You can be confident! We collect and process your personal data in compliance with the regulations and legislation in force:
- the European Union General Data Protection Regulation n°2016/679 ("GDPR"); and
- the French Data Protection Act no. 78-17 of 6 January 1978 ("Loi Informatique et Libertés").
1. Who are we?
The company 900, registered in the Paris Trade and Companies Register under number 852 949 148, 60 rue Amelot, 75011 Paris ("the Company"), acts as data controller. This means that we determine the purposes and means of the existing personal data files.
2. Who are you?
You are :
- user of this website: i.e. you are browsing this website (whether or not you have created a customer account or placed an order);
- prospect: i.e. you are a potential customer of the company (for example, because you have subscribed to our newsletter, you have not yet ordered products or services, or you have written to us requesting information); or
- a customer of the Company: i.e. you have placed an order on our website (and we thank you for that!).
3. Why do we collect personal data about you?
|
What categories of personal data? |
Are you affected? |
What is the purpose (purposes)?
On what legal basis? |
For how long? |
Is it mandatory or optional? |
|
Identity details (such as email)
|
Prospect
Client
User |
To respond to a request from you (company's legitimate interest)
|
3 years from the last contact |
Mandatory |
|
Identity details (such as name, surname, email, delivery address, phone number)
Information related to any transaction
Payment information |
Client |
Management of the commercial relationship and after-sales service (contract)
Accounting, tax obligations (legal obligation)
Management of potential disputes and litigation (legitimate interest) |
Duration of the contractual relationship
Then, 3 years from the last contact
Then, in intermediate archiving: to comply with our accounting or tax obligations, as evidence in case of dispute, and within the limit of the applicable legal limitation period |
Mandatory |
|
Credit card number (including the security code)
|
Client
|
Debit of the subscription contracted online involving defined and regular payments (contract)
|
Duration of the contractual relationship |
Mandatory
|
|
Identity details (such as name, surname, email) |
Prospect
|
Commercial prospecting operations by email (specific consent)
|
Until withdrawal of consent
|
Optional
|
|
Identity details (such as name, surname, email, and phone number)
|
Client |
Commercial prospecting operations, for similar products and services, by email and SMS (legitimate interest)
|
Duration of the commercial relationship, then, 3 years from the last contact, in the absence of exercising the right to object
|
Optional |
| IP address |
Prospect Client User |
Technical operation of the site |
3 years from the last contact |
Mandatory |
4. Who do we pass on your data to (recipients)?
We only pass on data that is strictly necessary for the mission of each of our partners and sub-contractors.
- With regard to data on our customers: our logistics partners (product delivery partners and those who receive any product returns); our subcontracted IT service providers (service provider who manages your orders, from payment to delivery; service provider who manages messages such as requests for information, sending messages to monitor your orders; service provider who sends emails).
- With regard to data on our prospective customers and users: our IT service provider sub-contractors (message management service provider such as information requests; newsletter sending service provider).
- With regard to payment data: we do not store payment data ourselves and our subcontracted IT service providers (Stripe and Braintree) are at the forefront of data protection and their confidentiality policies are available here and here respectively.
In general, all our subcontractors are committed to strict compliance with the RGPD in their data processing.
5. Where is the data stored?
The data that we store ourselves is stored on datacenters within the European Union. Some of our subcontractors store data outside the European Union but are committed to strict compliance with the RGPD in their data processing.
6. Why should you accept cookies?
6.1 Some cookies are necessary for the website to function properly. You can object to them and delete them using your browser settings, however your user experience may be degraded.
|
Name of the cookie essential to the proper functioning of the website |
Purpose |
Duration of storage |
|
Cloudflare |
Redirect the user to the right version of the website and the right server, for faster loading times |
Maximum 13 months |
6.2 There are other cookies offered by third-party companies, designed to improve your customer experience on our website and to enable us to provide you with commercial offers that may be of interest to you.
All information collected by these cookies is anonymous. Our Company does not have any personal information about you, relating to your browsing on our website, the type of products you are interested in, etc. We would like to make this clear. We would like to make this clear 😊
|
Cookie name |
Purpose |
Duration of storage |
|
Klaviyo |
To study your browsing on our website, to offer you assistance by email in the event of any difficulty encountered on our website.
|
Maximum 13 months |
|
Shopify |
To enable us to know the number of visitors, the number of pages viewed, and your navigation on our website, very useful to enable us to improve your user experience!
|
Maximum 13 months |
|
|
To enable us to present you with advertisements relating to commercial offers from our Company which are likely to be of interest to you.
|
Maximum 13 months |
|
Google Analytics |
To obtain statistics on visits to our site (e.g. number of visits, pages most frequently consulted). We use this data to identify any malfunctions on the site and any improvements that need to be made.
|
Maximum 13 months |
|
Pixel Google Ads / Youtube |
To enable us to present you with advertisements relating to commercial offers from our Company which are likely to be of interest to you.
|
Maximum 13 months |
| MentionMe |
To enable the processing of customer e-mail addresses and certain order data for the following purposes: |
Maximum 13 months |
| Clarity |
To obtain data on users' expectations and behaviour on the site. We use this data to identify any malfunctions on the site and any improvements that need to be made.
|
Maximum 13 months |
7. What are your rights?
You have the following rights:
- Right of access: you may request that your personal data be communicated to you in order to verify its content;
- Right of rectification: if your personal data is inaccurate, you may ask the Company to correct it;
- Right to erasure: if our Company holds personal information about you that you consider to be unnecessary, you may ask us to erase it;
- Right to object: you may object to our company using some of your personal data if it appears in a non-mandatory file and you no longer wish it to appear there;
- Right to portability: you may ask us to retrieve part of your personal data in an open and machine-readable format; this will enable you to store it or transmit it easily from one information system to another; and
- Right to restrict the processing of personal data: you may ask us to "freeze" the use of your personal data, for example if you believe that the personal data we are using about you is inaccurate, or if you object to your data being processed.
- You may also withdraw your consent at any time, in cases where the processing of personal data is based on the collection of your consent.
You can exercise your rights by sending an email to hello@900.care, giving details that will enable us to establish your identity. We need to be sure that it is you who is exercising your rights. 😊
In the event of an unsatisfactory response from us concerning the exercise of your aforementioned rights, you have the right to lodge a complaint with the Commission nationale de l'informatique et des libertés - CNIL (3 place de Fontenoy - TSA 80715 - 75334 Paris cedex 07; tel: 01 53 73 22 22).
However, rest assured that we will do everything in our power to ensure that your request is satisfied!
