Privacy
Privacy Policy for Prévaut GmbH
Last Updated: 31 December 2024
Prévaut GmbH ("we," "us," or "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your personal data when you visit or make a purchase from www.prevaut.com (the "Site"). It also outlines your rights under applicable data protection laws, particularly the General Data Protection Regulation (GDPR).
We are committed to maintaining the security of your personal data and ensuring that your rights are protected. This Policy applies to all personal data collected, whether through our Site, email correspondence, or social media interactions.
1. Information We Collect
We collect and process your personal information in various ways, depending on how you interact with us. Personal data refers to any information relating to an identified or identifiable person. We categorize the data we collect as follows:
1.1. Personal Data You Provide to Us
When you engage with our Site, such as when you make a purchase, create an account, or subscribe to our marketing communications, we collect personal data directly from you. This includes:
Identity Data: Includes your full name, title, date of birth, and gender.
Contact Data: Includes your postal address, email address, and phone number.
Payment Data: This includes payment card details, bank account information, and billing addresses. Please note that payment details are processed by secure third-party payment processors and are not stored on our servers.
Transaction Data: Includes details of purchases you’ve made, including product information, delivery addresses, and order history.
Account Data: Includes your username, password, and security question responses for accessing your account on our Site.
Communication Data: Any data you provide when you contact us via email, phone, or online forms, including inquiries about products or customer support.
1.2. Data We Collect Automatically
We also collect some information about you automatically when you visit our Site. This information helps us understand how users navigate our Site and ensures that our Site runs smoothly. This includes:
Technical Data: Includes your IP address, browser type, operating system, and the type of device you are using.
Usage Data: Information about your browsing activity on our Site, such as the pages you viewed, links clicked, and the time spent on each page.
Cookies and Similar Technologies: We use cookies, web beacons, and pixels to collect data about your activity on our Site. Cookies are small text files stored on your device that help us remember your preferences and optimize your experience on our Site. For more details, see our Cookies Policy below.
1.3. Data from Third Parties
We may also collect personal data from third-party services, which may include:
Social Media Platforms: If you interact with our social media profiles or share content related to our products.
Payment Providers: To process payments and prevent fraud.
Analytics and Advertising Partners: We use services like Google Analytics and Facebook Pixel to help us understand how you use our Site and to serve you targeted advertisements based on your browsing behavior.
2. How We Use Your Personal Data
We process your personal data for a variety of legitimate business purposes, which include fulfilling our contractual obligations, ensuring the functionality of our Site, and providing an excellent customer experience.
2.1. Fulfilling Orders and Providing Services
We use your personal data to process and fulfill orders, manage returns, and provide customer support. Specifically, we use your data to:
Process payments and issue refunds.
Confirm order details and send shipment notifications.
Arrange for the delivery of products through third-party couriers (e.g., DHL, UPS).
2.2. Account Management
If you create an account on our Site, we will use your personal data to maintain and secure your account. This may include:
Allowing you to log into your account.
Storing preferences such as saved addresses or payment methods.
Providing password recovery options.
2.3. Marketing Communications
With your consent, we may send you marketing materials, such as newsletters, special promotions, or product updates. You have the right to opt-out of receiving these communications at any time. You can unsubscribe by following the "unsubscribe" link in our emails or contacting us at info@prevaut.com.
2.4. Legal and Compliance Purposes
We may need to process your personal data to comply with legal obligations, such as keeping financial records for tax purposes or responding to lawful requests from authorities.
2.5. Fraud Prevention and Security
To protect your data and our business from fraudulent activity, we use your personal data to:
Detect and prevent fraud or abuse on our Site.
Conduct risk assessments and security monitoring.
2.6. Analytics and Personalization
We use analytics tools to assess how users engage with our Site. This helps us understand customer preferences and improve the user experience. Data collected from cookies and similar technologies are also used to:
Personalize your shopping experience, showing you products you may be interested in based on your previous browsing activity.
Measure the effectiveness of our advertising campaigns on third-party sites.
3. Legal Basis for Processing (GDPR)
Under the General Data Protection Regulation (GDPR), we rely on several legal bases to process your personal data. These include:
Performance of a Contract: We process personal data to fulfill our contractual obligations, such as delivering goods and services.
Consent: For marketing communications and non-essential cookies, we rely on your explicit consent. You may withdraw your consent at any time.
Legitimate Interest: We process personal data for legitimate business purposes, such as improving our services and preventing fraud. We will always consider your rights and interests before processing your data for these purposes.
Legal Obligation: In some cases, we are legally required to process your personal data, such as for tax reporting purposes.
4. How We Share Your Personal Data
Your personal data may be shared with third parties for the purposes outlined in this Privacy Policy, including:
Service Providers: We use trusted third parties to help us provide and deliver our services, including payment processors (e.g., Shopify Payments and PayPal), shipping providers, and marketing platforms (e.g., Facebook, Google). These third parties are required to handle your data securely and only for the purpose of providing their services to us.
Analytics Providers: We use analytics services such as Google Analytics to understand how users interact with our Site. This data is anonymized and aggregated.
Legal Authorities: We may share your personal data if required to comply with legal obligations, such as responding to subpoenas or court orders, or if we believe it is necessary to prevent fraud or protect the rights of our users.
4.1. International Transfers of Data
Some of our third-party service providers are based outside the European Economic Area (EEA), which means your personal data may be transferred to and processed in countries that do not have the same data protection laws as your country of residence. When we transfer your data outside the EEA, we rely on Standard Contractual Clauses (SCCs) or other appropriate legal mechanisms to ensure that your data is adequately protected.
5. Data Retention
We will retain your personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including:
Transactional Data: Retained for at least 5 years to comply with tax and financial regulations.
Marketing Data: Retained until you withdraw consent or opt-out of marketing communications.
Account Data: Retained as long as your account remains active. If your account is inactive for a prolonged period, we may delete your personal data after [insert time period] of inactivity.
Cookie Data: Retained in accordance with the duration settings for each cookie type, which are specified in our Cookies Policy below.
6. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to provide essential site functionality, improve your browsing experience, and deliver personalized content. Cookies are small text files that are stored on your device when you visit our Site.
6.1. Types of Cookies We Use
Essential Cookies: These cookies are necessary for the functioning of our Site and cannot be disabled in our systems. They include session cookies and cookies that store your consent preferences.
Analytics Cookies: These cookies allow us to track site usage and measure performance. This data helps us improve the functionality of our Site.
Marketing Cookies: These cookies are used to track user activity across websites and display relevant ads based on your browsing activity.
6.2. Managing Your Cookie Preferences
You can manage your cookie preferences through our Consentmo Cookie Banner, which allows you to accept or reject different categories of cookies. You can also adjust your browser settings to refuse cookies, but please note that disabling cookies may affect the functionality of certain features of the Site.
For more details on our use of cookies, please refer to our Cookies Policy.
7. Your GDPR Rights
Under GDPR, individuals residing in the European Union or the United Kingdom have specific rights regarding their personal data. These rights include:
Right of Access: You have the right to request access to the personal data we hold about you. This includes knowing what data we collect,Continued:
Right of Access: You have the right to request access to the personal data we hold about you. This includes knowing what data we collect, how it is used, and who it is shared with.
Right to Rectification: You can ask us to correct any inaccuracies in the personal data we have about you.
Right to Erasure ("Right to be Forgotten"): In certain circumstances, you can request the deletion of your personal data.
Right to Restrict Processing: You may have the right to ask us to limit the processing of your data in specific situations (e.g., while we resolve a data accuracy dispute).
Right to Object: You can object to the processing of your data, especially where we are relying on legitimate interest as the legal basis for processing.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to request that we transfer this data to another controller.
Right to Withdraw Consent: Where we rely on your consent to process personal data (e.g., for marketing), you have the right to withdraw your consent at any time.
Right to Lodge a Complaint: You have the right to file a complaint with your local data protection authority if you believe that we have not handled your personal data in compliance with GDPR.
To exercise any of these rights, please contact us at info@prevaut.com. We will respond to requests in accordance with applicable laws.
8. Data Security
We are committed to ensuring the security of your personal data. To protect your data, we have implemented appropriate technical and organizational security measures. These include:
SSL Encryption: We use Secure Socket Layer (SSL) encryption to ensure that data transmitted between your browser and our Site is secure.
Access Controls: We restrict access to personal data to authorized personnel only and require all employees to follow strict confidentiality protocols.
Secure Payment Processing: Payments made on our Site are processed by secure third-party providers that comply with Payment Card Industry Data Security Standard (PCI-DSS) regulations, ensuring the secure handling of your payment information.
Data Encryption: Personal data stored on our systems is encrypted, and sensitive data, such as payment details, is processed using industry-standard encryption methods.
While we take these steps to protect your personal data, it is important to note that no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee the absolute security of your data, but we strive to protect it to the best of our ability.
9. Data Breach Notification
In the event of a data breach that compromises your personal data, we will notify you and the relevant supervisory authority within the time frame required by applicable law (e.g., 72 hours under GDPR). If a breach occurs, we will:
Provide a detailed explanation of what happened.
Describe the likely consequences of the breach.
Explain the steps we are taking to address the breach and mitigate any potential harm.
10. Children's Privacy
Our Site is not intended for use by individuals under the age of 16, and we do not knowingly collect personal data from children. If you are a parent or guardian and believe that your child has provided personal data on our Site, please contact us at info@prevaut.com. We will promptly delete any such data upon verification.
11. International Data Transfers
As a company headquartered in Germany, the personal data we collect is generally stored and processed within the European Economic Area (EEA). However, we may need to transfer your personal data to third parties located in other countries, including the United States, for purposes such as payment processing, shipping, and marketing.
Whenever we transfer your personal data outside the EEA, we will ensure that adequate safeguards are in place to protect your data, in compliance with GDPR. These safeguards may include:
Standard Contractual Clauses (SCCs): Legally binding agreements approved by the European Commission that provide an adequate level of protection for personal data transferred outside the EEA.
Privacy Shield Frameworks: For transfers to the US, we may rely on the Privacy Shield framework, where applicable, to ensure that your data is handled with the same level of protection as it would be in the EU.
12. Cookies Policy
Cookies are small text files that are stored on your device when you visit our Site. We use cookies to personalize your browsing experience, provide essential site functionality, and analyze traffic patterns to improve our services. Below, we explain the types of cookies we use and how you can manage them.
12.1. Types of Cookies We Use
Essential Cookies: These cookies are necessary for the proper functioning of our Site. Without these cookies, services like shopping carts and e-payment cannot function.
Analytics Cookies: We use these cookies to collect anonymous information about how visitors use our Site. This data helps us understand visitor behavior and optimize the user experience. For example, we use Google Analytics to track which pages are most popular and to detect navigation issues.
Marketing Cookies: These cookies allow us to serve relevant advertisements to you based on your browsing history. They help us track the effectiveness of our marketing campaigns across platforms such as Facebook Ads.
12.2. Managing Your Cookie Preferences
You can manage your cookie preferences by adjusting the settings in your browser or through the Consentmo Cookie Banner displayed on our Site. Additionally, you can block cookies using your browser settings; however, please note that this may affect the functionality of certain features of the Site.
For more detailed information on how we use cookies and how you can control them, please visit our full Cookies Policy.
13. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices or for operational, legal, or regulatory reasons. If we make significant changes to this Privacy Policy, we will post the updated policy on this page and update the "Last Updated" date at the top of this page. Where required by law, we will notify you directly of these changes.
You are encouraged to review this Privacy Policy periodically to stay informed about how we collect, use, and share your personal data.
14. Contact Us
If you have any questions or concerns about this Privacy Policy or wish to exercise your rights, you can contact us at:
Prévaut GmbH Hauptnbahnhof 6, 53111 Bonn, Germany Tel: +44 7473067737 Email: info@prevaut.com
Last Updated: 31 December 2024
Prévaut GmbH ("we," "us," or "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your personal data when you visit or make a purchase from www.prevaut.com (the "Site"). It also outlines your rights under applicable data protection laws, particularly the General Data Protection Regulation (GDPR).
We are committed to maintaining the security of your personal data and ensuring that your rights are protected. This Policy applies to all personal data collected, whether through our Site, email correspondence, or social media interactions.
1. Information We Collect
We collect and process your personal information in various ways, depending on how you interact with us. Personal data refers to any information relating to an identified or identifiable person. We categorize the data we collect as follows:
1.1. Personal Data You Provide to Us
When you engage with our Site, such as when you make a purchase, create an account, or subscribe to our marketing communications, we collect personal data directly from you. This includes:
Identity Data: Includes your full name, title, date of birth, and gender.
Contact Data: Includes your postal address, email address, and phone number.
Payment Data: This includes payment card details, bank account information, and billing addresses. Please note that payment details are processed by secure third-party payment processors and are not stored on our servers.
Transaction Data: Includes details of purchases you’ve made, including product information, delivery addresses, and order history.
Account Data: Includes your username, password, and security question responses for accessing your account on our Site.
Communication Data: Any data you provide when you contact us via email, phone, or online forms, including inquiries about products or customer support.
1.2. Data We Collect Automatically
We also collect some information about you automatically when you visit our Site. This information helps us understand how users navigate our Site and ensures that our Site runs smoothly. This includes:
Technical Data: Includes your IP address, browser type, operating system, and the type of device you are using.
Usage Data: Information about your browsing activity on our Site, such as the pages you viewed, links clicked, and the time spent on each page.
Cookies and Similar Technologies: We use cookies, web beacons, and pixels to collect data about your activity on our Site. Cookies are small text files stored on your device that help us remember your preferences and optimize your experience on our Site. For more details, see our Cookies Policy below.
1.3. Data from Third Parties
We may also collect personal data from third-party services, which may include:
Social Media Platforms: If you interact with our social media profiles or share content related to our products.
Payment Providers: To process payments and prevent fraud.
Analytics and Advertising Partners: We use services like Google Analytics and Facebook Pixel to help us understand how you use our Site and to serve you targeted advertisements based on your browsing behavior.
2. How We Use Your Personal Data
We process your personal data for a variety of legitimate business purposes, which include fulfilling our contractual obligations, ensuring the functionality of our Site, and providing an excellent customer experience.
2.1. Fulfilling Orders and Providing Services
We use your personal data to process and fulfill orders, manage returns, and provide customer support. Specifically, we use your data to:
Process payments and issue refunds.
Confirm order details and send shipment notifications.
Arrange for the delivery of products through third-party couriers (e.g., DHL, UPS).
2.2. Account Management
If you create an account on our Site, we will use your personal data to maintain and secure your account. This may include:
Allowing you to log into your account.
Storing preferences such as saved addresses or payment methods.
Providing password recovery options.
2.3. Marketing Communications
With your consent, we may send you marketing materials, such as newsletters, special promotions, or product updates. You have the right to opt-out of receiving these communications at any time. You can unsubscribe by following the "unsubscribe" link in our emails or contacting us at info@prevaut.com.
2.4. Legal and Compliance Purposes
We may need to process your personal data to comply with legal obligations, such as keeping financial records for tax purposes or responding to lawful requests from authorities.
2.5. Fraud Prevention and Security
To protect your data and our business from fraudulent activity, we use your personal data to:
Detect and prevent fraud or abuse on our Site.
Conduct risk assessments and security monitoring.
2.6. Analytics and Personalization
We use analytics tools to assess how users engage with our Site. This helps us understand customer preferences and improve the user experience. Data collected from cookies and similar technologies are also used to:
Personalize your shopping experience, showing you products you may be interested in based on your previous browsing activity.
Measure the effectiveness of our advertising campaigns on third-party sites.
3. Legal Basis for Processing (GDPR)
Under the General Data Protection Regulation (GDPR), we rely on several legal bases to process your personal data. These include:
Performance of a Contract: We process personal data to fulfill our contractual obligations, such as delivering goods and services.
Consent: For marketing communications and non-essential cookies, we rely on your explicit consent. You may withdraw your consent at any time.
Legitimate Interest: We process personal data for legitimate business purposes, such as improving our services and preventing fraud. We will always consider your rights and interests before processing your data for these purposes.
Legal Obligation: In some cases, we are legally required to process your personal data, such as for tax reporting purposes.
4. How We Share Your Personal Data
Your personal data may be shared with third parties for the purposes outlined in this Privacy Policy, including:
Service Providers: We use trusted third parties to help us provide and deliver our services, including payment processors (e.g., Shopify Payments and PayPal), shipping providers, and marketing platforms (e.g., Facebook, Google). These third parties are required to handle your data securely and only for the purpose of providing their services to us.
Analytics Providers: We use analytics services such as Google Analytics to understand how users interact with our Site. This data is anonymized and aggregated.
Legal Authorities: We may share your personal data if required to comply with legal obligations, such as responding to subpoenas or court orders, or if we believe it is necessary to prevent fraud or protect the rights of our users.
4.1. International Transfers of Data
Some of our third-party service providers are based outside the European Economic Area (EEA), which means your personal data may be transferred to and processed in countries that do not have the same data protection laws as your country of residence. When we transfer your data outside the EEA, we rely on Standard Contractual Clauses (SCCs) or other appropriate legal mechanisms to ensure that your data is adequately protected.
5. Data Retention
We will retain your personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including:
Transactional Data: Retained for at least 5 years to comply with tax and financial regulations.
Marketing Data: Retained until you withdraw consent or opt-out of marketing communications.
Account Data: Retained as long as your account remains active. If your account is inactive for a prolonged period, we may delete your personal data after [insert time period] of inactivity.
Cookie Data: Retained in accordance with the duration settings for each cookie type, which are specified in our Cookies Policy below.
6. Cookies and Tracking Technologies
We use cookies and similar tracking technologies to provide essential site functionality, improve your browsing experience, and deliver personalized content. Cookies are small text files that are stored on your device when you visit our Site.
6.1. Types of Cookies We Use
Essential Cookies: These cookies are necessary for the functioning of our Site and cannot be disabled in our systems. They include session cookies and cookies that store your consent preferences.
Analytics Cookies: These cookies allow us to track site usage and measure performance. This data helps us improve the functionality of our Site.
Marketing Cookies: These cookies are used to track user activity across websites and display relevant ads based on your browsing activity.
6.2. Managing Your Cookie Preferences
You can manage your cookie preferences through our Consentmo Cookie Banner, which allows you to accept or reject different categories of cookies. You can also adjust your browser settings to refuse cookies, but please note that disabling cookies may affect the functionality of certain features of the Site.
For more details on our use of cookies, please refer to our Cookies Policy.
7. Your GDPR Rights
Under GDPR, individuals residing in the European Union or the United Kingdom have specific rights regarding their personal data. These rights include:
Right of Access: You have the right to request access to the personal data we hold about you. This includes knowing what data we collect,Continued:
Right of Access: You have the right to request access to the personal data we hold about you. This includes knowing what data we collect, how it is used, and who it is shared with.
Right to Rectification: You can ask us to correct any inaccuracies in the personal data we have about you.
Right to Erasure ("Right to be Forgotten"): In certain circumstances, you can request the deletion of your personal data.
Right to Restrict Processing: You may have the right to ask us to limit the processing of your data in specific situations (e.g., while we resolve a data accuracy dispute).
Right to Object: You can object to the processing of your data, especially where we are relying on legitimate interest as the legal basis for processing.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to request that we transfer this data to another controller.
Right to Withdraw Consent: Where we rely on your consent to process personal data (e.g., for marketing), you have the right to withdraw your consent at any time.
Right to Lodge a Complaint: You have the right to file a complaint with your local data protection authority if you believe that we have not handled your personal data in compliance with GDPR.
To exercise any of these rights, please contact us at info@prevaut.com. We will respond to requests in accordance with applicable laws.
8. Data Security
We are committed to ensuring the security of your personal data. To protect your data, we have implemented appropriate technical and organizational security measures. These include:
SSL Encryption: We use Secure Socket Layer (SSL) encryption to ensure that data transmitted between your browser and our Site is secure.
Access Controls: We restrict access to personal data to authorized personnel only and require all employees to follow strict confidentiality protocols.
Secure Payment Processing: Payments made on our Site are processed by secure third-party providers that comply with Payment Card Industry Data Security Standard (PCI-DSS) regulations, ensuring the secure handling of your payment information.
Data Encryption: Personal data stored on our systems is encrypted, and sensitive data, such as payment details, is processed using industry-standard encryption methods.
While we take these steps to protect your personal data, it is important to note that no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee the absolute security of your data, but we strive to protect it to the best of our ability.
9. Data Breach Notification
In the event of a data breach that compromises your personal data, we will notify you and the relevant supervisory authority within the time frame required by applicable law (e.g., 72 hours under GDPR). If a breach occurs, we will:
Provide a detailed explanation of what happened.
Describe the likely consequences of the breach.
Explain the steps we are taking to address the breach and mitigate any potential harm.
10. Children's Privacy
Our Site is not intended for use by individuals under the age of 16, and we do not knowingly collect personal data from children. If you are a parent or guardian and believe that your child has provided personal data on our Site, please contact us at info@prevaut.com. We will promptly delete any such data upon verification.
11. International Data Transfers
As a company headquartered in Germany, the personal data we collect is generally stored and processed within the European Economic Area (EEA). However, we may need to transfer your personal data to third parties located in other countries, including the United States, for purposes such as payment processing, shipping, and marketing.
Whenever we transfer your personal data outside the EEA, we will ensure that adequate safeguards are in place to protect your data, in compliance with GDPR. These safeguards may include:
Standard Contractual Clauses (SCCs): Legally binding agreements approved by the European Commission that provide an adequate level of protection for personal data transferred outside the EEA.
Privacy Shield Frameworks: For transfers to the US, we may rely on the Privacy Shield framework, where applicable, to ensure that your data is handled with the same level of protection as it would be in the EU.
12. Cookies Policy
Cookies are small text files that are stored on your device when you visit our Site. We use cookies to personalize your browsing experience, provide essential site functionality, and analyze traffic patterns to improve our services. Below, we explain the types of cookies we use and how you can manage them.
12.1. Types of Cookies We Use
Essential Cookies: These cookies are necessary for the proper functioning of our Site. Without these cookies, services like shopping carts and e-payment cannot function.
Analytics Cookies: We use these cookies to collect anonymous information about how visitors use our Site. This data helps us understand visitor behavior and optimize the user experience. For example, we use Google Analytics to track which pages are most popular and to detect navigation issues.
Marketing Cookies: These cookies allow us to serve relevant advertisements to you based on your browsing history. They help us track the effectiveness of our marketing campaigns across platforms such as Facebook Ads.
12.2. Managing Your Cookie Preferences
You can manage your cookie preferences by adjusting the settings in your browser or through the Consentmo Cookie Banner displayed on our Site. Additionally, you can block cookies using your browser settings; however, please note that this may affect the functionality of certain features of the Site.
For more detailed information on how we use cookies and how you can control them, please visit our full Cookies Policy.
13. Changes to This Privacy Policy
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices or for operational, legal, or regulatory reasons. If we make significant changes to this Privacy Policy, we will post the updated policy on this page and update the "Last Updated" date at the top of this page. Where required by law, we will notify you directly of these changes.
You are encouraged to review this Privacy Policy periodically to stay informed about how we collect, use, and share your personal data.
14. Contact Us
If you have any questions or concerns about this Privacy Policy or wish to exercise your rights, you can contact us at:
Prévaut GmbH Hauptnbahnhof 6, 53111 Bonn, Germany Tel: +44 7473067737 Email: info@prevaut.com