Respecting your privacy is one of PARIDERM’s priorities. When you browse our website or purchase our products, you may be asked to provide personal data, either directly or indirectly. Your personal data is important; it is part of your private life.

PARIDERM therefore undertakes to collect and process your personal data transparently, fairly and lawfully.

Please read this privacy policy carefully. In it you will find information about the data we collect, how we process it, how long we keep it, the means we use to protect it and your rights.

Our personal data protection charter may be updated as our services, tools and regulations evolve. Any changes will take effect immediately, so please consult it regularly.

  1. Data covered by the charter

This personal data protection charter applies to all personal data that you communicate to us or that we collect, directly or indirectly, in particular during your browsing on the https://www.pariderm.com website or when purchasing PARIDERM products.

“Personal data” is information that directly or indirectly identifies a natural person, such as your name, e‐ mail address or telephone number, as well as data relating to your consumption habits, your skin type, etc.

  • The data controller

The law defines the data controller as the company that determines the purposes and conditions of the collection and use of your data.

The company in question is Pariderm SAS, with capital of 400,000€ (four hundred thousand euros), registered with the Paris Trade and Companies Register under number 894 477 025, and headquartered at 42 Avenue Montaigne, 75008 Paris, France.

  • Legal basis for personal data

The processing of personal data that we carry out as part of our activities has several legal bases:

  • Legitimate interest: we need to collect your personal data to get to know you better in order to provide you with personalized offers and services, ensure the security of our site, improve our content, adapt our products to your needs, etc.
  • Performance of a contract: the collection of your data is necessary when you subscribe to one of our online services (e.g. account creation, etc.).
  • Your consent: in certain cases, the law requires us to obtain your consent to collect or use your data. Such as when we collect data relating to your health or ethnic origin in order to recommend appropriate products (skin tone, etc.), or when we wish to send you commercial information (product information, etc.) by e‐mail or SMS/MMS.
  • Legal obligation: in certain cases, the law requires certain personal data to be processed. In the context of cosmetovigilance, for example, the law requires us to retain some of your personal data.
  • Why we collect your data

We collect your personal data only when necessary for explicit, legitimate and specific purposes. We collect and process your personal data for the following purposes:

  • to provide you with services and offers on our site (creation of an account, etc.);
  • to let you benefit from our site’s offers;
  • improve the operation and content of our site and services, in order to better meet your needs and requests;
  • to get to know you better and segment our customers according to their needs and loyalty, in order to send you personalized information, advice and offers;
  • answer your questions and provide you with personalized advice, in particular through our consumer service, via the contact form on our site, our Chat, social networks, telephone, etc….;
  • collect your feedback on our products and services;
  • to carry out audience analysis and statistical studies, for example in order to know and measure the number of visits to our site, the activity and path of Internet users on our site, the rate of subscription to our services, the effectiveness of our promotional offers… ;
  • conduct satisfaction surveys on our products and services;
  • cosmetovigilance (management of reports of adverse reactions to our products, studies and research into the safe use of our products, etc.);
  • run competitions;
  • targeted communications;
  • carry out product tests;
  • send you information on our products, services and activities by e‐mail
  • manage and animate our consumer and prospective customer databases, in particular by offering you services designed to get to know you better, in order to provide you with personalized advice and offers tailored to your centers of interest;
  • ensure the security of our site and services;
  • detect fraudulent behavior and manage disputes;
  • carry out targeted advertising on social networks, search engines,… ;
  • Types of data collected, retention periods

We collect and process your personal data fairly and lawfully.

We respect the principle of data minimization. This means that we only collect data that is strictly necessary for the fulfillment of our purposes.

We also ensure that data is updated where necessary, so that it does not become obsolete.

Data may be collected directly from you, for example when you complete our collection forms on our site.

We define the length of time we keep your data according to the length of time required to achieve the purposes for which it was collected. Once our objectives have been met, we delete your data, except in certain cases where the law requires us to keep it. In such cases, your data will be archived in accordance with the law.

Below is an indication of when your data is collected, what data is collected, and how long it is kept: We collect :

  • your technical connection and browsing data (your IP address, browser information, device information, pages visited, duration of your visit, etc.).

Retention period: 12 months from the date of collection during your browsing. Legal basis: Legitimate interest, consent.

  • your identification data (surname, first name, postal address, e‐mail address, etc.);
  • data relating to your consumption habits (e.g. favorite points of sale, sales receipts for proof of purchase, etc.);
  • data relating to your skin color (phototype, etc.) in order to offer you suitable products;
  • banking or financial data;
  • your profile on social networks (if you use it to log in, if you are active on our pages).

Retention period: 3 years from the creation of your account or your last activity on your account.

Legal basis: Legitimate interest, consent, performance of a contract

  • When you subscribe to our newsletter
  • your address

Retention period: 3 years from the date of collection or last contact from you. Legal basis: Consent.

  • When you interact on our social networking pages
  • identification data (surname, first name, etc.) ;
  • your profile on social networks;
  • the content of your messages (which may include data relating to your health, skin color, consumption habits, etc.).

Retention period: 3 years from the date of collection or last contact from you.

Legal basis: Legitimate interest, consent.

  • When you share your opinion on one of our products
  • identification data (last name, first name, email address, your age group);
  • the condition of your skin (dry, sensitive, oily, etc.);
  • your consumption habits (product consumed, etc.)
  • The content of your notice (we recommend that you do not communicate data relating to your health, your family, your religion, etc.).

Retention period: Your notices will be kept for 5 years from the date of writing. Your data will be kept for 18 months from the date of collection, then anonymized. Your reviews will be pseudonymized on our site: only your first name and the first letter of your last name will appear.

Legal basis: Legitimate interest.

  • When you contact our Customer Service department by e‐mail, telephone, chat or post
  • your identification data (surname, first name, postal address, email address, etc.);
  • the information you agree to give us (which may include information about your health, skin color, consumer habits, etc.);
  • When you participate in a game or contest
  • your identification data (surname, first name, postal address, e‐mail address, pseudonym, telephone number, etc.).

Retention period: Period required to manage the game. Legal basis: Performance of a contract.

  • When you report a Cosmetovigilance case
  • your identification data (surname, first name, postal address, email address, etc.);
  • the reason for and content of the exchange;
  • data relating to your health or skin color, if you agree to give us this information beforehand;
  • banking or financial data Shelf life: As required by law. Legal basis: Legal obligation.

At the time of each collection, certain data (indicated by asterisks) must be provided in order to benefit from the services offered. Other data is purely optional and enables us to get to know you better, for example, to provide you with tailored offers.

  • Data collection from minors?

Our site is accessible to people of all ages.

However, the additional prior consent of the holder of parental authority is required for minors under the age of 18 who subscribe to our services or provide us with personal data concerning them.

  • Third‐party sites

On our site, you can connect via your social network profiles, click on links to our social network pages,

Social networks (Facebook, Instagram, Youtube, …) are likely to collect personal data about you. Below are links to the privacy policies of these major social networks. To ensure the security of your data, we invite you to consult the personal data protection policies of these sites.

https://www.facebook.com/privacy/policy

https://help.instagram.com/155833707900388

You can also publish content on our pages. We remind you that any content transmitted via our pages is accessible to the public. To protect your privacy, we ask you to be vigilant when communicating your personal data on social networks. We are not responsible for any use that may be made by third parties of the data you have publicly communicated.

We remind you that we may collect the content you publish on our pages in order to get to know you better and to segment our consumer base.

  • Cookie management

We may deposit and use cookies when you browse our website or mobile application, in particular to improve our content and the operation of our services.

  • Who has access to your data

We may need to pass on your data to the following companies, structures and/or persons involved in carrying out the purposes described below:

PARIDERM employees who need to process personal data collected for the purposes described above;

  • our subcontractors and service providers, for example to carry out surveys, to send you commercial solicitations when you have given your consent, to host our consumer databases, etc. ;
  • Google, to measure the audience on our site;
  • Social networks, to find out about your activity on our pages, your consumption habits, etc. ;

We may pass on some of your personal data to social networks or search engines (e.g. Facebook, Google, etc.), in order to carry out targeted advertising. When we transmit this information to these service providers, your data is “hashed” (transformed) in such a way as to make it encrypted and secure. We do not collect any data about you from these service providers.

We choose subcontractors, service providers and suppliers who offer sufficient guarantees to ensure the protection, security and confidentiality of your personal data, in particular by implementing appropriate technical and organizational measures that meet legal requirements. They are authorized to process your data only in accordance with our instructions.

Your personal data may also be communicated to administrative or judicial authorities at their request, as well as to third parties or authorized recipients to comply with a legal obligation or for the exercise of legitimate interests.

  1. How do we ensure the security of your data?

We undertake to implement reasonable means to ensure that your personal data is sufficiently protected, taking into account the sensitive nature of certain information collected. We use a variety of technologies and procedures to ensure that your data is processed in such a way as to protect it from loss, destruction, alteration, unauthorized disclosure or access, whether unlawful or accidental.

We therefore implement measures that respect the principles of protection by design and by default of the personal data processed. To this end, we are able to use data anonymization techniques whenever possible and/or necessary.

We demand the same level of security from our subcontractors.

For example, we or our subcontractors store your data on computer servers in controlled locations with limited access.

  1. How can you exercise your rights?

In accordance with current legislation, you benefit from:

  • a right to information;
  • a right of access to your personal data;
  • the right to rectify your data;
  • the right to erasure of data, for legitimate reasons;
  • the right to object to the processing of your data on legitimate grounds;
  • the right to withdraw your consent to the processing of your data;
  • the right to limit processing;
  • the right to data portability;
  • the right not to be subject to a decision based exclusively on automated processing and producing legal effects concerning you or significantly affecting you;
  • the right to object to commercial prospecting;
  • the right to formulate directives concerning the conservation, deletion and communication of your personal data post‐mortem,

You may exercise these rights at any time by email, via our contact form or by post to the following address: PARIDERM, 42 Avenue Montaigne ‐ 75008 Paris ‐ France.

A reply will be sent to you within one month of receipt of your request.

We reserve the right to refuse manifestly unfounded requests, in accordance with European regulations. The person concerned will be informed of any refusal on our part.

You may also ‐ if you wish ‐ lodge a complaint with the Commission Nationale de l’Informatique et des Libertés (CNIL). Further information is available on its website www.cnil.fr.