Menu
Basket
0
Cart

Privacy Policy

At Trone, the protection of your personal data is a priority. 

This privacy policy (hereinafter the " Privacy Policy ") aims to inform you about the methods of processing your personal data in the context of using our website https://www.troneparis.com/ (the " Site ") in accordance with Regulation (EU) 2016/679 of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (the " GDPR ") and Law No. 78-17 of January 6, 1978 relating to data processing, files and freedoms in its latest version in force (together the " Applicable Regulation »).

This Privacy Policy does not describe the methods of collecting and processing your data via cookies and other trackers (" Cookies ") on the Site. For more information, please consult our Cookie Policy.

1. Who is the data controller? 

During your browsing on our Site or more generally in the context of managing our contractual relationships with you, the data controller is the company Trone, a simplified joint-stock company, registered with the Paris RCS under number 833 412 661 and whose registered office is located at 6 rue des Bateliers, 92110 Clichy (hereinafter " We »).

 

2. What personal data do we collect?

Personal data is data that allows identifying an individual directly or by cross-referencing with other data.

During your navigation on the Site, we collect data that fall into the following categories :

  • Identification data (names, first names, email address, phone number) ;

  • Data related to your professional life (your business sector and the name of your company) ;

  • Browsing data (IP address, pages viewed, date and time of connection, browser used, operating system, user ID, MAID) ;

  • Any information you wish to send us as part of your contact request.

As part of managing our contractual relationships, we also collect data that fall into the following categories: 

  •  Data related to your orders (products, delivery address) ;

  • Economic and financial data (data related to your bank cards via our payment service providers).

Mandatory data are indicated when you provide us with your data. They are signaled by all means.

 

3. For what purposes, on what legal bases, and for how long do we keep your personal data?

Purposes of processing

Legal bases
Retention periods

Execute your order, carry out operations related to customer management concerning quotes, contracts, orders, deliveries, invoices, and customer relationship follow-up

Execution of the contract that you or your company have subscribed to with Us

 Personal data is kept for the entire duration of the contractual relationship.

Furthermore, data related to your transactions is archived for evidential purposes for a period of 5 years.

Create a client and prospect file 

Our legitimate interest in developing and promoting our activity

For clients: data is kept for the entire duration of the commercial relationship and deleted after a delivery time of 3 years from the end of the commercial relationship. 

For prospects: data is kept for a delivery time of 3 years from your last contact.

In any case, your data may be archived for evidential purposes for a period of 5 years. 
Manage your feedback on our products, Our legitimate interest in collecting your feedback on our products. 2 years from the publication of the notice

Send newsletters, solicitations, and promotional messages

 For clients: our legitimate interest in informing you of our latest news.
For prospects: your consent if you are a consumer or our legitimate interest in informing you of our latest news if you are a professional

Data is kept for 3 years from your last contact with Us or until you withdraw your consent.

Develop statistics (navigation, Site audience) and improve Site features through the placement of audience measurement cookies

 Your consent 

Data is kept for 25 months.

Respond to your contact requests

Our legitimate interest in responding to your requests

Data is kept for the time necessary to process your information request and deleted once the contact request has been processed.

Comply with the legal obligations applicable to our activity

Legal and regulatory obligations 

 Invoices are archived for a period of 10 years.

Data related to your transactions is kept for 5 years.

For buyers who are consumers, data related to your contract and elements related to the signing of the contract will be kept for 10 years from the delivery time of the good. 

Processing applications and managing interviews (preselection of candidates, contacting to assess the candidate's ability to fill the position, finalizing the recruitment process) 

Execution of pre-contractual measures 

Your data is kept in an active database throughout the recruitment process until the hiring decision.


In case of refusal of your application, your data may be kept for 3 months after the end of recruitment in order to be able to provide you with explanations on the reasons that led to the rejection of your application. 


Your data may be kept in intermediate archiving for evidential purposes for 5 years from the date of the hiring decision. 

Creation of a Cvthèque

Your consent 

Data is kept for two years from the last contact with the person concerned. 

Manage requests to exercise rights 

Our legitimate interest in complying with the legal obligations to which we are subject 

If we ask you for proof of identity: we keep it only for the time necessary to verify the identity. Once the verification is done, the proof is deleted.

If you exercise your right to object to prospecting: we keep this information for 3 years.

 

4. Who are the recipients of your personal data? 

Will have access to your personal data:

  1. Our company staff;

  2. Our subcontractors: hosting provider, payment service providers, newsletter sending provider, CRM tool, billing tool, resource planning software (ERP); 

  3. Our carriers for the delivery of products;

  4. If applicable: public and private organizations, exclusively to comply with our legal obligations.

 

5. Is your data likely to be transferred outside the European Union?

Your data is kept and stored for the entire duration of the processing on the servers of the company Gandi.net in France, as well as, for certain data, on the servers of our provider Shopify International Limited, an Irish law company based in Dublin, with whom we have contracted as part of the operation of our e-commerce site. The list of Shopify's subcontractors is accessible on its website at the address https://help.shopify.com/en/manual/privacy-and-security/privacy/subprocessors.

As part of the tools we use (see article on recipients concerning our subcontractors), your data may be subject to transfers outside the European Union. The transfer of your data in this context is secured by the following tools:


  • or the data is transferred to a country subject to an adequacy decision by the European Commission, in accordance with Article 45 of the GDPR: in this case, that country ensures a level of protection deemed sufficient and adequate to the provisions of the GDPR;


  • or the data is transferred to a country whose level of data protection has not been recognized as adequate under the GDPR: in this case these transfers are based on appropriate safeguards indicated in Article 46 of the GDPR, adapted to each provider, notably but not limited to the conclusion of standard contractual clauses approved by the European Commission, the application of binding corporate rules, or under an approved certification mechanism;


  • either the data is transferred on the basis of one of the appropriate safeguards described in Chapter V of the GDPR.


You can obtain a copy of the tools allowing the transfers of your data outside the European Union by contacting us at the details indicated in the article "What are your rights over your data?" below.


6. What are your rights over your data?

You have the following rights regarding your personal data:


  • Right to information : this is precisely why we have drafted this policy. This right is provided for by Articles 13 and 14 of the GDPR.

  • Right of access : you have the right to access all your personal data at any time under Article 15 of the GDPR.


  • Right of rectification : you have the right to rectify at any time your inaccurate, incomplete, or outdated personal data in accordance with Article 16 of the GDPR.


  • Right to limitation : you have the right to obtain the limitation of the processing of your personal data in certain cases defined in Article 18 of the GDPR.


  • Right to erasure : you have the right to request that your personal data be deleted, and to prohibit any future collection for the reasons set out in Article 17 of the GDPR.


  • Right to file a complaint with a competent supervisory authority (in France, the CNIL), if you consider that the processing of your personal data constitutes a violation of applicable texts, in accordance with Article 77 of the GDPR). 


  • Right to set directives regarding the retention, deletion, and communication of your personal data after your death


  • Right to withdraw your consent at any time : for purposes based on consent, Article 7 of the GDPR states that you can withdraw your consent at any time. This withdrawal will not affect the legality of the processing carried out before the withdrawal.


  • Right to data portability : under certain conditions specified in Article 20 of the GDPR, you have the right to receive the personal data you have provided to us in a machine-readable standard format and to request their transfer to the recipient of your choice.


  • Right to object : under Article 21 of the GDPR, you have the right to object to the processing of your personal data. However, note that we may continue processing despite this objection, for legitimate reasons or the defense of rights in court.


You can exercise these rights by writing to us at the contact details below. We may ask you on this occasion to provide us with additional information or documents to justify your identity. 


We may ask you on this occasion to provide us with additional information in case of reasonable doubt or any document likely to justify your identity if the doubt persists. 


For any question or request that remains unresolved, you have the right to file a complaint with the competent supervisory authority, in France, the Commission Nationale de l'Informatique et des Libertés (« CNIL »), located at 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07.


7. Contact point for personal data

Contact email: contact@trone-paris.com

Contact address: Trone, 6 rue des Bateliers, 92110 Clichy 

 

8. Modifications

We may modify this Privacy Policy at any time, in particular to comply with any regulatory, case law, editorial, or technical developments. These modifications will apply from the effective date of the modified version. You are therefore invited to regularly consult the latest version of this policy. However, we will inform you of any significant changes to this privacy policy. 

Effective date: 01/07/2025

 

×