GDPR
PRIVACY AND PERSONAL DATA USE POLICY
ARTICLE 1 – COLLECTION OF PERSONAL DATA
The personal data collected on this website are as follows:
Account opening
When creating the user's account (last name, first name, email address, and date of birth)
Login
When the user logs in to the website, it records their last name, first name, login data, usage data, location data, and payment-related data.
Profile
Using the services provided on the site allows for the creation of a profile, which may include an address and a phone number.
Payment
As part of the payment for products and services offered on the site, it records financial data related to the user's bank account or credit card.
Cookies
Cookies are used in connection with the use of the website. The user has the option to disable cookies from their browser settings.
ARTICLE 2 – USE OF PERSONAL DATA
Personal data collected from users is intended to provide website services, improve them, and maintain a secure environment.
More specifically, the uses are as follows:
- access and use of the site by the user;
- management of the site's operation and optimization;
- organization of payment service conditions of use;
- verification, identification, and authentication of data transmitted by the user;
- implementation of user assistance;
- personalization of services by displaying advertisements based on the user's browsing history, according to their preferences;
- prevention and detection of fraud, malware (malicious software) and management of security incidents;
- management of any disputes with users;
- sending commercial and advertising information, according to user preferences.
ARTICLE 3 – SHARING OF PERSONAL DATA WITH THIRD PARTIES
Personal data may be shared with third-party companies in the following cases:
- when the user utilizes payment services, for the implementation of these services, the site is in contact with third-party banking and financial companies with whom it has contracts;
- when the user authorizes a third-party website to access their data;
- when the website uses the services of providers to offer user assistance, advertising, and payment services. These providers have limited access to the user's data for the execution of these services and are contractually obligated to use them in compliance with the provisions of applicable personal data protection regulations;
- if required by law, the site may transmit data to respond to claims made against the site and to comply with administrative and judicial procedures;
- if the site is involved in a merger, acquisition, asset sale, or bankruptcy proceeding, it may be required to sell or share all or part of its assets, including personal data. In this case, users would be informed before personal data is transferred to a third party.
ARTICLE 4 – SECURITY AND CONFIDENTIALITY
The website implements organizational, technical, software, and physical digital security measures to protect personal data against alterations, destruction, and unauthorized access. However, it should be noted that the Internet is not a completely secure environment, and the site cannot guarantee the security of transmitting or storing information on the Internet.
ARTICLE 5– EXERCISING USER RIGHTS
In application of the regulations applicable to personal data, users have the following rights by writing to the email address manacreationsbijoux@gmail.com :
- they can update or delete their data by logging into their account and configuring their account settings;
- they can delete their account;
- they can exercise their right of access to know the personal data concerning them. In this case, before exercising this right, the Platform may request proof of the user's identity to verify its accuracy;
- if the personal data held by the site is inaccurate, they can request the update of the information;
- users can request the deletion of their personal data, in accordance with applicable data protection laws.