PRIVACY AND DATA PROTECTION POLICY

Last updated: June 12, 2026 

Version: 1.0 

Pointures SAS attaches great importance to the protection of your privacy and your personal data. The purpose of this policy is to inform you in a fully transparent manner about how we collect, use, store, and protect your data when you visit our website and make purchases on our online store, in accordance with the General Data Protection Regulation (GDPR No. 2016/679) and the French Data Protection Act (Loi Informatique et Libertés).

1. Data Controller

The data controller for the personal data collected on the website is the company: 

Pointures SAS, a simplified joint-stock company (société par actions simplifiée) with a share capital of €3,000, registered in the Toulouse Trade and Companies Register under number 831 006 309, whose registered office is located at 8 rue du Canard, 31000 Toulouse, France. 

Contact email address: bonjour@pointures.art

2. Collected Data and Purposes

We only collect data that is strictly necessary for the provision of our services and the management of your shoe orders. The table below details the types of data, the reasons for their collection (purposes), and the legal basis for each processing operation:

3. Data Recipients

Pointures SAS undertakes never to sell, rent, or transfer your personal data to third parties for commercial purposes. Your data is exclusively transmitted to our technical service providers (processors) strictly necessary for the proper functioning of the e-commerce store:

The host and e-commerce platform: OVHCloud and Shopify for the overall technical management of the website. 

Payment service providers: Paypal, Stripe, Apple Pay to secure and validate your payments. 

Logistics providers: Carriers and postal services responsible for delivering your pairs of shoes to your address. 

Marketing tools: Email delivery and advertising routing platforms (Mailchimp).

4. Data Retention Period

We retain your personal information only for the duration necessary to achieve the purposes for which it was collected, in accordance with CNIL recommendations: 

Customer account data and order history: Retained for the entire duration of the business relationship, then archived for a period of 5 years for legal proof and dispute management purposes. 

Billing data: Retained for 10 years to comply with French accounting and tax obligations. 

Marketing prospecting data (Newsletter): Retained for a maximum of 3 years from your last active contact (for example, opening an email or clicking on a link), unless you unsubscribe before then. 

Cookies and tracking devices: Retained for a maximum duration of 13 months on your device.

5. Your Rights (In Accordance with the GDPR)

As a user of our online store, you have comprehensive rights regarding your personal data: 

Right of access: You can request to know what data we hold about you. ● Right to rectification: You can correct or update inaccurate information directly from your customer account area. 

Right to erasure (Right to be forgotten): You can require the deletion of your personal data, unless Pointures SAS is subject to contrary legal obligations. 

Right to object and withdraw consent: You can refuse to receive our marketing communications at any time by clicking the unsubscribe link at the bottom of each email or by rejecting cookies. 

Right to data portability: You can request to receive your data in a structured, commonly used, and machine-readable format. 

To exercise any of these rights, please contact our team at the following email address: bonjour@pointures.art. We undertake to respond to you within a maximum period of one month. If you feel that your rights are not being respected, you can file a complaint with the CNIL (www.cnil.fr).

6. Data Security

Pointures SAS implements all appropriate technical security measures (SSL/HTTPS encryption, server security protocols, restricted access to authorized internal teams) to protect your data against unauthorized destruction, loss, alteration, or disclosure. Your financial transactions are entirely managed by platforms certified to comply with the strictest international banking standards (PCI-DSS standard). 

7. Cookies Policy

During your visits to our website, small text files called "cookies" may be stored on your computer, smartphone, or tablet. They allow us to facilitate your navigation (remembering your shopping cart, keeping you logged into your account) and analyze traffic to improve the store experience. 

A cookie management banner is displayed during your first visit to our website. It allows you to accept all cookies globally, refuse them, or configure your preferences by cookie category (statistics, marketing, personalization).

8. Changes to the Policy

We reserve the right to modify this Privacy Policy at any time to reflect legal, regulatory, or technical changes made to our online store. Any modification will be published on this page with a revised update date.