fbpx

Privacy Policy

Accueil – EnglishPrivacy Policy
Last updated: 31 October 2025

1) Data controller

Joëlette and Co, SASU with share capital of €10,000
ZI Charles Chana, 42230 Roche-la-Molière, France
Data protection contact: [email protected]

2) Data we collect

Identification & contact: first name, last name, email, phone.

Business relationship: enquiries via forms, exchanges, customer support.

Orders & logistics (where applicable): addresses, products, invoicing, delivery.

Marketing: communication preferences, newsletter subscriptions.

3) Purposes & legal bases

Responding to your requests (forms, quotes) → legitimate interests / consent.

Sale & performance of a contract (if an order is placed) → contract.

Invoicing & legal obligationslegal obligation.

Newsletters & marketing contentconsent (unsubscribe at any time).

Audience statistics & site improvementlegitimate interests (subject to your cookie choices).

4) Data retention

Prospects: up to 4 years after the last contact.

Customers & invoicing: as required by law (up to 10 years for accounting records).

Cookies / trackers: according to the type & duration set out in the Cookies Policy.

5) Recipients / processors

Access is limited to Joëlette and Co teams and authorised service providers:

Hosting: ADISTA.

CRM: Synoptic (customer management / follow-up).

Emailing: Mailjet

Transport / delivery (where applicable): Heppner / DPD or others occasionally

Analytics / marketing: GA4, Meta Pixel
These providers act on our instructions and with appropriate security safeguards.

6) International transfers

Where some providers operate outside the EU/EEA, we rely on Standard Contractual Clauses or equivalent safeguards. Detailed information available on request.

7) Your rights

You have the rights of access, rectification, erasure, objection, restriction, and portability, as well as the withdrawal of consent at any time.
To exercise your rights: [email protected].

8) Security

We implement reasonable technical and organisational measures to protect data (access controls, in-transit encryption, backups, logging). No system is 100% secure.

9) Updates

We may amend this policy to reflect our practices or legal developments. The last updated date appears at the top of this page.