Privacy Policy

The purpose of this privacy policy is to inform users of the site about :

• How their personal data is collected. Personal data refers to any information that makes it possible to identify a user. This may include, but is not limited to, surname, first name, age, postal address, e-mail address, location or IP address ;
• The rights they have regarding this data ;
• The person responsible for processing the data collected and processed ;
• The recipients of this personal data ;
• The site's policy on cookies.

This policy supplements the Legal Notice and the General Terms and Conditions of Sale, which users can consult at the following address :

• Legal Notice
• General Terms and Conditions of Sale

In accordance with Article 5 of European Regulation 2016/679 (General Data Protection Regulation - GDPR), personal data is :

• Processed lawfully, fairly and transparently with regard to the data subject ;
• Collected for specified, explicit and legitimate purposes (see Article 3.1 hereof) and not further processed in a way incompatible with those purposes ; 
• Adequate, relevant and limited to what is necessary for the purposes for which they are processed ; 
• accurate and, where necessary, kept up to date. All reasonable steps must be taken to ensure that personal data which is inaccurate, having regard to the purposes for which it is processed, is erased or rectified without delay ; 
• Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which it is processed ; 
• Processed in such a way as to guarantee appropriate security of the data collected, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.

3.1 - Collection of personal data

The personal data collected on this site (or “Platform”) is as follows : 

• Account opening : When the user's account is created, the information collected includes surname, first name, e-mail address and date of birth. 
• Connection : When the user connects to the Platform, it records the following information in particular: surname, first name, connection data, usage data, location data and payment information.
• Profile : Use of the services available on the Platform enables a user profile to be filled in, which may include an address and telephone number. 
• Payment : When paying for products and services offered on the Platform, financial data relating to the user's bank account or credit card may be recorded.
• Communication : When the Platform is used to communicate with other members, data relating to the user's communications is temporarily stored.
• Cookies : Cookies are used in connection with the use of the site. Users can choose to deactivate cookies via their browser settings.

This data is collected and processed for the following purposes: contract management, customer area management, service quality monitoring, newsletter dispatch, etc.

3.2 - Data collection method

When you use our site, the following data is automatically collected : 

Browsing data :

• IP address
• Browser type
• Operating system
• Pages visited
• Length of visit
• Referrers (websites that directed you to our site)

User account data (for the online store) :

• First and last name
• E-mail address
• Password (encrypted)
• Purchase history 

Purposes of collection :

• Showcase part : browsing data is used to analyze traffic, improve site design and personalize content. Cookies are also used to facilitate navigation and display relevant advertising.
• Online Store : User account data is required to manage your orders, process payments and ensure delivery. Your purchase history enables us to offer you similar products or special offers.

This data is kept by the data controller under reasonable security conditions for a period of 5 years.
The company may be required to retain certain personal data beyond the above-mentioned periods, in order to comply with legal or regulatory obligations.

3.3 - Lawfulness of data collection

The processing of personal data is lawful only if, and insofar as, one of the following conditions is met :

• The data subject has consented to the processing of his/her personal data for one or more specific purposes ;
• The processing is necessary for the performance of a contract to which the data subject is a party, or for the performance of pre-contractual measures taken at the data subject's request ;
• Processing is necessary to comply with a legal obligation to which the data controller is subject ;
• The processing is necessary to protect the vital interests of the data subject or of another natural person ;
• Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller ;
• The processing is necessary for the purposes of the legitimate interests pursued by the data controller or by a third party, unless the interests or fundamental rights and freedoms of the data subject require protection of personal data, in particular where the data subject is a child.

3.4 - Data hosting

The Radline website is hosted by OVH.

• A company with share capital of €50,000,000.00 ; 
• Registered office: 2 Rue Kellermann - 59100 ROUBAIX ; 
• Registered with the Registre du Commerce et des Sociétés de LILLE under number 424761419 ; 
• Represented by Benjamin REVCOLEVSCHI, in his capacity as Chairman. 

4.1 - Data processing manager

Personal data is collected by SDG DISTRIBUTION, SAS with a share capital of €37,000.00, whose registered office is located at 114 Avenue des Vanniers - 40150 SOORTS-HOSSEGOR - FRANCE, registered in the DAX Trade and Companies Register under number 500 510 961.

The person responsible for processing personal data can be contacted in the following ways : 

• By post at the following address: 114 Avenue des Vanniers - 40150 SOORTS-HOSSEGOR ;
• By telephone : 05 58 70 25 35 ;
• By e-mail: contact@radlineboards.com.

4.2 - Data protection officer

The company's data protection delegate (or manager) is :

[Indicate the identity, address, telephone number and/or email address of the DPO]

If, after contacting the Data Protection Officer, you feel that your “Data Processing and Individual Liberties” rights have not been respected, you may submit a complaint to the CNIL (Commission Nationale de l'Informatique et des Libertés).

The purpose of the personal data collected from users is to provide the Platform's services, to improve their quality and to guarantee a secure environment. More specifically, it is used for the following purposes :

• To enable users to access and use the Platform ;
• To manage the operation and optimize the performance of the Platform ;
• To organize the conditions of use of payment services ;
• Verify, identify and authenticate data transmitted by the user ;
• Offer the user the possibility of communicating with other users of the Platform ;
• Provide effective user support ;
• Personalize services, in particular by displaying advertisements adapted to the user's browsing history and preferences ;
• Prevent and detect fraud and malware, and manage security incidents ;
• Handle and manage any disputes with users ;
• Send commercial and advertising information in accordance with user preferences.

Users' personal data may be shared with third-party companies in the following situations :

• Payment services : When a user uses these services, the Platform collaborates with third-party banking and financial companies with whom contracts have been established ; 
• Public areas : Information published by the user in publicly accessible comment areas of the Platform may be shared or viewed by all ; 
• Explicit authorizations : When the user authorizes a third-party website to access his/her personal data ; 
• Service providers : The Platform may use external service providers for services such as user support, advertising and payment services. These service providers have limited access to personal data, solely for the purposes of performing their services, and are contractually bound to comply with current data protection regulations ; 
• Legal obligations : The Platform may be required to transmit data in order to comply with legal obligations, in particular in the context of claims or administrative or legal proceedings ;
• Business operations : In the event of a merger, acquisition, sale of assets or receivership involving the Platform, personal data may be transferred or shared with third parties. In such a situation, users will be informed prior to any transfer, and their data will be subject to the same confidentiality guarantees.

Due to the international organisation of the company responsible for the Platform, the user accepts that his/her personal data may be transferred, stored and processed in the United States. The laws in force in the United States may differ from the laws applicable in the user's place of residence, particularly within the European Union. By using the Platform, the user explicitly consents to this transfer.

The Platform remains fully responsible for personal data shared with third parties under the Privacy Shield. It undertakes to comply with the principles of this system, which constitutes a data protection shield between the European Union and the United States, as defined by the US Department of Commerce. These principles govern the collection, use and retention of personal data transferred to the United States from the European Union. 

The Platform has certified its adherence to the Privacy Shield principles to the US Department of Commerce. In the event of any contradiction between the terms of this clause and the Privacy Shield principles, the latter shall prevail.

The Platform applies organisational, technical, software and physical measures to ensure the security of personal data and to protect it against any alteration, destruction or unauthorised access. 

However, it should be noted that the Internet is not a completely secure environment. Consequently, the Platform cannot guarantee absolute security when transmitting or storing information on the Internet.

In accordance with the regulations applicable to personal data, users have the following rights :

• Updating or deleting data: Users may update or delete their data by logging into their account and modifying the settings ; 
• Account deletion : Users may request the deletion of their account by writing to the following e-mail address : contact@radlineboards.com.   
  Note : Information shared with other users, such as forum postings, may remain publicly visible on the Platform, even after the account has been deleted ;
• Right of access : Users may exercise their right of access to obtain information about their personal data. To do so, they must send a request to the following e-mail address : contact@radlineboards.com. Before responding, the Platform may request proof of identity in order to verify the legitimacy of the request ;
• Rectification of data : If the personal data held by the Platform is inaccurate, users may request that the information be updated by writing to the following e-mail address : contact@radlineboards.com ;
• Right to erasure : Users may request the deletion of their personal data, within the limits provided for by applicable data protection regulations, by sending their request to the following e-mail address : contact@radlineboards.com. 

The Platform reserves the right to modify these clauses relating to the protection of personal data at any time. 

In the event of modification, the Platform undertakes to : 

• Publish the new version on its website.
• Inform users of the changes by e-mail at least 15 days before they come into force. 

If users do not accept the terms of the new privacy policy, they may choose to delete their account before the effective date of these changes.