Menu
Search Search Basket
0
Cart

privacy policy

PRIVACY POLICY

At Trone, the protection of your personal data is a priority. During your use of our website https://www.trone.paris/ (the "Site") and in the context of our contractual relationships with our clients, we may collect personal data about you.

The purpose of this policy is to inform you about the ways in which we process this data in accordance with Regulation (EU) 2016/679 of April 27, 2016, regarding the protection of individuals concerning the processing of personal data and the free movement of such data (the "GDPR") and Law No. 78-17 of January 6, 1978, relating to data processing, files, and freedoms (together, the "Applicable Regulations").

  • 1. Who is the data controller?
    •
    • The data controller is Trone, a simplified joint-stock company, registered with the RCS of Paris under number 833 412 661, with its registered office at 6 rue des Bateliers, 92110 Clichy (hereinafter "We").
  • 2. What personal data do we collect?
    •
    • Personal data is information that allows the direct or indirect identification of an individual. During your navigation on the Site, we collect data falling into the following categories:
    • Identification data (names, first names, email address, phone number);
    • Data related to your professional life (your industry and the name of your company);
    • Navigation data (IP address, pages viewed, date and time of connection, browser used, operating system, user ID, MAID);
    • Any information you wish to provide us in the context of your contact request.

    In the management of our contractual relationships, we also collect data falling into the following categories:

    • Data related to your orders (products, delivery address);
    • Economic and financial data (data related to your credit cards via Stripe).

    The mandatory data are indicated when you provide us with your data and are highlighted by any means.

  • 3. For what purposes, on what legal bases, and for how long do we retain your personal data?

    • Processing Purposes

    Legal Bases

    Retention Periods

    Execute your order, perform operations related to customer management, including quotes, contracts, orders, deliveries, invoices, and customer relationship management.

    Execution of the contract you or your company have entered into with us.

    Personal data is retained for the entire duration of the contractual relationship. In addition, data related to your transactions is archived for probative purposes for a period of 5 years.

    Establish a customer and prospect file.

    Our legitimate interest in developing and promoting our business.

    For customers: data is kept for the entire duration of the commercial relationship and deleted at the expiration of a period from the end of the commercial relationship. For prospects: data is kept for a period of 3 years from your last contact. In any case, your data may be archived for probative purposes for a period of 5 years.



    Manage your reviews on our products.

    Our legitimate interest in collecting your opinion on our products.

    Send newsletters, solicitations, and promotional messages.

    For customers: our legitimate interest in informing you about our latest news. For prospects: your consent if you are a consumer or our legitimate interest in informing you about our latest news if you are a professional.

    Data is retained for 3 years from your last contact with us or until the withdrawal of your consent.

    Compile statistics (website navigation, audience).

    Your consent.

    Data is retained for [to be completed].

    Respond to your contact requests.

    Our legitimate interest in responding to your requests.

    Data is retained for the time necessary to process your information request and deleted once the contact request is processed.

    Comply with the legal obligations applicable to our activity.

    Legal and regulatory obligations.

    Invoices are archived for a period of 10 years. Data related to your transactions is retained for 5 years. For buyers with consumer status, data related to your contract and elements related to the contract's signature will be retained for 10 years from the date of delivery of the goods.

    Processing of applications and interview management (preselection of candidates, contact to assess the candidate's ability to fill the position, finalization of the recruitment process).

    Execution of pre-contractual measures.

    Your data is kept in active databases for the entire duration of the recruitment process until the hiring decision. In case of refusal of your application, your data may be kept for 3 months after the end of recruitment to provide explanations on the reasons for rejecting your application. Your data may be archived for probative purposes for 5 years from the date of hiring decision.

    Establishment of a resume database.

    Your consent.

    Data is retained for two years from the last contact with the person concerned.

    Manage requests to exercise rights.

    Our legitimate interest in complying with the legal obligations to which we are subject.

    If we ask you for proof of identity: we only keep it for the time necessary to verify your identity. Once the verification is done, the proof is deleted. If you exercise your right to object to direct marketing: we keep this information for 3 years.

  • 4. Who are the recipients of your personal data?
    •

    The following may have access to your personal data:

    • Our company's staff;
    • Our subcontractors: hosting provider; newsletter sending provider; CRM tool; invoicing tool; resource planning software (ERP);
    • Our carriers for product delivery;
    • If necessary: public and private entities, exclusively to meet our legal obligations.

  • 5. Is your personal data likely to be transferred outside the European Union?
    •
    • Your data is stored and processed for the entire duration of the processing on the servers of the company Gandi.net in France.

      As part of the tools we use (see Article 5 on recipients regarding our subcontractors), your data may be subject to transfers outside the European Union. The transfer of your data in this context is secured through the following means:
    • Either the data is transferred to a country that has received an adequacy decision from the European Commission, in accordance with Article 45 of the GDPR: in this case, the country provides a level of protection deemed sufficient and adequate to the provisions of the GDPR;

    • Or the data is transferred to a country whose level of data protection has not been recognized as adequate to the GDPR: in this case, these transfers are based on appropriate safeguards indicated in Article 46 of the GDPR, adapted to each provider, including, non-exhaustively, the conclusion of standard contractual clauses approved by the European Commission, the implementation of binding corporate rules, or under an approved certification mechanism;

    • Or the data is transferred based on one of the appropriate safeguards described in Chapter V of the GDPR.

  • 6. What are your rights regarding your data?

    You have the following rights regarding your personal data:
    •

    • Right to information: this is precisely the reason we have drafted this policy. This right is provided for in Articles 13 and 14 of the GDPR.

    • Right of access: you have the right to access all your personal data at any time under Article 15 of the GDPR.

    • Right to rectification: you have the right to rectify inaccurate, incomplete, or outdated personal data at any time in accordance with Article 16 of the GDPR.

    • Right to limitation: you have the right to obtain the limitation of the processing of your personal data in certain cases defined in Article 18 of the GDPR.

    • Right to erasure: you have the right to demand that your personal data be erased and to prohibit any future collection for the reasons stated in Article 17 of the GDPR.

    • Right to lodge a complaint with a competent supervisory authority (in France, the CNIL) if you consider that the processing of your personal data constitutes a violation of applicable laws, in accordance with Article 77 of the GDPR.

    • Right to define directives regarding the storage, erasure, and communication of your personal data after your death.

    • Right to withdraw your consent at any time: for purposes based on consent, Article 7 of the GDPR provides that you can withdraw your consent at any time. This withdrawal will not affect the legality of the processing carried out before the withdrawal.

    • Right to portability: under certain conditions specified in Article 20 of the GDPR, you have the right to receive the personal data you have provided us with in a standard machine-readable format and to demand their transfer to the recipient of your choice.

    • Right to object: under Article 21 of the GDPR, you have the right to object to the processing of your personal data. Note, however, that we may maintain their processing despite this opposition, for legitimate reasons or the defense of rights in court.

    You can exercise these rights by writing to us at the contact details below. We may ask you on this occasion to provide us with additional information or documents to justify your identity.

  • 7. What cookies do we use?
    •

    To learn more about the management of cookies, we invite you to consult our Cookie Policy.

  • 8. Data Protection Contact Point
    •

    Contact Email: contact@trone-paris.com

    Contact Address: Trone, 6 rue des Bateliers, 92110 Clichy, France


  • 9. Modifications
    •

    We may modify this policy at any time to comply with regulatory, jurisprudential, editorial, or technical developments. These modifications will apply as of the effective date of the modified version. You are therefore invited to regularly consult the latest version of this policy. However, we will inform you of any significant changes to this privacy policy.

    ×