8. Transfer of personal data abroad
No transfers outside the European Union
We undertake not to transfer the personal data of our users outside the European Union.
10. Applicable law and litigation terms
Application of French law (CNIL legislation) and jurisdiction of the courts
11. Data portability
We undertake to give you the possibility of having all your data returned to you on request.