Privacy Policy
EP Publishing is committed to respecting the privacy of its customers and prospects, the users of the websites it manages and the confidentiality of their personal data. EP Publishing undertakes to process the data it collects and processes in compliance with the applicable laws and regulations, such as law no. 78-17 of 6 January 1978 relating to information technology, files and freedoms and the regulation relating to the protection of individuals with regard to the processing of personal data and to the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation: GDPR).
Definitions
Personal data: any information relating to a natural person who can be identified, directly or indirectly.
Processing of personal data: Any operation or set of operations which relates to such data, whatever the process used (collection, recording, organisation, storage, adaptation, modification, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, blocking, erasure or destruction, etc.).
Cookie: A cookie is a small computer file, a tracer, which is deposited and read, for example, when a website is consulted, when an e-mail is read, or when software or a mobile application is installed or used, regardless of the type of terminal used (computer, smartphone, digital reader, video game console connected to the Internet, etc.).
ARTICLE 1 - PERSONAL INFORMATION COLLECTED
When you make a purchase from our shop, as part of our buying and selling process, we collect personal information that you provide to us, such as your name, address and e-mail address.
When you browse our shop, we also automatically receive the Internet Protocol (IP) address of your computer, which enables us to obtain more details about the browser and operating system you are using.
E-mail marketing (if applicable): With your permission, we may send you emails about our shop, new products and other updates.
ARTICLE 2 - CONSENT
How do you get my consent?
When you provide us with your personal information to complete a transaction, verify your credit card, place an order, schedule a delivery or return a purchase, we will assume that you consent to our collection and use of your information for this purpose only.
If we ask you to provide your personal information for any other reason, such as marketing purposes, we will ask you directly for your express consent, or we will give you the opportunity to decline.
How can I withdraw my consent?
If, after you have given us your consent, you change your mind and no longer consent to our contacting you, collecting your information or disclosing it, you may notify us by contacting us at contact@popbrush.shop
ARTICLE 3 - DISCLOSURE
Your personal data is exclusively intended to be used by EP Publishing. However, it may be passed on to our subcontractors listed below. In the event of illegal activities, suspicions of illegal activities or for the purposes of investigations, judicial requisitions, etc., your personal data may be transmitted, on request, to the judicial or control authorities: police, gendarmerie, magistrate, departmental directorate for the protection of populations (ex DGCCRF), tax or social services, etc. The personal data collected and processed directly by EP Publishing is stored exclusively in France, in the databases of the Shopify servers. Our subcontractors to whom your personal data may be transmitted, if necessary, are
- PAYPAL online banking and payment services
- STRIPE online banking and payment services
- company WINNING STRATEGY : autoresponder system
- FACEBOOK MARKETING: online advertising system
EP Publishing does not sell or rent your personal data to third parties under any circumstances.
ARTICLE 4 - SHOPIFY
Our shop is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our services and products to you.
Your data is stored in Shopify's data storage system and databases, and in the general Shopify application. Your data is stored on a secure server protected by a firewall.
Payment:
If you make your purchase through a direct payment gateway, then Shopify will store your credit card information. This information is encrypted in accordance with the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction information is retained for as long as necessary to complete your order. Once your order has been completed, the purchase transaction information is deleted.
All direct payment gateways are PCI-DSS compliant, managed by the PCI Security Standards Council, which is a joint effort of companies such as Visa, MasterCard, American Express and Discover.
The requirements of the PCI-DSS standard ensure the secure processing of credit card data by our shop and its service providers.
For more information, please see the Shopify Terms of Service here or the Privacy Policy here.
ARTICLE 5 - SERVICES PROVIDED BY THIRD PARTIES
In general, the third party suppliers we use will only collect, use and disclose your information to the extent necessary to perform the services they provide to us.
However, some third party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information we are required to provide to them for your purchase transactions.
With respect to these suppliers, we recommend that you read their privacy policies carefully so that you can understand how they will handle your personal information.
You should keep in mind that some providers may be located or have facilities located in a different jurisdiction than you or we do. So if you decide to proceed with a transaction that requires the services of a third party supplier, your information may be governed by the laws of the jurisdiction in which that supplier is located or the jurisdiction in which its facilities are located.
For example, if you are located in Canada and your transaction is processed through a payment gateway located in the United States, your information used to complete the transaction could be disclosed under United States law, including the Patriot Act.
Once you leave our shop site or are redirected to a third party website or application, you are no longer governed by this Privacy Policy or our website's Terms and Conditions.
Links
You may leave our website by clicking on certain links on our site. We assume no responsibility for the privacy practices of these other sites and recommend that you read their privacy policies carefully.
ARTICLE 6 - SAFETY
To protect your personal data, we take reasonable precautions and follow industry best practices to ensure that it is not lost, misappropriated, accessed, disclosed, altered or destroyed inappropriately.
If you provide us with your credit card information, it will be encrypted through the use of SSL security and stored with AES-256 encryption. While no method of transmission over the Internet or electronic storage is 100% secure, we follow all of the requirements of the PCI-DSS and implement additional generally accepted industry standards.
EP PUBLISHING takes all necessary measures to ensure the security of the personal data it collects. No personal data is stored on EP PUBLISHING's premises. The personal data collected is hosted by our specialised subcontractors (web hosts, autoresponders/emailers, payment systems, accounting). Access to the servers or secure databases managed directly by EP PUBLISHING is subject to restricted access by means of a strong identifier and password, via an encrypted connection of the ssl / https type. The servers are hosted in SHOPIFY's data centres, which are highly secure and eligible for several levels of certification (ISO 27002 and ISO 27005, SOC 1 and 2 type II certificates).
COOKIES
Here is a list of the cookies we use. We have listed them here so that you can choose whether or not you want to allow them.
session_id, a unique session identifier, allows Shopify to store information about your session (referrer, landing page, etc.).
shopify_visit, no data retained, persists for 30 minutes since last visit. Used by our website provider's internal statistics tracking system to record the number of visits.
shopify_uniq, no data retained, expires at midnight (depending on visitor location) the next day. Calculates the number of visits to a shop per unique customer.
cart, unique identifier, persists for 2 weeks, stores your shopping cart information.
_secure_session_id, unique session identifier
storefront_digest, unique identifier, undefined if the shop has a password, it is used to know if the current visitor has access.
ARTICLE 7 - AGE OF CONSENT
By using this site, you represent that you are at least the age of majority in your state or province of residence, and that you have given us your consent to allow any minor in your care to use this website.
ARTICLE 8 - RIGHT OF ACCESS, OPPOSITION AND WITHDRAWAL
In accordance with current legislation, you have the right to access, rectify and delete your personal data. You may freely access, modify or delete your personal data (except for legal obligations: accounting, taxation, controls, etc.) by contacting us by email: contact@crystall.fr. Any prospect or client may unsubscribe from newsletters received from EP PUBLISHING using the unsubscribe link at the bottom of each message sent. In the event of a dispute, you may lodge a complaint with the CNIL (French Data Protection Authority), whose contact details can be found at http://www.cnil.fr. Using the contact details indicated above, you may request detailed information on your personal data collected, the purpose of the processing applied to them, their retention period, their recipients, as well as benefiting from their portability.
ARTICLE 9 - DATA RETENTION PERIOD
In order to comply with its legal obligations or to have the elements necessary to assert its rights (accounting, taxation, access tracking, etc.), EP PUBLISHING may archive data under the conditions provided for by the regulations. Personal data relating to the operation of the Internet sites managed by EP PUBLISHING is kept for 3 years in our computer databases after the last connection detected for access to our Internet sites. The personal data of EP PUBLISHING's customers is kept in our computer databases for 3 years after the purchase, and then for the legal period in force in our documents or accounting databases.
ARTICLE 10: TRANSFER OF DATA OUTSIDE THE EU
EP PUBLISHING may transfer some of your data outside the European Union. This includes your first name, email address and IP address when you purchase a product or service through Paypal and Stripe. Transfers of personal data outside the European Union will only be made to countries whose level of personal data security is recognised by the European Union as equivalent to that of the European Union.
ARTICLE 11: INFORMATION IN CASE OF DATA THEFT
If, despite all the safeguards implemented by EP PUBLISHING and its subcontractors, some of your personal data is stolen, compromised or deleted, EP PUBLISHING undertakes to inform you of this within the legal timeframe and in accordance with the legal requirements in force. This legal obligation to inform you shall not be construed as an admission of liability or negligence on the part of EP PUBLISHING or its subcontractors.
ARTICLE 12 - CHANGES TO THIS PRIVACY POLICY
We reserve the right to change this privacy policy at any time, so please check it frequently. Changes and clarifications will take effect immediately upon posting on the website. If we make any changes to the content of this policy, we will notify you here that it has been updated, so that you will know what information we collect, how we use it, and under what circumstances, if any, we disclose it.
If our shop is acquired by or merged with another company, your information may be transferred to the new owners so that we can continue to sell products to you.
QUESTIONS AND CONTACT DETAILS
If you wish to: access, correct, amend or delete any personal information we have about you, make a complaint, or if you simply wish to have more information, please contact our Privacy Standards Officer at contact@popbrush.shop
