COSSTRA SRL, with its registered office at 28/30 Sentier Du Berger, 1325 Chaumont-Gistoux - Belgium, and company number 0862.851.325. (hereinafter referred to as “COSSTRA”, “we” or “us”) collects and processes personal data via its website, http://www.cosstradesign.com or http://www.cosstrafragrances.com.
The General Data Protection Regulation (“GDPR”) of 27 April 2016 defines “personal data” as any information relating to an identified or directly or indirectly identifiable natural person (such as an individual's first or last name, date of birth, etc.) (the “Personal Data”). COSSTRA is considered a data controller for purposes of the GDPR.
1. PERSONAL DATA COLLECTED BY US
1.1. Information you provide to us
You may provide us with information about yourself when you fill in forms on our website http://www.cosstradesign.com or http://www.cosstrafragrances or when you communicate with us via phone, email or otherwise. You may also provide us with information about yourself when you create a user account on our website, subscribe to our newsletters or place an order via the website. This information may include your name, address, phone number, email address and credit or debit card information (should you place an order via the website). If you create an account to use our website, you can access and modify your Personal Data under the “My Account” heading.
1.2. Information we collect about you
During each visit to our website, the following data may be collected automatically by us :
> Technical data, including the IP address of your computer, your connection data, browser and browser version, time zone, the types of extensions used by your browser and the version thereof, the operating system and platform.
> Information about your visit, including all uniform resource locators (URLs) visited before, during or after your visit to our website (with the date and time), products that you looked at or looked up, the loading time of pages, download errors, the time spent on certain pages and your actions on these pages (such as scrolling, clicking and mouse movements) as well as how you left the page, and all phone numbers used to contact our customer service department.
3. LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA
We process your Personal Data because it is necessary for the execution of the contract, and more specifically to create and maintain your account on our website and fill your order(s).
We process your Personal Data only insofar as necessary to pursue our legitimate interest (direct marketing) or if you have consented to receive our newsletters. Each newsletter sent to you, shall provide the possibility to unsubscribe from our newsletters. If you no longer wish to receive our newsletters, you can also unsubscribe from the service and withdraw your consent by sending an email to email@example.com.
4. PURPOSES FOR WHICH PERSONAL DATA ARE PROCESSED
We process your Personal Data for the following purposes:
> Management of our website: The information you provide to us enables us to follow up on your order and ensure that it is delivered on time and keep your account up to date.
> Customer service : We ask you to provide us with your contact details, in particular your email address and phone number, in order to respond to questions you might have regarding the use of our website and to keep you informed of the status of your order.
> Direct marketing : We wish to keep you informed of our latest collections and to invite you to our events.
> Performance of a contract with the data subject : We collect and process Personal Data in order to enter into and execute contracts concluded with you and to provide our services and products to you and adapt them to your requirements and wishes.
5. CATEGORIES OF RECIPIENTS OF PERSONAL DATA
We work closely with third parties, such as cloud providers, IT providers, payment service providers, etc.
The Personal Data we may transfer to these recipients include credit or debit card information, contact details, the names and contact details of other persons when an order is to be delivered to a different address, and your purchase history.
6. PROTECTION OF PERSONAL DATA
We take technical and organizational measures to protect your Personal Data against any form of destruction, loss, alteration or damage, including accidental or unlawful. More information about our security policy can be requested at firstname.lastname@example.org.
7. TRANSFER OF PERSONAL DATA
Your Personal Data may be transferred to and stored in other countries. Since the level of personal data protection may differ from one country to another, it is possible that some countries offer a lower level of protection than your country of residence. In that case, we will take reasonable measures to ensure that your Personal Data are protected and processed in accordance with the applicable legislation and this privacy statement.
COSSTRA has the intention to transfer your Personal Data to the United States of America on the basis of the adequacy decision of the Commission.
8. DATA SUBJECT RIGHTS
Pursuant to the GDPR, you have the right to access your Personal Data collected by us and to request the rectification of any inaccuracies in these Personal Data. You also have the right to object to the processing of your Personal Data. Should you wish to exercise these rights, please go to “My Account”, contact us by email at email@example.com or write to us at the following address : COSSTRA SRL - 28 Sentier du Berger, 1325 Chaumont-Gistoux – Belgium.
Right to erasure : any request to erase or remove your Personal Data, including information which has been posted online, should be sent to firstname.lastname@example.org.
Right to data portability : should you wish to access the Personal Data you have provided to us or to request that these Personal Data be transferred to a third party, please contact email@example.com.
You have the right to withdraw your consent at any time. The withdrawal of consent does not affect the legitimacy of the processing activities based on consent given prior thereto.
You have the right to file a complaint with the data protection authority (www.dataprotectionauthority.be).
9. PERSONAL DATA RETENTION
Retention policy : we store your Personal Data no longer than necessary for the purposes for which they were collected or the statutorily applicable period, i.e. approximately seven years. URLs are deleted automatically after 7 days.
WHAT IS A COOKIE ?
A cookie is a small text file containing information which may be stored on your computer when visiting a website. Cookies are generally used to facilitate your use of a website, to keep track of your movements within the website, to remember your registered login, etc.
There are different types of cookies that can be distinguished on the basis of their origin, function and lifetime.
> First party cookies are cookies that are stored by the website you are visiting, while third party cookies are stored by a website other than the one you are visiting.
> Necessary cookies enable you to move around on a website and to use its features.
> Performance cookies collect data on the performance of a website such as the number of visitors, the time spent on the website and error messages.
> Functionality cookies increase the usability of a website by remembering the choices you made (for example : language, region, login).
> Targeting/advertising cookies enable a website to send you personalized advertising.
> Session cookies are temporary cookies that are erased once you close your web browser while persistent or permanent cookies remain on your device until you manually delete them or until your browser deletes them based on the duration period specified in the persistent cookie file.
More information on all aspects of cookies can be found on http://www.allaboutcookies.org./.
> Improve the use and the functionality of our website.
> Improve the content of our website and to keep the website up-to-date.
> Quantify the visits on the website in order to know how many times a particular page has been consulted.
> Analyze the visitors' behavior and compile anonymous and aggregate statistics.
WHAT TYPES OF COOKIES DO WE USE ?
1.ANALYTICAL COOKIES : Google Analytics
These cookies are used to recognize and count the number of visitors to see how visitors move around the site when they are using. In addition they are used to record data related to the purchases of the user.
2.FUNCTIONALITY COOKIES : WooCommerce
These cookies are used to increase the usability of our website by remembering the choices you made (eg language, currency) and to remember the content of your shopping basket.
In addition, they are used to collect information about the user, such as the surfing behaviour or user preferences
(In addition, we may also use web beacons (or clear GIFs) in combination with cookies. A web beacon is typically a transparent graphic image (usually 1 pixel x 1 pixel) that is placed on a site or in an email and it helps us to understand the behavior of visitors of our website. More information on web beacons can be found on http://www.allaboutcookies.org/faqs/beacons.html.)
HOW CAN YOU CONTROL COOKIES ?
If you do not wish to accept cookies you can change your web browser's settings to automatically deny the storage of cookies or to inform you when a website wants to store cookies on your computer. Previously stored cookies can also be deleted through the web browser. Please refer to the 'help' button on your web browser to find out how this can be done.
Please note that cookies are required for certain areas and functions on this website. Deleting or declining cookies may impact your online-experience on our website.
If different devices are used to access our website, you are required to adapt the web browser's settings of each device in accordance with your cookie preference.
More information about managing cookies can be found on http://www.allaboutcookies.org/manage-cookies/. In addition, if you want to opt-out from cookies you can visit following website and select which company's cookies you would like to opt-out from : http://optout.aboutads.info/?c=2#!/#completed and http://www.youronlinechoices.com/.
QUESTIONS AND COMPLAINTS
You also have the right to lodge a complaint to the Belgian Data Protection Authority (https://www.dataprotectionauthority.be).