Grimoires and Legends

1. Purpose

The purpose of this privacy policy is to inform users of the Grimoires et Légendes website about how their personal data is collected, used and protected, in accordance with the General Data Protection Regulation (GDPR).

2. Data Controller

The data controller for personal data is:

VAN MEENEN GillesEntrepreneur individuel – Artisan relieurAdresse professionnelle :

3 rue du Rocher Vert

17730 Port des Barques

FranceAdresse email : grimoiresetlegendes17@gmail.com

3. Personal data collected

The personal data that may be collected on the site is limited to what is strictly necessary and may include:

• First and last name
• Mailing address
• E-mail address
• Phone number
• Information required for payment (processed by secure providers)
• Data related to orders and customer relations

The site does not collect any sensitive data.

4. Purposes of the processing

The personal data collected is used solely for:

• Order processing and management
• Product delivery
• Customer relationship management and after-sales service
• Compliance with legal and accounting obligations

No data is used for commercial purposes without the explicit consent of the user.

5. Legal basis for processing

Data processing is based on:

• The execution of a contract (order placed on the website)
• Compliance with legal obligations
• User consent when required

6. Data Recipients

Personal data is intended exclusively for Grimoires et Légendes.

They may be transmitted, when necessary, to the technical service providers involved in the performance of the services, including:

• the website host (IONOS by 1&1)
• Payment providers (e.g., Stripe, PayPal)
• delivery services (Colissimo and La Poste)

These service providers only have access to the data strictly necessary for the performance of their duties.

7. Shelf life

Personal data is retained only for the period necessary for the purposes for which it is collected, and in particular:

• Order-related data: legal accounting retention period
• Contact details: duration necessary for the business relationship
• Technical data: limited duration in accordance with regulations

8. User Rights

In accordance with current regulations, the user has the following rights:

• Right of access
• Right of rectification
• Right to erasure
• Right to object
• Right to restriction of processing
• Right to data portability

These rights can be exercised at any time by contacting: 📧 grimoiresetlegendes17@gmail.com

The user also has the right to lodge a complaint with the CNIL

9. Data Security

Grimoires et Légendes implements appropriate technical and organizational measures to ensure the security and confidentiality of personal data and to prevent any unauthorized access.

10. Cookies

The Grimoires et Légendes website may use cookies or trackers necessary for its proper functioning or intended to measure audience.

The user can accept or refuse the use of cookies via the banner provided for this purpose during their first visit.

For more information, the user is invited to consult the site's cookie policy.

11. Changes to the Privacy Policy

This privacy policy may be modified at any time to ensure its compliance with applicable regulations.