Privacy

Preamble

Whether you're an Internet user just passing through, or a long-standing customer, we've earned your trust. That's why we're committed to keeping your personal data safe and secure, using it only for the purposes for which it was collected, and never selling it to a third party.

To function, an online sales website needs a certain amount of information about its customers: without it, it would be impossible for us to deliver your parcels quickly, answer your questions and guarantee you a comfortable user experience. That said, we are well aware that collecting this data makes us responsible for it.

Baltic Watches takes this responsibility very seriously: you'll find below an exhaustive review of the personal data we may collect, as well as a precise explanation of how it may be used. You will then discover the detailed presentation of the rights and tools available to you to control, modify, or request the deletion of your personal information.

1. How do we use your personal information ?

Your identity and postal address: This information is required so that we have your purchases sent to you.

Your e-mail address and telephone numbers: These are essential for us to be able to follow up your order and navigate through the history of our exchanges in the event of a prolonged discussion. With your prior consent, we may also send you newsletters about our offers and promotions. If you are no longer interested, you are free to stop these communications at any time from your customer account.

Your title (Mr./Mrs.): This simply enables us to adapt our communications.

The history of our exchanges: This is used to track conversations with our customers, for example to check the progress of a complaint and/or for commercial exchanges (personalized offers).

Your purchase history: As part of our product warranty and after-sales support, we need to keep a record of the information associated with each transaction. This information enables us, for example, to issue invoices or confirm the validity of the warranty.

Your browsing information: This data is used for statistical purposes to optimize and personalize the user experience on our sites, and to better understand what our customers expect from us. This data is also used as part of our fraud detection and prevention mechanisms.

Payment information: We record information relating to the transaction (type of payment method, date and time of validation, etc.), but we never record your credit card identifier, PayPal login or any other information: When you make a purchase, you always enter this information directly on the secure pages of our banking partners (Mollie, PayPal, Alma, Klarna, etc.).

2. Identity of the data controller

Responsibility for processing your personal data lies with MDB SARL, a limited liability company with capital of €75,000, registered in the Paris Trade Register under number 830 050 712, with its registered office at 29 rue du Château Landon, 75010 Paris.

3. Security measures to ensure the protection of your personal data

We use all the technical means at our disposal to maintain the integrity, security and confidentiality of all your personal data. Our entire IT architecture and the information it contains are secured through the use of recognized specialist service providers with industry-standard security certifications covering, among other things, the management and traceability of authorizations, databases, confidentiality aspects, etc. as follows:

ISO 27001

This certification specifies the requirements for implementing, maintaining and continuously improving our information security management system. It also includes requirements for the assessment and treatment of information security risks. Annual audit report available on request. More details : ISO 27001 certification

SOC 2

This certification enables a specialized audit firm to issue an opinion on the controls in place, relating to security, availability, processing integrity, confidentiality and/or data protection. Annual audit report available on request. More details : SOC 2 certification

GDPR

The General Data Protection Regulation (GDPR) is the European Union's new legal framework governing the collection and processing of users' personal data. RGPD compliance certificate available on request. More info: GDPR standards

4. What happens if you refuse to communicate your personal data ?

In principle, you are under no obligation to give us any information about yourself. However, it is impossible for us to allow you to place an order without collecting your name or address.

In certain countries or for certain types of order, local legislation may oblige us to request specific information such as tax region, tax code, profession, national identity card or passport number and/or social security number when you make a purchase. If such information is required by local regulations, you will not be able to order from Baltic Watches without providing it to us.

5. Who do we share information with and why ?

We take the protection of your personal data very seriously, and never sell or pass it on to third parties. The only information that may be transmitted is that which enables us to fulfill orders, ensure the smooth running of our services and provide you with appropriate commercial offers. For example, we are obliged to give your postal address to the company responsible for delivering your order to your home address. Apart from the cases listed below, we never pass on your personal data to third parties:

Service providers in charge of preparing or delivering packages.

Payment organizations that secure the transaction.

Service providers involved in the technical aspects of running the Baltic Watches boutique, in particular for website access and communication: email routing, SMS routing, web hosting.

Marketing service providers: They help us personalize your experience on the Baltic Watches boutique as much as possible.

Please also note that as required by law, MDB SARL may declare your tax region, tax code, occupation, national identity card or passport number and/or social security number in connection with any of your orders to a legal or government entity (e.g. police investigation) or, if necessary, in connection with the payment of certain taxes when processing payments (payment of VAT).

6. Sharing your information abroad

On very rare occasions, we may work with service providers based abroad, which means that your data may be transferred via infrastructures located outside France. When this happens, we make sure beforehand that the service provider concerned offers the necessary guarantees for the security of your data, and that the transfer is carried out in accordance with the applicable regulations.

7. Withholding your informations

When you create a customer account with Baltic Watches, we begin a relationship that requires us to retain certain personal information with your consent. All your personal data is kept for a period of 5 years after your last activity (logging in to your account, placing an order or implementing a warranty, for example). After this period, they are automatically deleted.

You can also ask us to delete your personal data at any time.

If you have any questions or requests for information, or if you wish to exercise your right to modify or delete certain information concerning you, please contact the Data Protection Officer, Mr Etienne MALEC, at the following e-mail address: contact@baltic-watches.com.

8. Cookies

When you visit our website, we store certain information about your browsing on your computer using a "cookie" file. We use these cookies to collect statistics on the number of visitors to our site and to learn about our visitors' preferences during their browsing. These cookies help us to provide you with personalized information and relevant services.

On the Baltic Watches boutique, we use two types of cookies:

Functional cookies are essential to the proper functioning of the site. For example, they enable us to keep track of your shopping cart while you are browsing the site. Without them, it is no longer possible to place an order. The information collected in this way is strictly for internal use, and is never passed on to third parties.

Partner cookies are set by trusted third parties with whom we work to optimize our services and promote our activities, particularly through advertising. These third-party cookies are likely to record data relating to your browsing on BALTIC and other sites, as well as the advertisements you have clicked on, often linked to specific and/or personalized offers.

Cookie deactivation via the main browsers:

Although deleting functional cookies is detrimental to the user experience on our sites, you are free to disable this technology via your browser settings.

Internet Explorer :

In the "Tools" menu, select "Internet Options".

Then click on the "Privacy" tab

Click on the "Advanced" button to bring up the "Advanced Privacy Settings" window

Then tick the "Ignore automatic cookie handling" box, select "Refuse" and save your preferences by clicking "OK".

Mozilla Firefox :

In the menu at the top of the page, click on "Tools", then "Options".

Select the "Privacy" tab

In the "Retention rules" menu, click on "Use personalized settings for history".

Uncheck the "Accept third-party cookies" box and save your preferences by clicking "OK".

Google Chrome :

In the menu, click on "Settings", then on "Show advanced settings".

Select the "Privacy" tab, then the "Content settings" menu

Check the "Block cookies and data from third-party sites" box and save your preferences by clicking "OK".

Safari :

In the menu at the top of the page, click on "Safari", then "Preferences".

Click on the "Privacy" tab

Uncheck the "Accept cookies" box and save your preferences.

Further information on the use of cookies can be found on the CNIL website: http://www.cnil.fr/vos-droits/vos-traces/les-cookies/ 

We measure traffic on our sites using a tool called Google Analytics. You can prevent the data generated by the cookie (in particular your IP address) from being collected and processed by Google by downloading and installing the plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=fr

9. Your rights : correction, modification, unsubscription, newsletter, deletion, etc.

You have a number of rights concerning the way in which your personal data is stored and used. First and foremost, you have the right to be informed, which is why we provide you with this page.

Next, you have the right to ask us for access to all the personal data we hold about you. You may also request the correction, modification or deletion of this information, subject to the restrictions set out in the chapter on retention. You can also stop receiving our direct marketing messages (newsletter).

PERSONAL DATA REQUEST

You also have a right of recourse in the event of a dispute, by turning to the regulator in charge of personal data protection. In France, this is the CNIL (Commission Nationale de l'Informatique et des Libertés).

For more information on these rights and how to exercise them, please contact our Data Protection Officer via the link above.

10. Modification of our confidentiality rules

From time to time, we may need to update our privacy policy to reflect changes in the regulatory framework or the introduction of new services. In this context, we may modify or update the information in this article, so as to always transparently reflect the actual use made of your personal data. In the event of a significant change, you will be personally informed and asked to confirm your consent.

11. Contacting the data protection representative

MDB SARL is responsible for the personal data that the baltic-watches .com site collects from you. It is responsible for processing this data in accordance with current data protection laws and regulations.

If you have any questions, require information or wish to exercise your right to modify or delete information concerning you, please contact the Data Protection Officer, Mr Etienne MALEC, at the following e-mail address: contact@baltic-watches.com.