Back to bonpoint.com

Skip to content
Privacy PolicyLegal noticeDeliveries and returnsTerms and conditions

Privacy Policy

Our Company takes the protection and confidentiality of individuals’ personal data very seriously. We are committed to respecting your privacy and protecting access to your personal data (hereinafter referred to as “PD”) by collecting and using it exclusively in compliance with the applicable legal provisions.

Through this Policy, we aim to inform you transparently about the types of data we collect and how we collect, use, and protect your PD.

Our website www.bonpoint.com (hereinafter “Our Site”) allows you easy access to our Data Protection Policy. We make every effort to keep it up to date in line with regulatory and legislative developments and in accordance with best practices and recommendations issued by the French Data Protection Authority (CNIL). We therefore invite you to visit this page regularly to ensure that you accept all of its terms.

  1. WHO ARE WE?

Our company, Bonpoint SAS (Simplified Joint-Stock Company) with a share capital of €500,000, whose registered office is located at 62 avenue d’Iéna, 75116 Paris, registered with the Paris Trade and Companies Register under number 702 041 526, represented by Mr. Pierre-André Cauche in his capacity as President, hereinafter referred to as “Our Company”, is responsible for the collection, processing, and use of the data you provide to us.

Our Company is not subject to the obligation to appoint a Data Protection Officer within the meaning of the applicable regulations. Nevertheless, internal contacts are appointed within the company to ensure ongoing compliance with these regulations and the implementation and regular updating of best practices in terms of PD protection.

  1. WHAT DATA DO WE COLLECT AND USE?

The data that the Bonpoint brand collects about you is limited to the information you provide as part of the services offered and interactions with the brand:

  • Account creation and billing information
    Your last name, first name, postal address, telephone number, date of birth, and data necessary for payment processing, identifiers and passwords (encrypted and stored solely to recognize your authentication on the site), and persons to whom purchases are to be shipped.
  • Financial information related to transactions
    Credit card number and expiration date, name and address of the cardholder.
  • Information related to browsing habits (Google Analytics)
    Cookie identifier, pages visited, actions performed on the site and frequency, as well as demographic and geographic data.
  • Information related to purchasing habits (Magento)
    Purchase history, habits, and preferences.
  1. HOW IS THIS DATA COLLECTED?

With your prior consent, this data is collected when you provide it to us during the ordering process, when opening a customer account, or when subscribing to our newsletter. It is used to process your orders, including any warranties, our services, as well as the technical administration of Our Site.

  1. FOR WHAT PURPOSES DO WE USE YOUR DATA AND ON WHAT LEGAL BASIS?

We assure you that the personal data you provide is used only for explicit and legitimate purposes. It allows us to:

Process your orders, payments, delivery of goods, and the provision of services you request.
Manage our customer base.
Send you newsletters or invitations to events.
Facilitate and streamline the processing of your order as much as possible.
Improve our service to you.
Seek to prevent any form of fraud or risk of non-payment.
Process and resolve your complaints or questions.

  1. WITH WHOM DO WE SHARE YOUR DATA? (WHO ARE THE RECIPIENTS OF YOUR DATA?)

We may transmit your information to third parties such as service providers of Our Company, our partners, or affiliated companies or subsidiaries of our group (“Group Companies”), in particular for the purpose of processing your order, sending our newsletters, or facilitating and optimizing our services to you.

We assure you that all your personal data is confidential and that access is limited to employees, service providers, and agents of Our Company who need it to perform their duties. All collaborators with access to your PD are bound by a confidentiality obligation and are subject to disciplinary measures and/or other sanctions in the event of non-compliance.

To process payments, we transmit your payment data to the following mandated service provider: CIC. You can find more information on the data protection measures they apply on their respective websites.

Moreover, we do not share, sell, or disclose your data (customer files) to third parties unrelated to Our Company.

  1. IS YOUR PERSONAL DATA TRANSFERRED?

If you access the Site from a country outside the European Union, where legislation relating to the collection, use, and transfer of data differs from that of the European Union, Our Site being governed by French law, the corresponding terms of use and this Policy, you consent to your PD being transferred to the European Union.

We may also transmit your data to Group Companies that may be located outside the European Union, always within the scope of the purposes set out above. In such cases, we ensure prior to transfer that these entities provide an adequate level of protection in accordance with applicable legislation.

Your PD will in no case be transferred outside countries that are part of the European Economic Area or that are already considered by the European Commission, at the date of transfer, as ensuring an adequate level of protection.

You can consult the list of these countries at the following address:
https://ec.europa.eu/info/law/law-topic/data-protection/data-transfers-outside-eu/adequacy-protection-personal-data-non-eu-countries_en

  1. FOR WHAT PURPOSES DO WE USE COOKIES, TARGETING, SOCIAL PLUGINS?

Our Company uses small text files (also called cookies) placed on your hard drive when you visit Our Site. They store information such as language preference, duration of visit, and pages viewed. These cookies allow us to improve navigation on Our Site and analyze traffic and usage in order to produce statistics that help us improve product presentation and communication.

You may customize cookie settings in your browser. If you wish to prevent their storage on your hard drive, you can select “Reject cookies” in your browser settings.

Certain features of Our Site (content sharing on social networks, direct video playback) rely on services offered by third-party sites. These features deposit cookies that allow them to track your browsing, analyze your browsing habits, measure Site audience, understand your interests, and offer targeted promotions. These cookies are only deposited if you give your consent. You may obtain information on the nature of these cookies and accept or refuse them either globally for the entire Site and all services, or service by service.

You may also delete cookies already stored on your computer at any time. However, in this case, when you browse Our Site, certain features may no longer be available and functionality may be impaired. We disclaim any responsibility in this regard.

Our Site uses plugins from social networks such as Facebook, Instagram, and WhatsApp. If you do not wish Facebook or Instagram to associate data collected via Our Site directly with your profile, we recommend logging out of the relevant service before visiting Our Site. You may also completely prevent the loading of plugins using browser add-ons such as the “NoScript” script blocker (http://www.noscript.net/).

  1. OUR NEWSLETTERS AND ADVERTISING ACTIONS

If you have given your consent, you will receive our newsletter as well as regular information about promotional activities and products of Our Company.

We would also like to inform you about the service we use to send newsletters: Scal-e.

Your data allows us to communicate with you as part of marketing campaigns (by email or mail) and to keep you informed of news or new products from Our Company that may interest you.

  1. HOW LONG IS YOUR DATA RETAINED?

Our Company does not retain your PD for longer than necessary for the purposes for which it is collected. Retention periods are therefore limited according to processing purposes and applicable legislation.

Customer data is retained for the duration of the commercial relationship, plus 3 years for marketing and prospecting purposes, without prejudice to applicable legal retention obligations or limitation periods.

Prospect data is retained for 3 years from the last incoming contact with Our Company.

  1. WHAT SECURITY DO WE APPLY TO YOUR DATA?

Our Company protects and secures the collected PD. We ensure its confidentiality and prevent it from being altered, damaged, destroyed, or disclosed to unauthorized third parties.

We have implemented appropriate physical, electronic, and organizational security measures to prevent loss, misuse, unauthorized access or disclosure, alteration, or destruction of your personal data.

These measures include technologies specifically designed to protect your PD during transfer. However, despite the efforts made, Our Company cannot guarantee absolute security due to unavoidable risks inherent in data transmission in general. We therefore advise you to exercise caution to prevent unauthorized access to your PD, particularly by logging out when using a shared computer. You are responsible for maintaining the confidentiality of your password and account information.

Your credit card payment is secured via the 3D Secure system, which enables double identification of the cardholder through a one-time secure code sent by SMS. Payment validation by your bank only occurs after entry of this secure code. Bonpoint never stores your banking details. Transmissions to banks are encrypted and secure.

  1. WHAT ARE YOUR RIGHTS?

You may at any time (during account creation, order placement, or in your personal account settings on Our Site) access your PD, modify it, update it, or request its deletion.

You may also, without justification and free of charge, exercise your rights of access, modification, update, or deletion by submitting a written request to our registered office:
“Société Bonpoint – CRM Department, 62 avenue Iéna, 75116 Paris”.

To process your request, you will need to provide a copy of your identity document. Requests will be processed within a maximum of one month.

You may also withdraw your consent at any time for the collection and use of your data, without justification, for advertising or newsletter purposes by clicking the hyperlink provided at the bottom of our communications.

  1. WHO TO CONTACT IN THE EVENT OF A DISPUTE?

In the event of difficulties, our Customer Service and Marketing teams are available to answer your questions and will make every effort to provide a satisfactory response.

You may also, pursuant to the French Data Protection Act of January 6, 1978 as amended, and the General Data Protection Regulation (EU) No. 2016/679, file a complaint at any time with the CNIL, the supervisory authority in France, by email, phone, or mail at the following address:

Mail: 3 Place de Fontenoy - TSA 80715 - 75334 Paris Cedex 07
Website: https://www.cnil.fr/fr/plaintes
Phone: +33 (0)1 53 73 22 22

You also have the option to contact another equivalent supervisory authority in the EU Member State where you reside. The list is available at the following link:
http://ec.europa.eu/justice/data-protection/article-29/structure/data-protection-authorities/index_en.htm

Gift wrapping