Privacy and cookies policy
Last update : 05/21/2021
store.darlowparis.com , is a site owned by the sole proprietorship MADAME PAULINE DARLOW PARIS registered under the SIREN number 794 437 350 to the RCS of Paris (hereinafter referred to as ” Responsible for processing “). store.darlowparis.com cares greatly about the confidentiality of your personal data as Users who visit and navigate our Online Store This is why we, the Online Store store.darlowparis.com, we strive to respect your rights set out in the General Data Protection Regulation 2017/679 (RGPD) and the ePrivacy directives of the European Parliament and of the Council, as well as the law n ° 78-17 of January 6, 1978 known as the IT law and freedoms amended by Law No. 2018-493 of June 20, 2018 on the protection of personal data.
Article 1 – Definitions
§1 . “ Personal data ” or “ personal data “: Any information relating to an identified or identifiable natural person (hereinafter referred to as” data subject “); is deemed to be an “identifiable natural person” a natural person who can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier, or to one or more specific elements specific to its physical, physiological, genetic, psychological, economic, cultural or social identity;
§2. “ treatment», Any operation or set of operations carried out or not using automated processes and applied to data or sets of personal data, such as collection, recording, organization, structuring, the conservation, adaptation or modification, extraction, consultation, use, communication by transmission, dissemination or any other form of making available, reconciliation or interconnection, limitation, erasure or destruction;
§3. “ controller», The natural or legal person, public authority, service or other body which, alone or jointly with others, determines the purposes and means of processing; when the purposes and means of such processing are determined by Union law or the law of a Member State, the controller may be appointed or the specific criteria applicable to his appointment may be provided for by the law of the Union or by the law of a Member State;
§4. “ subcontractor », The natural or legal person, public authority, department or other body which processes personal data on behalf of the controller;
§5. “ recipient »The natural or legal person, public authority, service or any other body which receives communication of personal data, whether or not it is a third party. However, public authorities 4.5.2016 L 119/33 Official Journal of the European Union EN which may receive communication of personal data in the context of a specific investigative mission in accordance with Union law or to the law of a Member State are not considered as recipients; the processing of such data by the public authorities in question complies with the applicable data protection rules depending on the purposes of the processing;
§5. “ consent »Of the data subject, any free, specific, enlightened and unambiguous expression of will by which the data subject accepts, by a declaration or by a clear positive act, that personal data concerning him / her are subject to a treatment;
§6. “ personal data breach », A breach of security resulting, accidentally or unlawfully, in the destruction, loss, alteration, unauthorized disclosure of personal data transmitted, stored or otherwise processed, or unauthorized access authorized to such data;
§7. “ cookie », A cookie is a text file automatically saved in the browser of any User when visiting a website. This text file may contain personal data and / or information relating to the User’s navigation.
Article 2 – Purpose
The current Privacy Policy and of Cookies (hereinafter ” Politics “) Aims to define the methods of collecting, storing, processing and deleting personal data (hereinafter” personal data “) Of any natural person (hereinafter the” User “) Who, within the framework of a strictly personal or domestic activity, simply uses or navigates on this Online Store .
The Data Controller assures the User that he implements all the means necessary to ensure compliance with the provisions of the General Data Protection Regulation 2017/679 of the European Parliament and of the Council dated April 14, 2016 by ensuring compliance with the retention periods, the need to collect the aforementioned personal data, and the confidentiality of the personal data collected (hereinafter the ” Rules ” where the ” GDPR “).
Article 3 – User consent
This Policy must be read and accepted by any User visiting the Online Store . By clicking on the box mentioning “ read and accepted “Referring to this Policy at the time of arrival on the Online Store , the User acknowledges having read and given his free, informed and unambiguous consent to the processing of his personal data.
The User may, at any time, and without justification or prejudice, withdraw his consent to this Privacy and Cookies Policy. The User may exercise his right to withdraw consent to this Policy by notifying the Data Controller at the following email address: store@darlowparis.com
This withdrawal of consent will take effect when the Data Controller receives notification of the withdrawal of the User’s consent.
Article 4 – Data collected
As part of the visit and use of the Online Store , some personal data of Users may be collected by store.darlowparis.com , as Data Controller or by a subcontractor (s) acting in the name and on behalf of the Data Controller.
§1 – Means of collection
The User’s personal data is collected by the following means:
- When the User communicates them
Either by (1) filling in the billing and delivery address form; and / or (2) by filling in the payment information; and / or (3) by completing the newsletter registration form.
- By automated collection
When the User is browsing the Online Store , the Data Controller automatically records certain information relating to preferences and the use made of the Online Store by the User. Cookies are used in particular when the User is browsing the Online Store to collect this information automatically.
§2 – Type of data collected
The personal data that can be collected are:
– the User’s email address
– the delivery and / or billing address of the User
– The name, first name and telephone number of the User
– The User’s payment information
– The history of orders placed on the Online Store by the User
– The User’s browsing preferences on the Online Store
§3 – Data recipients
The recipients of personal data are:
– the Data Controller
– internal employees of the Data Controller acting on their behalf
– the subcontractor of the Data Controller in charge of hosting the domain of Online Store
– any legally or administratively authorized person (judicial authorities for example)
Article 5 – Data processing
§1 – Legal basis for processing
The processing of Users’ personal data via the Online Store must necessarily be justified by one of the conditions provided for in Article 6 §1 of the Rules. In accordance with the Regulations, Users’ personal data will only be processed if one of the following conditions is met:
- The User has given his consent: the User concerned has consented to the processing of their personal data for one or more specific purposes;
- The execution of the contract requires it: the processing is necessary for the execution of a contract to which the User concerned is a party or for the execution of pre-contractual measures taken at the latter’s request;
- Respect for the law requires it: the processing is necessary for compliance with a legal obligation to which the controller is subject;
- A legitimate interest justifies it: the processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, unless the interests or fundamental rights and freedoms of the User concerned which require protection of personal data, in particular when the User concerned is a minor.
§2 – Purposes of processing and data retention period
In accordance with Article 13 of the Regulation, the reason and the duration of storage and processing of personal data must be justified by a valid purpose, in addition to one of the legal bases mentioned above.
| Purpose of processing | Legal basis | The duration of the conversation | Archiving |
| Commercial prospecting by the Publisher | Consent | 3 years from the communication by the User | N / A |
| Management and payment of orders, access to dematerialized content sold and invoicing | Execution of the contract | 3 years from the communication by the User | 5 years |
| Fraud prevention | Legitimate interest | 13 months from the communication by the User | 5 years |
| Accounting and tax obligations | Respect for the law | 3 years from the communication by the User | 7 years |
| Facilitation of user navigation and promotion of products related to Customer preferences | Consent | 13 months from the deposit of advertising cookies on the User’s browser | N / A |
Article 6 – Data protection officer
In accordance with the provisions of the Regulation, a data protection officer (hereinafter “ DPD ») Is appointed by the Data Controller. The DPO is responsible for ensuring compliance with the Regulation in the context of any processing or storage of personal data. The appointed DPO, Pauline Cheyrouze, can be contacted at the following email address: store@darlowparis.com
Article 7 – Means of data protection
In accordance with Article 5 and Article 32 of the Regulation, the Data Controller is bound by an obligation to guarantee the security of the personal data of the Users that he stores and processes.
The Data Controller keeps a register containing all the personal data of the Users collected. The Data Controller affirms that he implements all the necessary security means to protect the personal data of the Users contained in this register and to avoid any violation of the personal data of the User.
To do this, the Data Controller tells Users that he has undertaken a study of the risks associated with the storage and processing of Users’ personal information in order to put in place adequate security measures as follows:
– By allowing the pseudonymization and encryption of the User’s personal data;
– By implementing means to guarantee the confidentiality, integrity, availability and constant resilience of processing systems and services;
– By implementing means to restore the availability of personal data and access to them within appropriate deadlines in the event of a physical or technical incident;
– By ensuring the use of a procedure aimed at testing, analyzing and regularly evaluating the effectiveness of technical and organizational measures to ensure the security of processing.
The Data Controller assures the Users that the data he keeps and processes are stored within the European Union, in a Member State subject to the Regulation.
In the event of a violation of the User’s personal data, the Data Controller undertakes to notify the competent supervisory authority of this violation within 72 hours in accordance with Articles 33 and 34 of the Regulation.
Article 8 – Cookies
§1 – Purpose of the use of cookies
As explained above, a cookie is a text file automatically saved in the browser of any User when visiting a website. This text file may contain personal data and / or information relating to the User’s navigation.
The cookies used on the Online Store have the sole objective of improving your browsing experience as a User. The cookies used facilitate your navigation by memorizing some of your personal data when you access and browse the Online Store . Three types of cookies are used on The online store , their purpose varying according to their type:
- Functional cookies : these cookies make it possible to memorize your data entered during authentications or searches carried out on the shop
- Advertising cookies : these cookies make it possible to identify the consumption, research and preferences of Users in order to offer them advertising content in line with their personal preferences.
- Security cookies : these cookies allow the security of the personal data of the Users by guaranteeing the encryption of the data contained in other cookies.
§2 – Cookies used, lifespan, and function
Each cookie used on the Online Store is identifiable by name. Each cookie has a lifetime, i.e. a period after which it disappears and ceases to be active, and forgetting any personal data it stored. Each cookie also has a function, i.e. a utility that justifies its implementation on the Online Store .
Here is the list of cookies used on the Online Store with their name, lifespan and function:
| Cookie name | Lifetime | Function |
| AWSALBCORS | 6 days | Records which group of servers the User serves. This is used in the context of load balancing to optimize the User experience. |
| AWSALB | 7 days | Records which group of servers the User serves. This is used in the context of load balancing to optimize the User experience. |
| ASP.NET_SessionId | Session | Keeps the configuration of User settings across page requests. |
| AWSALB | 7 days | Records which group of servers the User serves. This is used in the context of load balancing to optimize the User experience. |
| ASP.NET_SessionId | Session | Maintains user settings configuration across page requests. |
| AWSALBCORS | 6 days | This cookie is used to determine whether the user has accepted the cookie consent box. |
| CONSENT | Persistent | Used to detect if the user has accepted the marketing category in the cookie banner. This cookie is necessary for the website’s compliance with the GDPR. |
| m | 24 months | Determines the device used to access the website. This allows the website to be formatted accordingly. |
| t.gif | Session | Ensures that product photos are presented correctly on the website. |
| https://q.stripe.com/ | Session | This cookie is necessary to carry out credit card transactions on the site. The service is provided by Stripe.com which allows online transactions without storing any credit card information. |
| wp_woocommerce_session_ # | 1 day | Required for the website’s shopping cart functionality to remember the chosen products. It also allows the website to promote related products to the User, depending on the contents of the shopping cart. |
| __stripe_mid | 12 months | This cookie is necessary to carry out credit card transactions on the site. The service is provided by Stripe.com which allows online transactions without storing any credit card information. |
| __stripe_sid | 1 day | This cookie is necessary to carry out credit card transactions on the site. The service is provided by Stripe.com which allows online transactions without storing any credit card information. |
| woocommerce_items_in_cart | Session | Required for the website’s shopping cart functionality to remember the chosen products. It also allows the website to promote related products to the User, depending on the contents of the shopping cart. |
| woocommerce_cart_hash | Session | Required for the website’s shopping cart functionality to remember the chosen products. It also allows the website to promote related products to the User, depending on the contents of the shopping cart. |
| wc_cart_created | Session | Required for the shopping cart functionality on the website. |
| wc_cart_hash_ # | Session | Required for the shopping cart functionality on the website. |
| wc_fragments_ # | Session | Required for the shopping cart functionality on the website. |
| CookieConsent | 12 months | Stores the permission to use cookies for the current domain by the user |
| cookies.js | Session | Determines whether the User has accepted the cookie consent box. This prevents the cookie consent box from reappearing on new entry. |
| PHPSESSID | Session | Maintains user settings configuration across page requests. |
| images / cq_blank.gif | Session | Records data on the behavior of Users on the website. This is used for internal analysis and site optimization. |
| tk_ai | 5 years | Records data on the behavior of Users on the website. This is used for internal analysis and site optimization. |
| tk_qs | 1 day | Records data on the behavior of Users on the website. This is used for internal analysis and site optimization. |
| _swa_u | Persistent until withdrawal of consent by the User or deletion | Records data on the behavior of Users on the website. This is used for internal analysis and site optimization. |
| mailchimp_landing_site | 27 days | Records User input mode on website – This feature is provided by Mailchimp. |
| _swa_u | Persistent until withdrawal of consent by the User or deletion | Records statistical data on the behavior of Users on the website. Used for internal analyzes by the website Editor. |
| images / pv_blank.gif | Session | Records user behavior and navigation on the website, and any interaction with active campaigns on the website. This is used to optimize advertising and to make retargeting effective. |
| tk_tc | Session | Collection of data on the preferences and behavior of Users on the website – This information is used to make the content and advertising more relevant to the User in question. |
| tk_or | 5 years | Collection of data on the preferences and behavior of Users on the website – This information is used to make the content and advertising more relevant to the User in question. |
| tk_r3d | 2 days | Collection of data on user preferences and behavior on the website – This information is used to make the content and advertising more relevant to the user in question. |
| tk_lr | 12 months | Collection of data on preferences and user behavior on the website – This information is used to make the content and advertising more relevant to the User in question. |
| NEST | 6 months | Registers an identifier that identifies the device of the recurring user. This identifier is used for targeted ads. |
| payJsRolloutFlag | Session | Allows optimization of payment steps |
| kable_products_list_per_page | 29 days | Allows the optimization of the display of Products |
| kable_products_grid_per_page | 29 days | Allows the optimization of the display of Products |
| kable_products_grid_per_page | 29 days | Allows the optimization of the display of Products |
§3 – Manage cookies: activation and deactivation
It is possible for the User to manage Cookies at any time on the browser he uses. The User can activate or deactivate them at any time. The means of managing cookies depend on each browser. To facilitate the management of Users’ cookies, below is an explanatory help to manage cookies on the main browsers used by Users:
- Safari:
- Mozilla Firefox:
https://support.mozilla.org/fr/kb/activer-ou-desactiver-les-cookies sur-firefox-pour-android
- Internet explorer:
Article 9 – User rights
The User has a right to request from the Data Controller, access to his personal data, the rectification or erasure of these, or a limitation of the processing relating to the User concerned, or the right to oppose the processing and the right to data portability.
The User has the right to withdraw his consent to the processing of his personal data at any time. This withdrawal of consent will take effect when the Data Controller receives notification of the withdrawal of the User’s consent.
The User has the right to lodge a complaint with the National Commission for Computing and Liberties (CNIL) via the contact form available at on the following site: https://www.cnil.fr/fr ; or from the Directorate General for Competition, Consumer Affairs and Fraud Control via the contact form available at the address https://www.economie.gouv.fr/dgccrf .
The User can also exercise his rights previously stated in relation to this Policy by notifying the Data Controller at the following email address: store@darlowparis.com .
MERCASAFE User License © : MS 1001-178996
