Privacy policy

Order browsing on our site:

When you make a purchase or create a customer account on our site, as part of our purchase and sale process, we collect the personal information you provide to us and which is necessary to prepare and deliver your package to you, such as your name, your address and your email address, your postal address and your telephone number.

This order data is transmitted to our logistics service providers who prepare and transport the package to your home. They are absolutely not allowed to use your data for anything other than processing your order and must delete this data from their computer system after processing. If you choose to have it delivered outside Europe, your data such as your postal address is necessarily transmitted to the logistics services of the carrier who will deliver it to you in that country.

When you browse our site, we automatically receive the Internet Protocol address (IP address) of your computer, which allows us to obtain more details about the browser and the operating system you use. In addition, data may be stored in your browser or retrieved from it, generally in the form of cookies. They collect information about you, your preferences or your device and browser. They are generally set in response to actions you have taken that constitute a request for services (e.g.: order).

Emails:

If you have decided to follow Cair by email (via the form on our site or by checking the corresponding box in the purchase process), we use your email address to send you Cair news (new products, tips and tricks on hair beauty, etc.) or to communicate to you information relating to your purchase history or browsing on our site. Please note that if you no longer wish to receive these emails, you can unsubscribe at any time by clicking on the “Unsubscribe” link located at the bottom of the emails or by contacting us by email at contact@cair-paris.com. The effect is immediate.

The emailing tool we use is French. Moreover, and as a “processor”, this emailing tool is required to comply with the legal requirements of the General Data Protection Regulation (GDPR).

Audience measurement:

We use audience analysis tools (such as Google Analytics) allowing us to better understand activity on our site, how you react, and to improve our site’s performance so that it matches your usage as much as possible. For this purpose, we provide these tools with data on your browsing history on our site and information on the products ordered. All data processed for statistical purposes outside Europe is completely anonymised.

Product reviews:

Your email address, your surname, first name and your order reference are transmitted to our partner who will send you by email a review form. Your email address is not published on our site when your review is posted. This data is not transmitted to any other company and this data is used only for the purpose of assessing your experience with our products.

Advertising:

Advertising cookies are placed when you visit our site to then display targeted advertising messages when you browse other sites. The data collected is anonymous and is only used within the framework of advertising functionalities.

How long is my personal data kept?

The length of time we keep personal data depends on our business needs and our legal obligations.

In the context of the purchase of products, we keep your data as long as it is necessary for the purposes for which it was collected (e.g.: management of the commercial relationship between you and us), and for any other related purposes such as monitoring our stocks but while complying with the applicable legislation on data security and retention.

If you agree to receive emails from Cair to follow our journey, your data is kept until your request for unsubscription or deletion of your personal data, or after a certain period of inactivity (for a maximum of 3 years from the last contact (e.g.: click in one of our emails).

In the event of the creation of a customer account, the data will be kept until you send a request to delete them or after a period of inactivity on your part (for a maximum of 3 years from the end of the commercial relationship (e.g.: last order) or the last contact (e.g.: click in one of our emails).

When you contact us to obtain information about our products, or about our brand, or when you apply for a job offer, the data is kept only for 3 years from the date of collection or the last contact at your initiative.

How do you obtain my consent?

When you provide us with your personal information to complete a transaction, verify your credit card, place an order, schedule a delivery or return a purchase, we assume that you consent to the collection of your information and to its use for that purpose only.

If we ask you to provide your personal information for another reason, for marketing purposes for example, we will ask you directly for your explicit consent, or we will give you the opportunity to refuse.

How can I withdraw my consent?

If after giving us your consent, you change your mind and no longer consent to us contacting you, collecting your information or disclosing it, you may notify us by contacting us by email at contact@cair-paris.com or by mail at: LA BONNE BROSSE, 60 rue Pierre Charron, 75008 Paris.

When you browse our site or place an order, data may be stored in your browser or retrieved from it, generally in the form of cookies. The cookie is a small text file recorded by the browser of your computer, tablet or smartphone which allows user data to be retained in order to facilitate browsing and enable certain other functionalities.

We use first-party cookies, placed by Cair for the proper functioning of our site, most of these cookies cannot be disabled in our systems. They allow you to remember your information entered in the forms on our site so that you do not have to enter it again when using it, but also to manage and secure access to your account, or to your shopping cart.

Here is a non-exhaustive list of cookies relating to the operation of our site:

- session_id: unique session identifier, allows Shopify to store information relating to your session (referrer, landing page, etc.).

- shopify_visit: no data retained, persists for 30 minutes from the last visit. Used by our website provider’s internal statistics tracking system to record the number of visits.

- shopify_uniq: no data retained, expires at midnight (visitor’s time zone) the next day. Calculates the number of visits to a store by a unique customer.

- cart: unique identifier, persists for 2 weeks, stores information relating to your shopping cart.

- secure_session_id: unique session identifier.

- storefront_digest: unique identifier, undefined if the store has a password, used to determine if the current visitor has access.

- More information here: https://fr.shopify.com/legal/cookies

We also use third-party cookies placed by our partners. These third-party cookies are directly managed by the companies that issue them and which must also comply with data protection regulations.

- Audience measurement cookies: to assess site traffic (number of visits, page views, cart abandonment, etc.) and improve our performance.

- Advertising cookies: to provide you with advertising content related to the interest you have shown in the brand, products and the Respire adventure.

To oppose cookies:

You can configure your browser to be informed of their existence or to block these cookies. If you choose to block these cookies, certain functionalities of our site may be affected (such as keeping items in your cart). If you wish to delete cookies from your web browser, you can follow the following instructions:

Chrome:

Firefox:

Internet Explorer:

http://windows.microsoft.com/fr-FR/windows-vista/Block-or-allow-cookies

Safari:

https://support.apple.com/fr-fr/guide/safari/sfri11471/mac

Most of these cookies expire when you end your visit to our sites. Others have a longer lifespan, which does not exceed 12 months, in accordance with current regulations. Some trackers are, however, exempt from the collection of this consent (this is the case for trackers lasting more than 12 months).

You can also block third-party cookies:

- More information here: https://www.cnil.fr/fr/cookies-les-outils-pour-les-maitriser

- If you no longer wish to see our ads on social networks, we recommend going to the “settings” section then “advertising preferences”.

- There are also advertising cookie opt-out platforms such as http://optout.networkadvertising.org/ or http://www.youronlinechoices.com/ or via the AdChoices blue icon.

- More information on Google cookies: https://policies.google.com/privacy

We will disclose your personal information if the law requires us to do so or if you violate our general terms and conditions of sale and use, or to protect our rights, property, or safety, as well as those of third parties.

We have taken the necessary precautions to comply with the General Data Protection Regulation (GDPR). Therefore, we will not share your personal information with third parties without your prior consent (except as provided above). As explained above, your information may be communicated to trusted third parties who assist us in the administration and proper functioning of our site, insofar as these partners agree to keep this information confidential. And only data that does not allow you to be directly identified (e.g., cookies) may be transmitted to our partners for marketing or advertising purposes. You may, of course, choose to object to this.

Our store is hosted on Shopify Inc. They provide us with the online e-commerce platform that allows us to sell our services and products to you.

Your data is stored in Shopify’s data storage system and databases, and in the general Shopify application. Your data is kept on a secure server protected by a firewall.

Payment:

If you make your purchase through a direct payment gateway, in that case Shopify will store your credit card information. This information is encrypted in accordance with the data security standard established by the payment card industry (PCI-DSS standard). The information related to your purchase transaction is retained for as long as necessary to complete your order. Once your order is completed, the information related to the purchase transaction is deleted.

All direct payment gateways comply with the PCI-DSS standard, managed by the PCI Security Standards Council, which is a joint effort of companies such as Visa, MasterCard, American Express, and Discover.

The PCI-DSS requirements help ensure the secure handling of credit card data by our store and its service providers.

For more information, please refer to Shopify’s Terms of Service here or Privacy Policy here.

In general, the third-party providers we use will only collect, use, and disclose your information to the extent necessary to perform the services they provide to us.

However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies regarding the information we are required to provide to them for your purchase transactions.

With respect to these providers, we recommend that you read their privacy policies carefully so that you can understand how they will handle your personal information.

Please remember that some providers may be located in or have facilities located in a jurisdiction different from yours or ours. Therefore, if you decide to proceed with a transaction that requires the services of a third-party provider, your information may then be subject to the laws of the jurisdiction in which that provider is located, or those of the jurisdiction in which its facilities are located.

For example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, your information used to complete the transaction may be disclosed under the laws of the United States, including the Patriot Act.

Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s General Terms and Conditions of Sale and Use.

Links:

You may be directed away from our website by clicking on certain links on our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy policies carefully.

To protect your personal data, we take reasonable precautions and follow industry best practices to ensure that it is not lost, misused, accessed, disclosed, altered, or destroyed inappropriately.

If you provide us with your credit card information, it will be encrypted through the use of SSL (Secure Socket Layer) technology and stored with AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.

Finally, we recommend that you adopt the following security measures to enhance your online safety:

- When creating an account, use at least 8 characters for your password, mixing letters (uppercase and lowercase) and numbers. Do not use your name or other easily obtainable personal information.

- Keep your passwords confidential and avoid using the same password for multiple accounts.

By using this site, you represent that you are at least the age of majority in your state or province of residence, and that you have given us your consent to allow any minor dependent of yours to use this website.

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so you are aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it.

If our store is acquired by or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.

In accordance with the General Data Protection Regulation (GDPR), if you wish to: access, correct, modify, limit, challenge the accuracy of, or delete any personal information we have about you; file a complaint; object to processing; unsubscribe from our emails; exercise your right to transparency and data portability regarding your personal data; or if you simply want more information on these topics, contact our Privacy Standards Officer by email at contact@cair-paris.com or by mail at LA BONNE BROSSE, 60 rue Pierre Charron, 75008 Paris. To exercise these rights, you simply need to provide us with your first name, last name, address, email, and proof of identity.