Free shipping to the UK from €39.90. More information
Privacy Policy - General Data Protection Regulation (GDPR)
As part of its activity, Black Sequoia SAS is required to process personal data.
This Confidentiality and Data Management Policy informs you of the way in which the Company collects and processes your personal data.
We invite you to read it carefully.
Data Processing Management
The data controller mentioned in this document is Black Sequoia SAS, whose head office is located at 18 rue du Manoir de Servigné, 35000 Rennes, France, headed by its Chairman.
Data processing
All Data provided to the Company by the Holder is treated with the utmost confidentiality.
The Data collected is for the Company’s activity and is strictly limited to the teams needing to have knowledge of it.
The personal data that are processed on this website are the following:
- Account opening: when creating a user's account, the first name, surname, email address, phone number, and postal address are required.
- Connection: when the user connects to the website the name, first name, connection information, user information and location data and payment data are stored.
- Profile: the use of the services provided on the website make it possible to create a profile which may include an address and a telephone number.
- Payment: as part of the payment of products and services offered on the website, financial data relating to the user's bank account or credit card are stored.
- Communication: when the website is used to communicate with other members, the data concerning the user's communications are temporarily stored.
- Cookies: cookies are used on the site. The user has the option of deactivating cookies from their browser settings.
Use of personal data
The personal data collected from our users enables us to improve the services of the website and to maintain a secure environment. More specifically, the uses are as follows:
- access and use of the website by the user;
- management of the operation and optimisation of the website;
- organisation of the conditions of use of the Payment Services;
- verification, identification and authentication of data transmitted by the user;
- allowing the user the possibility to communicate with other users of the website;
- implementation of user assistance;
- personalisation of services by displaying adverts based on the user's browsing history according to their preferences;
- prevention and detection of fraud, malware (malicious software) and management of security incidents;
- management of any disputes with users;
- sending of commercial and advertising information, according to user preferences.
Sharing personal data with third parties
Personal data may be shared with third-party companies in the following cases:
- when the user uses the payment services, for the implementation of these services, the website is in contact with third-party banking and financial companies with which it has entered into contracts;
- when the user publishes publicly accessible information in the free comment areas of the website;
- when the user authorises a third party website to access his data;
- when the website uses the services of providers to provide user support, advertising and payment services. For a better performance of these services the service providers have limited access to user data and have a contractual obligation to use them in accordance with the provisions of the applicable data protection regulations.
- if the law requires it, the website may need to share data in order to follow up on complaints made against the website so as to comply with administrative and legal procedures;
- if the website is involved in a merger, acquisition, transfer of assets or bankruptcy proceedings, it may be required to transfer or share all or part of its assets, including personal data. In this case, users would be informed before personal data is transferred to a third party.
Security and confidentiality
The website uses organisational, technical, software and physical digital security measures to protect personal data against alteration, destruction and unauthorised access. However, it should be noted that the internet is not a completely secure environment and the website cannot guarantee the security of the transmission or storage of information on the internet.
Implementation of user rights
In application of the regulations applicable to personal data, users have the following rights which they can exercise by making their request to the following address: hello@euro-poppers.uk.
- The right of access: they can exercise their right of access to know the personal data concerning them. In this case, before the implementation of this right, the website may request proof of the user's identity in order to verify their accuracy.
- The right of rectification: if the personal data held by the website is inaccurate, they may request an update of the information.
- The right to delete data: in accordance with applicable data protection laws, users can request the deletion of their personal data.
- The right to limit processing: users may ask the website to limit the processing of personal data in accordance with the assumptions provided for by the GDPR.
- The right to object to data processing: users may object to their data being processed in accordance with the assumptions provided for by the GDPR.
- The right to portability: users may request that the website provides them with their personal data in order to send them to a new website.
Evolution of the Personal data clause
The website reserves the right to make any modification to the clause relating to the protection of personal data at any time. If a modification is made to the personal data protection clause, the website will publish the new version on its website. The website will also inform users of the modification by email, at least 15 days before the effective date. The user has the option of deleting his account if they do not agree with the new terms of the personal data protection clause.