Privacy & Security
1. WHAT PERSONAL DATA DO WE COLLECT?
Your Personal Data is collected, for example, when you enter it in the dedicated forms on the Website or when you create your customer account in store, when you place an order on the Website, when you correspond with Customer Services and, more generally, when you browse our Website. The following Personal Data is involved:
The information collected when you create your account in our stores such as your surname, first name, postal address, email, date of birth, telephone number and your contact preferences in relation to subscription to our newsletter;
The information collected when you create your account on the Website such as your surname, first name, email address, password, your contact preferences in relation to subscription to our newsletter, your telephone number and date of birth.
The information required for managing and processing your orders such as your bank card details used in the transaction, your order history (for example, purchase amount, references of products ordered, etc.) and your written or telephone correspondence with our Customer Services;
The information collected when you browse the Website such as your browsing history (for example, the date, time of connection and/or browsing, the pages visited, etc.), the type of terminal and browser, your location, the browser language, the Internet provider and IP address.
2. WHY DO WE USE YOUR PERSONAL DATA?
We use your Personal Data for several reasons.
Our primary objective is, of course, to satisfy you as customer. For this reason, we collect most of your Data within the context of your purchases, particularly to deliver your orders and to give you the support you may request.
On the other hand, we may collect your Data when you give us your consent for purposes that will enhance your experience with our brand.
Finally, other Data is collected because it arises from a need based on a legitimate interest (for example, to facilitate the access to our Website and its use).
3. WHAT RIGHTS DO YOU HAVE WITH REGARD TO YOUR DATA?
In accordance with the relevant regulations relating to personal data, you hold and may exercise the following rights with us:
Right of access: you have the right to access the Personal Data processed by us;
Right to rectification: you have the right to request that we rectify your Data if it is inaccurate or incomplete;
Right to erasure: you have the right to request that we erase your Data (subject to the conditions set out in Article 8 below);
Right to object: you have the right to request not to receive any further communications from us by using our on-line forms, the links at the bottom of our emails or by replying "STOP" by text message.
Right to portability: you have the right to request the transfer of your Data, if the conditions for exercising this right are met;
Right to be informed: you have the right to obtain information regarding the way in which we process your Data.
If you no longer wish to receive our newsletters, you may click on the unsubscribe link located at the bottom of our emails, or configure the newsletter settings in your account, if you have created one.
4. WHO ARE THE RECIPIENTS OF YOUR PERSONAL DATA?
Your Data is intended principally to be used by our services. It may sometimes be sent to external recipients for the reasons described below. In any event, we select the recipients of your Data on the basis of their competence in data security and privacy. We conclude contracts with these recipients allowing us to ensure the high level of security of their systems. It is our service providers responsible for improving the functioning of our Websites, implementing your transactions and payment security, those of our service providers responsible for logistics (storage, preparation and delivery of your products), our Customer Services, our service provider tasked with performing marketing or commercial surveys or advertising agencies.
Your Data may also be transferred to third parties, (1) subject to your prior consent, for processing in accordance with the purpose(s) for which your Data has been collected or (2) in the event that we are obliged to do so by the law, as part of legal proceedings, or if an imperative request has been made by a public body or (3) if we are involved in a merger or acquisition operation, or asset sale.
5. TRANSFERS OF YOUR PERSONAL DATA OUTSIDE THE EUROPEAN UNION
In the event that the Personal Data is transferred to a country located outside the European Union, we commit ourselves to taking the technical and organisational measures required in order to guarantee an adequate level of security for your Data as if it had remained within the European Union.
Indeed, we demand to these Data recipients that they implement the measures required in order to ensure the same level of protection as demanded by the European regulations relating to personal data; for example, by using the standard contractual clauses of the European Commission or the Binding Corporate Rules (BCR).
6. SECURITY AND CONFIDENTIALITY OF YOUR PERSONAL DATA
We implement technical and organisational measures in order to ensure the security, integrity, authenticity and privacy of the Personal Data. We ensure that our partners maintain a level of protection comparable to ours in relation to your Personal Data. We also ensure that your transactions are secure by implementing adequate measures, as well as measures to combat fraud.
7. HOW LONG IS YOUR PERSONAL DATA KEPT?
We store your Personal Data only for the period that is strictly required for achieving the purposes for which they were collected. Hence, we store:
your Personal Data, with the exception of your bank details, which are collected and processed by the intermediary among our service providers responsible for processing payments, for 3 years from the date of the last interaction between us (i.e. from your last purchase, from the last contact (call, email, chat or social network interaction) with our Customer Services, from the opening of our newsletter, or otherwise from the date on which the customer’s profile was created);
the connection logs that are collected, provided that you consent to this, with the help of cookies and other trackers used within the context of the service, for a period no longer than thirteen (13) months. For more details, please see the "Cookies Policy"
Your bank details are stored by our payment partners, Hipay and Adyen. When you make purchases on-line, you are required to enter your bank details into the fields provided for that purpose. If you provide your consent, and in order to facilitate your payments, you may choose for our payment service provider to store your bank details in a secure manner so that they can be used for your next purchases. If this is the case, you can tick the "Save your payment details" option when you pay for your order. You may, at any moment, ask us to delete the registered bank card by consulting your account, under the heading "My payment options", or by writing to us via our contact form.
Once your Data has been deleted from our database, some of your Data may be stored in an archived form with limited access, strictly limited to the objectives of satisfying our legal, accounting and fiscal obligations, but also for the purposes of managing any complaints or guarantee claims you might have within the applicable limits of any limitation periods.
Once your Personal Data is no longer required for these purposes or for archiving purposes in order to comply with our legal obligations or for the purposes of the applicable limitation, your data will be irreversibly anonymised.
You may, at any time, request that we erase all or part of your Data, object to its processing or request that it is restricted, in compliance with Article 4 above. In the event that you request for your Data to be erased, it will be erased from our database and stored in an archived form as described above.
Finally, we inform you that if you have any complaints relating to the protection of your Personal Data, you may also contact the English supervisory authority, the Information Commissioner’s office, whose website is located at the following address:https://ico.org.uk