As part of our analysis, we have identified several categories of personal data collected by the company. Firstly, contact data includes the information needed to set up a customer account and conduct transactions, such as name, e-mail address, postal address, telephone number and identifiers. Secondly, communication data refers to the preferences expressed by users with regard to marketing and advertising communications. Profile data includes personal interests and preferences, as well as feedback such as comments, opinions and participation in surveys. Finally, order data includes purchase history, transaction details, payment information and customer service interactions.

It is crucial to emphasize that our company does not directly manage customers' banking information. This sensitive data is processed by an external service provider using a highly secure platform, ensuring the protection of our customers' financial information.

To optimize the online experience, our website makes use of cookies. These small data files help us to collect information about users' browsing habits, the devices they use and their technological preferences.

The acquisition of your personal information occurs through various interactions, such as making contact via the dedicated form, establishing a commercial relationship, creating your customer area, browsing our website or subscribing to our newsletter and marketing initiatives. This is essential to ensure effective communication, answer your questions, confirm your orders, and manage the delivery of the products you have purchased.

The data collected plays a crucial role in the execution of our contracts, the follow-up of our commercial relations, the conduct of our marketing campaigns, as well as in compliance with our legal and regulatory obligations. It is also used to defend and exercise legal rights and to prevent fraud.

DEMETZ also processes data indirectly via two main channels. Firstly, when a user browses the DEMETZ website while connected to social networks such as Facebook, Instagram or X, a transfer of data may occur. To avoid this, it is advisable to disconnect from social networks before visiting the DEMETZ site. Secondly, the use of cookies and tracers also contributes to data collection.

As part of our legal obligations, DEMETZ takes measures to secure your data and our information systems, which may include suspending your online account if there is a risk of fraudulent use. We also manage disputes, including those relating to debt collection and payment incidents, and meet legal or regulatory obligations, such as requests from tax authorities.

To improve our services and business prospecting, we analyze your visits to our site to offer you targeted advertising on other websites, without sharing your personal data with advertising agencies or third-party sites. We also use third-party software to better understand our business and provide you with relevant offers, by sharing anonymized data about our customer base and your browsing history.

Your consent is a legal basis for some of our processing activities, such as the sending of our weekly newsletter. You may withdraw your consent at any time, which will be effective immediately without retroactive effect.

Only authorized persons within DEMETZ have access to your personal data. Your order information is shared with our logistics and transport providers for the delivery of your parcels, and they are obliged to delete this data after processing. Our newsletter service provider, based in France and ISO-27001 certified, guarantees maximum data security. For our advertising campaigns and statistical analyses, we collaborate with partners such as Bing, Google, Meta, Belacom, always in compliance with the RGPD.

DEMETZ retains your personal data for the time necessary to fulfill the purposes described, increased by the legal statute of limitations. Your account data is kept for the duration of your membership and may be kept for three years after the last contact for commercial solicitations. Certain data may be kept for longer periods to comply with legal requirements, such as accounting records, for a period of ten years.

In compliance with the RGPD, DEMETZ implements technical, physical and organizational measures to protect your personal data from alteration, damage or unauthorized access. We rigorously select our subcontractors and service providers to ensure the implementation of these security measures.

DEMETZ servers are located in France at OVH, and contain the databases necessary for the operation of our site, as well as customer account information. Although some of our statistical tools operate from the USA, data processed outside the EU is anonymized.

You have the right to access, rectify and delete your personal data, as well as the right to define instructions for after your death, in accordance with data protection regulations. You may also request the restriction of the processing of your data or its portability, and object to processing based on DEMETZ's legitimate interests, including profiling, or withdraw your consent at any time.

If you have any questions or wish to exercise your rights, please contact DEMETZ at info@demetz.fr, specifying your request.