IVINE attaches great importance to the protection of your personal data. The purpose of this Privacy Policy is to inform you about: how IVINE collects and processes your personal data; and
the rights you have as a user of the website www.ivineparis.com (the “Site”) and the services offered therein.
In accordance with Regulation nᵒ 2016/679, known as the General Data Protection Regulation (“GDPR”) and Law No. 78-17 of January 6, 1978 relating to information technology, files and freedoms (“Loi Informatique et Libertés”), IVINE (hereinafter the “Data Controller” or “IVINE” or “we” or “us”) collects and processes, as data controller, several types of information in order to provide you with its Site and the associated services.
When using the Site and the services offered therein, IVINE may ask you to provide certain personal information that may be used to identify or contact you (“Personal Information”), which may include the following
E-mail address
Title
Last name and first name(s)
Date of Birth
Mailing Address
Country of residence
Telephone number
IVINE may also collect data indirectly via cookies on the Site.
IVINE may use your Personal Data to manage your registration to the Site, manage your orders, communicate with you and, more generally, manage your use of the Site and its associated services.
IVINE may process your Personal Data for any of the following reasons:
We will only keep your Personal Information for as long as is necessary to fulfill the purposes for which we collected it.
In determining the appropriate retention period for your Personal Data, we take into account the amount, nature and sensitivity of the Personal Data involved, the potential risk of harm resulting from the unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data and the possibility of achieving those purposes by other means, as well as applicable legal requirements.
Your Personal Data is deleted within three (3) years after you last log in to your customer account.
We share your Personal Data with third parties when required by law, when necessary to manage our contractual relationship with you or when we have another legitimate interest in doing so. We share your Personal Data with the following categories of third parties:
hosting and maintenance services (OVH)payment services (STRIPE, APPLE and PAY PAL)
legal or administrative authorities if we are required to disclose or share your Personal Information in order to comply with any legal or regulatory obligation
Our accountants, auditors, attorneys and other advisors
The third parties with whom we share your Personal Data are strictly limited (by law and by contract) in their ability to use your Personal Data for the specific purposes we have identified. We take steps to ensure that the third parties with whom we share your Personal Information are subject to confidentiality and security obligations consistent with this Privacy Policy and applicable laws.
Your Personal Data is located on our servers in France. We will notify you if this changes and will implement appropriate safeguards to allow for such transfers.
The Controller undertakes to take all necessary steps to protect Personal Data from loss, misuse, unauthorised disclosure, alteration, unauthorised access and unauthorised destruction, and takes all reasonable precautions to protect its confidentiality, including taking appropriate organisational and technical measures.
Although IVINE makes every effort to protect the Personal Information you provide, the transmission of information over the Internet cannot be completely secure. As such, you acknowledge and agree that IVINE cannot guarantee the security of any Personal Data you transmit to IVINE over the Internet and that such transmission is at your own risk. Once IVINE receives your Personal Information, IVINE will implement strict procedures and security features to prevent unauthorized access to your Personal Information.
We have adopted physical and electronic security measures including the use of extensive firewalls and passwords to secure access to Personal Data. In addition, we restrict access to Personal Information to those IVINE employees who need to know that information in order to operate, develop and/or improve the Site and related services.
If we give you (or if you have chosen) a password that allows you to access our systems or any customer account, you are responsible for keeping that password confidential. We ask that you never share this password with anyone.
In certain circumstances, you have the following rights with respect to the protection of Personal Data:
The right to access, update or delete information that the Processor holds about you. Where possible, you can access, update or delete your Personal Information directly in the settings section of your customer account.
The right to have your information corrected if it is inaccurate or incomplete.
The right to object to the processing of your Personal Data.
The right to request the Controller to restrict the processing of your Personal Data.
The right – in limited circumstances – to receive your Personal Data or to request that it be transferred to a third party in a structured, commonly used and machine-readable format.
The right to withdraw your consent at any time where the Controller has relied on your consent to process your Personal Data.
Where applicable, the right to request a copy of an agreement under which your Personal Data is transferred outside the EEA.
The right to provide IVINE with instructions regarding the use of your Personal Data after your death.
The right to complain to a personal data supervisory authority in the event that IVINE does not respond satisfactorily to any of your requests on the above grounds (in France the CNIL: www.cnil.fr)
To exercise your rights as listed above or if you have any questions about the processing of your Personal Data, please contact us at the following address: contact@ivineparis.com
Please note that the Data Controller may ask you to verify your identity before responding to your requests for Personal Data.
You will not be charged a fee to access your Personal Data (or to exercise any of the other rights set out above). However, the Controller reserves the right to charge a reasonable fee if the request for access is clearly improper. In this case, the Controller may also refuse to comply with the request.