PRIVACY POLICY

I. DEFINITIONS & DATA CONTROLLER

GDPR – Regulation (EU) 2016/679 on the protection of natural persons with regard to personal data.

Data Controller – Go Boom Europe SAS, 356 Avenue de l’Argonne, Porte 16, 33700 Mérignac, France. SIRET: 92808300500019. Go Boom Europe SAS acts as the Data Controller for all personal data collected through the Store.

Data Protection Officer (DPO) – The Administrator has not appointed a formal DPO. All inquiries should be directed to: info@noviumdesign.eu.

Store – The online store operated by the Administrator at www.noviumdesign.eu and associated domains (www.noviumdesign.fr, www.noviumdesign.it, www.noviumdesign.de)

User – Any natural person visiting the Store or using one or several services or functionalities described in this Policy.

II. CATEGORIES & SOURCES OF DATA COLLECTED

We collect data directly from the User (e.g., during checkout) and indirectly through tracking technologies.

Identification Data: Name, surname, and title.

Contact Data: Email address, phone number, shipping and billing addresses.

Transaction Data: Details of products purchased, order history, and customer support interactions.

Payment Data: Shopify International Ltd. and integrated payment providers (such as PayPal, Klarna, and other regional credit card processors).

Technical & Browsing Data: IP address, browser type, device information, and interaction data (pages visited) collected via cookies.

Consequences of non-provision: Providing data marked as mandatory is a statutory and contractual requirement. Failure to provide this data will prevent the conclusion and execution of the purchase contract.

III. PURPOSES & LEGAL BASIS FOR PROCESSING

IV. COOKIES & CONSENT MANAGEMENT

The Store uses cookies to function and to improve your experience.

Essential Cookies: Placed automatically to enable core site functionality (cart, security).

Non-Essential Cookies (Analytics/Marketing): These are only placed after obtaining your explicit consent via the cookie banner.

Consent Withdrawal: You can choose to accept or refuse non-essential cookies via the banner when you first visit. If you want to change your mind later, you can clear your browser's cache or adjust your browser’s cookie settings at any time.

V. AUTOMATED DECISION-MAKING & PROFILING

We use profiling to display personalized advertisements and product recommendations. However, no automated decision-making producing legal effects or similarly significant effects on the User is carried out by the Administrator.

VI. SOCIAL MEDIA & THIRD-PARTY PLUGINS

The Store uses plugins from Meta and Google.

Third-Party Tracking: If you are logged into a social account while browsing, the provider may link your visit to your profile. We do not control these external data processing operations.

VII. DATA RETENTION PERIODS

Tax/Accounting Records: 10 years (as required by French and EU law).

Contractual Data: Duration of the contract plus 5 years (statute of limitations for civil claims).

Marketing Data: Until consent withdrawal or 3 years after your last active interaction.

VIII. YOUR STATUTORY RIGHTS (ART. 15-22 GDPR)

You have the right to: Access, Rectify, Erase (Right to be Forgotten), Restrict Processing, Data Portability, and Object to Marketing. To exercise these rights, email info@noviumdesign.eu. You also have the right to lodge a complaint with a supervisory authority (e.g., CNIL in France).

IX. DATA RECIPIENTS & INTERNATIONAL TRANSFERS

Data is shared with: Shopify (Platform), Payment Processors (including but not limited to PayPal, Klarna, and other integrated providers for local payment methods such as Bancontact, Blik, iDEAL, and credit card processors), Warehouse/Logistics (CRICEL), and Carriers (Chronopost/DPD/UPS/Colissimo).

International Transfers: For transfers outside the EEA (e.g., USA/Canada), we rely on the EU-U.S. Data Privacy Framework or Standard Contractual Clauses (SCC). Where required, additional technical safeguards are implemented to ensure an adequate level of protection.

X. REGIONAL & COUNTRY-SPECIFIC PROVISIONS

1. FRANCE (Loi Informatique et Libertés):
Directives after death: You have the legal right to define directives regarding the storage, deletion, and communication of your personal data after your death.
Retention: Marketing-related data is purged after 3 years of total inactivity.

2. GERMANY (BDSG & VSBG):
Dispute Resolution: In accordance with § 36 VSBG, the Administrator is not obligated and does not participate in dispute resolution procedures before a consumer arbitration board.
Profiling Objection: You have a specific, absolute right to object to the creation of user profiles for advertising or market research purposes (BDSG).

3. ITALY (Codice del Consumo & Garante):
Marketing: We strictly adhere to the Double Opt-in requirement for newsletters.
Soft-Spam: We may use your email address provided during a purchase to send offers for similar products, provided you have not opted out (Art. 130, paragraph 4 of the Privacy Code).

4. SWITZERLAND (nFADP / revDSG):
Cross-Border Transfer: For Swiss residents, your data is transferred to and processed in France (EU). The European Commission has issued an adequacy decision for France, ensuring a level of protection equivalent to Swiss law.

5. AUSTRIA & BENELUX:
Local Authorities: You have the right to lodge complaints with the Austrian Data Protection Authority (DSB) or the Belgian Data Protection Authority (APD-GBA) as your local supervisory body.

CONTACT: For any inquiries, contact us at info@noviumdesign.eu.