PRIVACY POLICY
www.nougatnour.com
Nour Nougat
Type of site: e-commerce
The purpose of this privacy policy
The purpose of this privacy policy is to inform users of our site of the personal data we will collect and the following information, where applicable:
at) The personal data we will collect
b) Use of collected data
vs) Who has access to the data collected
d) Site user rights
e) The site's cookie policy
This Privacy Policy operates in conjunction with our Site Terms of Service.
Applicable laws
In accordance with the General Data Protection Regulation (GDPR), this privacy policy complies with the following regulations.
Personal data must be:
at) Processed in a lawful, fair and transparent manner with regard to the data subject (lawfulness, fairness, transparency);
b) Collected for specified, explicit and legitimate purposes, and not further processed in a manner incompatible with those purposes: further processing for archival purposes in the public interest, for scientific or historical research purposes or for statistics is not considered, in accordance with Article 89. Paragraph 1, as incompatible with the initial purposes (limitation of purposes);
vs) Adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (data minimization):
d) Accurate and, where necessary, kept up to date; all reasonable steps must be taken to ensure that personal data which are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay (accuracy):
e) Kept in a form allowing the identification of the persons concerned for a period not exceeding that necessary with regard to the purposes for which they are processed: personal data may be kept for longer periods insofar as they will be processed exclusively for archival purposes in the public interest, for scientific or historical research purposes or for statistical purposes in accordance with Article 89. Paragraph 1, provided that the appropriate technical and organizational measures required by the regulations in order to guarantee the rights and freedoms of the data subject (retention limitation);
f) Processed in such a way as to ensure appropriate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage using appropriate technical or organizational measures ( integrity and confidentiality).
Processing is only lawful if and insofar as at least one of the following conditions is met:
at) The data subject has consented to the processing of their personal data for one or more specific purposes;
b) The processing is necessary for the execution of a payment to which the data subject is a party or for the execution of pre-contractual measures taken at the latter's request;
vs) Processing is necessary for compliance with a legal obligation to which the controller is subject:
d) Processing is necessary to protect the vital interests of the data subject or of another natural person:
e) The processing is necessary for the performance of a task in the public interest or in the exercise of official authority vested in the controller;
f) Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the person concerned is a child.
For residents of the State of California, this Privacy Policy is intended to comply with the California Consumer Privacy Act (CCPA). If there are any inconsistencies between this document and the CCPA, state law will apply. If we find any inconsistencies, we will modify our policy to comply with the relevant law.
Consent
Users agree that by using our site, they consent to:
at) The terms set out in this Privacy Policy and
b) The collection, use and retention of the data listed in this policy.
Personal data we collect
Data Collected Automatically
We do not collect any data automatically on our site.
Data collected non-automatically
We may also collect the following data when you perform certain functions on our site:
at) First and last name
b) E-mail
vs) Phone number
d) Residence
e) Payment information
This data may be collected using the following methods:
Payment
Please note that we only collect data that helps us achieve the purpose set out in this privacy policy. We will not collect additional data without informing you first.
How we use personal data
Personal data collected on our site will only be used for the purposes specified in this policy or indicated on the relevant pages of our site. We will not use your data beyond what we disclose.
The data we collect when the user performs certain functions may be used for the following purposes:
at) Delivery
With whom we share personal data
Employees We may disclose to any member of our organization such user data as they reasonably need to carry out the purposes set out in this policy
Third Parties We may share User Data with the following third parties:
at) Stripe
We may share User Data with third parties for the following purposes:
at) Payment
Third parties will not be able to access user data beyond what is reasonably necessary to fulfill the given purpose.
Other Disclosures
We will not sell or share your data with other third parties, except in the following cases:
at) If required by law
b) If required for any legal proceeding
vs) To prove or protect our legal rights
d) To buyers or potential buyers of this company in the event that we seek to sell the company.
If you follow hyperlinks from our site to another site, please note that we are not responsible for and have no control over their privacy policies and practices.
How long we store personal data
We do not retain user data beyond what is necessary to fulfill the purposes for which it is collected.
How we protect your personal data
To ensure your security is protected, we use stripe to transmit banking information through their secure system.
All data stored in their system is well secured and not accessible to us.
While we take all reasonable precautions to ensure that our user data is secure and that users are protected, there always remains the risk of harm. The Internet as a whole can be insecure at times and therefore we are unable to ensure the security of user data beyond what is reasonably practical.
Your rights as a user
Under the GDPR, users have the following rights as data subjects
at) Permission to access
b) Right of rectification
vs) Right to erasure
d) Right to restriction of processing
e) Right to data portability
f) Right to object
You will find more information on these rights in Chapter 3 (art 12-23) of the GDPR.
How to modify, delete or dispute the data collected
If you would like your information deleted or otherwise amended, please contact our Privacy Officer here:
nougatnour@gmail.com
Cookie Policy
A cookie is a small file, stored on a user's hard drive by the website. Its purpose is to collect data relating to the user's browsing habits.
We do not use cookies on our site.
Amendments
This Privacy Policy may be amended from time to time to maintain compliance with the law and to reflect any changes to our data collection process. We recommend that our users check our policy from time to time to ensure that they are aware of any updates. If necessary, we may notify users by email of changes to this policy.
Contact
If you have any questions for us, please do not hesitate to contact us using the following: nougatnour@gmail.com