top of page

Privacy Policy

PRIVACY POLICY

Last updated: 11/05/2025

This Privacy Policy explains how Sophie Dumont collects, uses, stores, and protects personal data when you browse or make a purchase on the website www.sophiedumont.com (“the Site”).
We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR).

1. Data Controller

The data controller responsible for your personal information is:
Sophie Dumont
Email: contact@sophiedumont.com

2. Data We Collect

We may collect the following categories of data when you browse the Site, contact us, create an account, or place an order:

Identification data: first name, last name
Contact details: email address, postal address, telephone number
Order & delivery information: purchased items, delivery address, tracking
Payment information: we do not store your full payment details. Payments are processed securely by external providers (Stripe and PayPal).
Browsing data: IP address, device type, pages viewed, cookies
Marketing data: newsletter subscription, email engagement, preferences

Data is collected when you use the Site, complete a purchase, contact us, or subscribe to our newsletter.

3. How We Use Your Data

Your personal data may be used to:

  • Process and fulfil orders, payments, deliveries, and returns

  • Communicate with you regarding your order or customer service requests

  • Send newsletters (only if you have consented)

  • Improve the Site and user experience

  • Prevent fraud and ensure security

  • Comply with legal and accounting obligations

4. Legal Basis for Processing

We process your data based on:

  • Performance of a contract: to process your purchase and deliver your order

  • Consent: newsletter and non-essential cookies

  • Legitimate interest: improving the Site and preventing fraud

  • Legal obligations: accounting, tax and administrative requirements

5. Secure Payments

Payments on the Site may be made via:

  • Credit or debit card (processed securely via Stripe)

  • PayPal

Stripe and PayPal process your payment data according to strict security standards.
We do not store or have access to your full banking or card details.

6. Delivery

Information required for shipping your order may be shared with our main carrier, DHL, or any other delivery service if needed.
This information is only used to prepare, ship, and track your order.

7. Protection of Minors

This website is not intended for minors. We do not knowingly collect personal data from individuals under 15 years old.
If a parent or guardian believes that a minor has provided personal information, they may request its deletion at: contact@sophiedumont.com.

8. Cookies and Similar Technologies

The Site uses cookies to improve navigation, measure audience statistics, and personalise content.
A cookie banner allows you to accept or refuse non-essential cookies when first visiting the Site.

Types of cookies used:

  • Essential cookies: required for website functionality

  • Analytics cookies: traffic measurement and statistics

  • Marketing cookies: personalised advertising and retargeting

You may change your cookie preferences at any time through your browser settings or via the cookie banner.

9. Social Media & Tracking Pixels

The Site may use advertising and analytics tools such as:

  • Meta Pixel (Facebook & Instagram)

  • Google Analytics / Google Ads

  • Pinterest Tag (if activated)

These tools help analyse traffic, measure advertising performance, and personalise marketing.
You may refuse these cookies via the consent banner.

10. Data Retention

  • Customer data: retained for 5 years after last contact or purchase

  • Billing and accounting data: retained for 10 years (legal requirement)

  • Cookies: retained up to 13 months

  • Newsletter data: retained until you unsubscribe

11. Sharing of Personal Data

We never sell, rent, or trade your personal data.
It may be shared only with trusted third-party service providers when required for the operation of the Site (hosting, delivery, analytics, payment services).
All providers are bound by confidentiality and data-protection obligations.

12. Transfers Outside the European Union

Some providers such as Wix, Stripe, Google, or Meta may store data outside the European Union.
In such cases, data transfers are carried out in compliance with GDPR (Standard Contractual Clauses or equivalent safeguards).

13. Your Rights

In accordance with GDPR, you have the following rights:

  • Right of access

  • Right to rectification

  • Right to erasure

  • Right to object

  • Right to restriction of processing

  • Right to data portability

  • Right to withdraw consent at any time

To exercise your rights, you may contact:
contact@sophiedumont.com

You also have the right to lodge a complaint with your local data-protection authority.

14. Data Security

We implement technical and organisational security measures to protect your data from loss, unauthorised access, alteration, or disclosure.

15. Changes to this Policy

This Privacy Policy may be updated at any time.
The version published on the Site is the version currently in effect.

16. Language of the Policy

This Privacy Policy may be available in several languages.
In the event of discrepancies, the French version shall prevail.

bottom of page