Privacy policy

Privacy Policy - RGPD

Date of last update : 17/02/2020

The purpose of this privacy charter (the "Charter") is to formalise our commitment to respect the privacy of users of the https://www.kriss-laure.eu website (the "Site") operated by SNC KRISS-LAURE EUROPE (the "Operator").

The Charter and the General Conditions of Use of the Site form a contractual whole. All capitalized terms not defined in the present Charter are defined in the General Terms of Use.

You can consult the general terms and conditions of use by clicking on this link.

As part of the provision of the Site, we process your personal data in compliance with the General Regulations on Data Protection ("RGPD") and under the conditions set out below. Personal data is any information relating to an identified or identifiable natural person. We collect and process personal data in connection with the provision of our Services or communication about the Services only in strict compliance with the GDPP. We collect only personal data that is adequate, relevant and limited to what is necessary for the purposes for which it is processed. For example, you will never be asked to provide personal data that is considered "sensitive", such as your racial or ethnic origin, political, philosophical or religious views. By entering your information on the Site, you authorise us to process your personal data in accordance with the Charter. If you do not agree to the terms of this Policy, please do not use the Site and its Services.

We consider that your personal data are divided into 2 families on the Site :

 

   Navigation and connection data ("Personal Technical Data") such as the date and time of your navigation as well as information about the browser you are using, information that identifies how you access the Site, which pages are consulted and for how long. (see chapter Navigation on the Site)

    The data related to your information ("Informative Personal Data") such as your title, surname, first name, postal address, postal address supplement, postal code, City, Country, email address, telephone.

 

    In order to allow navigation on the Site and the management and traceability of the services ordered by the customer, we use: your Personal Technical Data.

    To improve navigation on the Site we use: your Personal Technical Data

    To enable you to order and to put you in contact with an advisor we use: title, surname, first name, postal address, additional postal address, postal code, town, country, email address, telephone number.

    To carry out communication and information campaigns we use: emails and telephone (if you do not object)

The Site does not in any case market your data: whether it is your Personal Technical Data or your Personal Informative Data, which are therefore only used for the purpose of providing the Service. We use your personal data to enable the implementation and management of the Site Services. We do not use your Informative Personal Data in order to operate and improve our Services, our Site and our approach. This information is specific to you and is not processed for statistical purposes.

Connection Data: Each time you visit the Site, we collect the date and time of connection, as well as information about the browser you are using for technical statistics and to improve the Service. Browser Data: We also collect information that identifies how you access the Site, which pages are visited and for how long. In this context, we may use Cookies as specified in paragraph 6 below.

On the Site you can order and pay for your products. To this end, you accept that we may use external service providers who may collect personal data for the purpose of enabling the proper operation of credit card or e-purse payment processing services. You will find all information about our subcontractor for the payment part in the chapter "Recipients of your data". To pay for your purchase, you must provide your payment details, including your credit card number, validity date, security code and name of the cardholder.

In order to respond to any contact requests you may make to our Customer Service department and to confirm your information, we may use your first and last name, e-mail address and telephone number to contact you.

We have implemented technical and organisational security measures to ensure the security, integrity and confidentiality of all your personal data to prevent it from being distorted, damaged or accessed by unauthorised third parties. We ensure an appropriate level of security, taking into account the state of knowledge, the costs of implementation and the nature, scope, context and purposes of the processing as well as the risks and their likelihood. However, it is specified that no security measure is infallible and we are therefore unable to guarantee absolute security for your personal data.

Data storage and security

In compliance with the RGPD, the data collected through site registration is stored and secured by a host committed to strict compliance (Shopify Inc) to whom the site subcontracts this part. You will find details of this subcontractor in the chapter "Recipients of your data".

Incident Notifications

No matter how hard you try, no method of transmission over the Internet and no method of electronic storage is completely secure. As a result, we cannot guarantee absolute security. If we become aware of a security breach, we will notify the users concerned so that they can take appropriate action. Our incident notification procedures take into account our legal obligations, whether at a national or European level. We are committed to fully informing our users of all matters relating to the security of their account and to providing them with all necessary information. No personal information of the customer of the Site is published without their knowledge, exchanged, transferred, assigned or sold on any medium whatsoever to third parties.

How long do we keep your personal data?

We will only keep your personal data on the Site for the duration of our commercial and marketing relations.

Recipients of your data

The Site does not sell or rent your personal data to third parties for marketing purposes. The personal data concerning you collected on the Site is intended for its own use and may be transmitted to subcontracting companies that the Site may call upon in the context of the execution of its Services. The Site ensures compliance with data protection requirements for all its subcontracting companies. In addition, the Site does not disclose your personal data to third parties unless :

    You (or your account administrator acting on your behalf) make the request or authorize the disclosure.

    The Operator is compelled to do so by a governmental or regulatory authority, in the event of a judicial requisition, subpoena or other similar governmental or judicial requirement, or to establish or defend a legal claim.

    The third party acts as an agent or subcontractor of the site in the performance of the services.

List of validated and compliant sub-contractors to whom personal data are transmitted :

    Shopify Inc. headquartered at 150 Elgin Street, Suite 800, Ottawa, Ontario K2P 1L4, Canada. Phone number: 1-613-241-2828. Shopify Inc. has a Data Processing Agreement (DPA) which you can view by clicking here and its Addendum.

    QuickPay: credit card payment service provider. See: https: //www.quickpay.net/terms-of-service

    SendinBlue: provider for sending emails. SendinBlue has a DPA that you can consult here: https://www.sendinblue.com/legal/privacypolicy/.

Unless a third party asks you to accept its own privacy policy and terms of use, the third party companies that have received your personal data have undertaken to process your personal data solely for the implementation of our Services.

We will never, without your prior consent, share your personal data with third party companies for marketing and/or commercial purposes.

What's a cookie?

A cookie is a text file that can be deposited in a terminal when a browser is used to consult an online service. A cookie file enables its sender, during its period of validity, to recognise the terminal concerned each time this terminal accesses digital content containing cookies from the same sender. In any event, cookies placed on your browser with your consent are destroyed 13 months after they are placed on your device.

What is the purpose of the cookies issued on our Site?

The cookies we issue allow us to:

    to establish statistics and volumes of frequentation and use of the various elements making up our Site (sections and content visited, paths), enabling us to improve the interest and ergonomics of the Site and, where appropriate, our products and services;

    to adapt the presentation of our Site to the display preferences of your terminal (language used, display resolution, operating system used, etc.) during your visits to our Site, depending on the hardware and the viewing or reading software on your terminal;

    to store information relating to a form that you have filled out on the Site (order or contact request) or to products, services or information that you have chosen on the Site (subscribed service, contents of an order basket, etc.);

On your first visit to the Site, a cookie banner will appear on the home page. A clickable link allows you to find out more about the purpose and functioning of cookies and refers you to this Charter. The continuation of the navigation on another page of the Site or the selection of an element of the Site (in particular: image, text, link, etc.) materializes your acceptance to the deposit of the cookies in question on your computer.

How can you control the cookies used?

You can configure your browser software at any time so that cookies are stored on your device or, on the contrary, so that they are rejected (either systematically or according to their transmitter). You can also configure your browser software so that you are offered the option of accepting or rejecting cookies from time to time before a cookie is stored on your device. Warning: any configuration is likely to modify your Internet browsing and your access conditions to certain services requiring the use of cookies. We decline all responsibility for the consequences of the degraded functioning of our services resulting from the impossibility of recording or consulting the cookies necessary for their functioning and that you would have refused or deleted. This would be the case if you tried to access our content or services that require you to identify yourself. This would also be the case if we (or our service providers) could not recognize, for technical compatibility purposes, the type of browser used by your terminal, its language and display settings or the country from which your terminal appears to be connected to the Internet.

How to configure your browser software?

For the management of cookies and your choices, the configuration of each browser is different. It is described in the help menu of your browser, which will tell you how to change your cookie preferences.

For more information on cookies, you can consult the CNIL website here https://www.cnil.fr/fr/site-web-cookies-et-autres-traceurs.

You have rights over your personal data, in accordance with the regulations on the protection of personal data, in particular Articles 15 to 22 of the RGPD, and after having justified your identity, you have the right to request access to, correction or deletion of your personal data. In addition, within the limits set by law, you also have the right to object to the processing, to limit it, to decide on the post-mortem fate of your data, to withdraw your consent at any time and the right to portability of the personal data provided. You may contact our Services in order to exercise your rights via the contact form or at the following postal address SNC KRISS-LAURE EUROPE SAINT-NAZAIRE (44600), FRANCE - 47 Boulevard de l'Université - Parc Océanis, enclosing a copy of an identity document with your request.

We reserve the right to modify the Charter at any time. It is therefore recommended that you consult it regularly. In case of modification, we will publish these changes on this page and in the places we deem appropriate according to the purpose and importance of the changes made. You will also receive an email inviting you to take note of the new elements. Your use of the Site after any changes to the Charter means that you accept these changes. If you do not accept certain substantial changes made to this Charter, you must stop using the Site and request, if you wish, the deletion of your account.

If you have any questions regarding your personal data, please contact us at the following postal address: SNC KRISS-LAURE EUROPE SAINT-NAZAIRE (44600), FRANCE - 47 Boulevard de l'Université - Parc Océanis, (indicating "Vie Privée - Data Protection").

We remind you that you can contact

 

for the Kingdom of Belgium:

Privacy Commission (OPC)

 Rue Haute, 139

1000 Brussels

+32 (0)2 213 85 40

+32 (0)2 213 85 65

commission@privacycommission.be

www.privacycommission.be

 

For the Grand Duchy of Luxembourg :

National Commission for Data Protection (NCDP)

1, avenue du Rock'n'Roll

L-4361 Esch-sur-Alzette

Tel: (+352) 26 10 60 -1

https://cnpd.public.lu/fr.html