Personal information: “Information which allows, in any form whatsoever, directly or indirectly, the identification of the natural persons to whom it applies” (Article 4 of Law No. 78-17 of 6 January 1978).
The terms “personal data”, “data subject”, “subcontractor” and “sensitive data” have the meaning defined by the General Data Protection Regulation (RGPD: n° 2016-679)
this site is hosted by a service provider in the European Union in accordance with the provisions of the General Data Protection Regulation (GDPR: No. 2016-679)
SECTION 1 – PERSONAL INFORMATION COLLECTED
When you make a purchase on this site, as part of our buying and selling process, we collect the personal information you provide, such as your name, address, e-mail address or telephone number.
When you browse this site, we also automatically receive the Internet Protocol (IP) address of your computer, which enables us to obtain more details about the browser and operating system you are using.
In the context of e-mail marketing, with your permission, we may send you e-mails about this site, about new products and other updates or about your unfinished orders.
SECTION 2 – CONSENT
How do we obtain your consent?
When you provide us with your personal information to complete a transaction, verify your credit card, place an order, schedule a delivery, or return a purchase, we assume that you consent to our collection of your information.
If we ask you to provide your personal information for any other reason, such as marketing purposes, we will ask you directly for your express consent, or we will give you the opportunity to decline.
How can you withdraw your consent?
If, after you have given us your consent, you change your mind and no longer consent to our contacting you, collecting your information, you may notify us by contacting us at the address at the bottom of this page
SECTION 3 – DISCLOSURE
We may disclose your personal information only if we are required to do so by law or if you breach our Terms and Conditions.
SECTION 4 – Wordpress
This site is hosted on O2Switch and uses Wordpress. They provide us with the e-commerce platform that allows us to sell you the services and products on this website.
Your data is stored in the Wordpress storage system and databases. In the general application of Wordpress, your data is stored on a secure server protected by a firewall.
For payment, if you make your purchase through a direct payment gateway, Wordpress will store your credit card information. This information is encrypted in accordance with the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction information is retained for as long as necessary to complete your order. Once your order has been completed, the purchase transaction information is deleted. We therefore do not have direct access to the information you used to place your order. This information passes through Wordpress and the payment processors.
All direct payment gateways are PCI-DSS compliant. This security standard of the payment card industry, PCI-DSS in English for Payment Card Industry Data Security Standard is established by the three main card networks (Visa, MasterCard, American Express). These standards ensure the secure processing of credit card data when you make purchases on this website and by its service providers.
SECTION 5 – SERVICES PROVIDED BY THIRD PARTIES
In general, the services provided by third party providers that we use will only collect, use and disclose your information to the extent necessary to perform the services they provide to us such as payment processing.
However, some of these providers, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information we are required to provide to them for your purchase transactions on this website.
With respect to these third-party providers, we recommend that you read their privacy policies carefully so that you can understand how they will handle your personal information. You can find Visa’s policy here, American Express’ policy here and MasterCard’s policy here.
Keep in mind that some of these third party providers may be located or have facilities in a different jurisdiction than you or us. So if you decide to proceed with a transaction that requires the services of a third party provider, then your information may be governed by the laws of the jurisdiction in which that provider is located or the jurisdiction in which its facilities are located, for example.
For example, if you are in Canada and your transaction is processed through a payment gateway located in the United States, your information used to complete the transaction could be disclosed under United States law, such as the Patriot Act.
Once you leave this website or are redirected to a third party website or application for your payment, you are no longer governed by this Privacy Policy or the Terms and Conditions of this website.
Links
You may leave this website by clicking on certain links on our website. We do not assume any responsibility for the privacy practices of such other sites and recommend that you read their privacy policies carefully.
SECTION 6 – SECURITY
To protect your personal data, we take reasonable precautions and follow industry best practices to ensure that it is not lost, misused, accessed, disclosed, altered, or destroyed in an inappropriate manner.
If you provide us with your credit card information, it will be encrypted through the use of the SSL security protocol and stored with AES-256 encryption. This means that no human being will have access to the full card number. While no method of transmission over the Internet or electronic storage is 100% secure, we follow all the requirements of the PCI-DSS and implement additional generally accepted industry standards.
The Customer is informed of the regulations concerning marketing communication, the law of 21 June 2014 for confidence in the Digital Economy, the Data Protection Act of 06 August 2004 as well as the General Data Protection Regulation (RGPD: n° 2016-679).
COOKIES
A “cookie” is a small information file sent to the User’s browser and stored within the User’s terminal (e.g. computer, smartphone), (hereinafter “Cookies”). This file includes information such as the User’s domain name, the User’s Internet service provider, the User’s operating system and the date and time of access. Cookies are in no way likely to damage the User’s terminal.
The present website may process the User’s information concerning his visit to the Site, such as the pages consulted, and the searches carried out. This information allows the present website to improve the content of the website and the User’s navigation.
Cookies facilitate browsing and/or the provision of services offered by the Site, and the User may configure his or her browser to allow him or her to decide whether to accept them so that cookies are stored in the terminal or, on the contrary, that they are rejected, either systematically or according to their sender. The User may also configure his browser software so that he is offered the option of accepting or rejecting Cookies from time to time before a Cookie is likely to be saved in his terminal. This website informs the User that, in this case, the functions of his browser software may not be available.
If the User refuses the storage of Cookies in his/her terminal or browser, or if the User deletes those stored there, the User is informed that his/her navigation and experience on the Site may be limited. This could also be the case when this website or one of its service providers cannot recognise, for technical compatibility purposes, the type of browser used by the terminal, the language and display settings or the country from which the terminal appears to be connected to the Internet.
Where applicable, this website declines all responsibility for the consequences linked to the degraded functioning of the Site and of any services offered by this website resulting (i) from the refusal of Cookies by the User (ii) from the impossibility for this website to record or consult the Cookies necessary for their functioning due to the User’s choice. For the management of Cookies and the User’s choices, the configuration of each browser is different. It is described in the browser’s help menu, which will show how the User can modify his/her wishes regarding Cookies.
At any time, the User can choose to express and modify his or her wishes regarding Cookies. In addition, this website may use the services of external service providers to help it collect and process the information described in this section.
Finally, by clicking on the icons dedicated to the social networks Twitter, Facebook, Linkedin and Google Plus on this website or in its mobile application and if the User has accepted the deposit of cookies by continuing to browse this website, Twitter, Facebook, Linkedin and Google Plus may also deposit cookies on your terminals (computer, tablet, mobile phone).
These types of cookies are only deposited on your terminals if you give your consent by continuing to browse this website. At any time, the User may nevertheless revoke his or her consent to this website depositing this type of cookie.
ARTICLE 7 – AGE OF CONSENT
By using this website, you represent that you are at least the age of majority in your country, state or province of residence, and that you have given us your consent to allow any minor in your care to use this website.
SECTION 8 – CHANGES TO THIS PRIVACY POLICY
We reserve the right to change this Privacy Policy at any time, so please check back periodically. Changes and clarifications will take effect immediately upon posting on the website. If we make any changes to the content of this policy, we will notify you here that it has been updated, so that you will know what information we collect, how we use it, and under what circumstances, if any, we disclose it.
If this website is acquired by or merged with another company, your information may be transferred to the new owners so that we can continue to sell products to you.
SECTION 9 – SMS MARKETING
By entering your phone number at checkout and initiating a purchase and subscribing via our marketing sign-up list, you agree that we may send you SMS notifications (for your order including abandoned cart reminders) or SMS marketing offers.
The number of marketing text messages will not exceed 30 per month. You can unsubscribe from any further text messages by replying with the word STOP. The sending of text messages or the use of automations requires you to provide telephone numbers or names of recipients. This data will be stored and used for campaign analysis and results, including message delivery status, sending status and, in some cases, whether the purchase resulted in a sale on this website.
If you choose to use our link shortener in text messages, we will collect this information to determine whether the link was clicked and use it to display the results in analytics. Any other third party services you may choose to use outside the scope of smsbump.com, our text message operator, the system we use to send the text messages (third party link shortener, GA tracking, etc.) you will be referred to their specific third party policies which you must agree to.
When sending text messages, we will pass the data to our text message operator to carry out the sending of the messages. The information is only shared with our operator when initiating a marketing and messaging campaign. If recipients no longer wish to receive messages, they must reply to the message with STOP or contact the email address at the bottom of the page so that we can successfully unsubscribe you.
SECTION 10 – PERSONAL DATA MANAGEMENT
The Customer is informed of the regulations concerning marketing communication, the law of 21 June 2014 for confidence in the Digital Economy, the Data Protection Act of 06 August 2004 as well as the General Data Protection Regulation (RGPD: n° 2016-679).
PERSONS RESPONSIBLE FOR THE COLLECTION OF PERSONAL DATA
For the Personal Data collected in the context of the creation of the User’s personal account and his navigation on the Site, the person responsible for processing the Personal Data is this website.
As the party responsible for processing the data it collects, this website undertakes to comply with the legal provisions in force. It is the Client’s responsibility to establish the purposes of its data processing, to provide its prospects and clients, from the collection of their consents, with complete information on the processing of their personal data and to maintain a register of the processing in accordance with the reality. Whenever this website processes Personal Data, this website takes all reasonable steps to ensure that the Personal Data is accurate and relevant to the purposes for which this website processes it.
PURPOSE OF THE DATA COLLECTED
This website is likely to process all or part of the data:
to enable browsing on the Site and the management and traceability of the services ordered by the user: connection data and use of the Site, billing, order history, etc.
to prevent and fight against computer fraud (spamming, hacking, etc.): computer equipment used for browsing, IP address, password (hashed)
to improve navigation on the Site: connection and usage data
to conduct optional satisfaction surveys on this website: email address
to conduct communication campaigns (sms, email): telephone number, email address
This website does not sell your personal data, which is therefore only used for statistical and analysis purposes.
RIGHT OF ACCESS, RECTIFICATION AND OPPOSITION
In accordance with the European regulations in force, the Users of this website have the following rights:
right of access (Article 15 RGPD) and rectification (Article 16 RGPD), updating, completeness of Users’ data right to block or erase Users’ personal data (Article 17 RGPD), when they are inaccurate, incomplete, equivocal, outdated, or whose collection, use, communication or storage is prohibited
the right to withdraw consent at any time (Article 13-2c GDPR)
the right to limit the processing of Users’ data (Article 18 GDPR)
right to object to the processing of Users’ data (Article 21 GDPR)
the right to portability of data provided by Users, where such data are subject to automated processing based on their consent or on a contract (Article 20 GDPR)
the right to define the fate of Users’ data after their death and to choose to whom the present website shall communicate (or not) their data to a third party that they have previously designated
As soon as this website becomes aware of the death of a User and in the absence of instructions from the User, this website undertakes to destroy the User’s data, unless it is necessary to retain it for evidential purposes or to comply with a legal obligation.
If the User wishes to know how the present website uses his/her Personal Data, to ask to rectify them or to oppose their processing, the User may contact the present website by e-mail at the address at the bottom of the page
In this case, the User must indicate the Personal Data that he/she would like the present website to correct, update or delete, identifying him/herself precisely with a copy of an identity document (identity card or passport).
Requests for deletion of Personal Data will be subject to the obligations imposed on this website by law, as regards the retention or archiving of documents. Finally, Users of this website may file a complaint with the authorities of the country where they live.
NON-DISCLOSURE OF PERSONAL DATA
This website shall not process, host, or transfer the Information collected on its Clients to a country located outside the European Union or recognised as “non-adequate” by the European Commission without informing the client in advance. However, the present website remains free to choose its technical and commercial subcontractors if they present sufficient guarantees about the requirements of the General Data Protection Regulation (RGPD: n° 2016-679).
The present website undertakes to take all necessary precautions to preserve the security of the Information and that it is not communicated to unauthorised persons. However, if an incident affecting the integrity or confidentiality of the Customer’s Information is brought to the attention of this website, the latter shall inform the Customer as soon as possible and inform him of the corrective measures taken. Furthermore, this website does not collect any “sensitive data”.
The User’s Personal Data may be processed by subsidiaries of this website and subcontractors (service providers), exclusively to achieve the purposes of this policy.
Within the limits of their respective attributions and for the purposes mentioned above, the main persons likely to have access to the data of the Users of the present website are mainly the agents of our customer service.
QUESTIONS AND CONTACT INFORMATION
If you wish to access, correct, amend or delete any personal information we have about you, make a complaint, or if you simply wish to have more information, please contact us at the address below.