Privacy Policy

1. Who is responsible for processing your personal data when using the GLACÉ Website?

The company GLACE, SASU with a capital of 1,000 euros, headquartered at 3 impasse des Tourmalines, 44300 NANTES, registered with the Trade and Companies Register of Nantes under number 984980110 (hereinafter referred to as “We” or “Glacé”), is responsible for processing personal data collected when using the website accessible at: https://gla-ce.com/ (hereinafter referred to as “The Website”).

2. How can you contact us to exercise your rights?

You can exercise your rights of access, modification, rectification, objection, portability, and limitation of processing by contacting us via email (contact@gla-ce.com) or by postal mail at the following address: GLACE, 3 impasse des Tourmalines, 44300 Nantes.

To help us respond promptly, please provide your name, first name, email, address, and, if applicable, your client reference. We may conduct identity checks to ensure the confidentiality and security of your data.

3. Why do we use your personal data?

We use your personal data for the following purposes:

  • Managing information requests from Users
  • Managing User accounts on our Website and sales contracts
  • Managing product orders and deliveries
  • Managing client payments
  • Commercial prospecting actions (advertisements, contests, etc.)
  • Managing requests for rights under the GDPR
  • Monitoring and improving the Website
  • Preventing fraud and ensuring cybersecurity
  • Complying with legal, tax, and accounting obligations

4. Cookies

Our Website uses cookies to collect personal information. Some cookies are essential for the operation of the Website and do not require your consent.

5. What personal data is collected directly on our Website?

We collect the following categories of personal data via our forms:

  • Last name, first name(s)
  • Home address
  • Phone number
  • Email address
  • Password

6. Who are the recipients of the collected data?

The collected personal data is intended for:

  • Our staff
  • Our subcontractors (Shopify, Google Analytics, AXE LOGISTICS, DPD Connect, Colissimo, Chronopost, PayPal)
  • Official authorities, as required by law

7. Is there any transfer of your personal data outside the European Union?

Your data may be transferred to companies located outside the European Union, including the USA and Canada.

8. What are the legal bases and retention periods for your personal data?

Purposes Legal Basis Retention Period
Contract management / loyalty programs Performance of the contract Duration of the contractual relationship
Accounting Legal obligations Legal retention period (e.g., 10 years)
Customer relationship follow-up Legitimate interest or Consent As long as necessary or until consent is withdrawn

9. Your Security

We implement organizational and technical security measures to protect your data, including:

  • Access control for our staff
  • Traceability and logging of access
  • Software protection measures (antivirus, updates, testing)
  • Data encryption (HTTPS)