1.1.1. Responsible for treatment

All of the personal data collected on the site are processed under the responsibility of Lili Margo, registered in the Nanterre Trade and Companies Register under number 8333348650 and having its registered office at 99 rue Paul Vaillant Couturier, 92240, Malakoff ( below "Lili Margo" or "We"). In the sense of applicable regulations, Lili Margo is responsible for the treatments concerned. 

1.1.2. Recipients

Within Lili Margo, and with regard to each processing, your personal data is communicated or made accessible only to the people to which it is necessary to communicate it for the needs and given the purpose of the treatment in question.

Your personal data may be communicated to third parties with regard to the purpose of the corresponding treatment.

The recipients or categories of recipients of your personal data are identified in the treatment table. 

1.1.3. Transfer of personal data outside the European Union

Your personal data is stored in servers located in the European Union. They are not the subject of transfer outside the European Union.

In accordance with the regulations applicable to personal data, we only process your personal data if one of the following conditions is met:

• The processing of your personal data is necessary for the execution of a contract to which you have left, and in particular the execution of your order on the Site, or to the execution of pre -contractual measures taken at your request;
• The processing of your personal data is necessary to comply with a legal obligation incumbent on us;
• The processing of your personal data is necessary for the pursuit of our legitimate interests;
• You have expressly agreed to the processing of your personal data for one or more specific purposes.

Personal data processed by us are listed by purpose in the Table of Treatments. . We process your personal data only for the determined purposes and with regard to the legal bases which are brought to your attention in the Treatment Table. 

We only collect personal data strictly necessary for the continuation of the detailed purposes below.

Please note that to benefit from certain services and functions on the site, you will be asked to communicate certain personal data for compulsory purposes via collection forms. The compulsory nature of the responses is reported by means of an asterisk (*) appearing before the corresponding box. The data identified as being compulsory is necessary in order to be able to benefit from the corresponding functionalities of the site. Failing to fill these fields you will not be able to access the corresponding functionality.

You are solely responsible for the accuracy of the personal data communicated.

We only keep your personal data for the duration that is strictly necessary with regard to the purpose of treatment. For each treatment, these durations are indicated in the table of treatments.

We are committed to protecting your personal data. To do this, we make sure to take all the physical, technical and organizational measures useful to obstruct any unauthorized or illegal treatment, as well as any loss, destruction or accidental degradation of your personal data.

You have a right of access, rectification, erasure, limitation, opposition concerning the processing of your personal data as well as the right to the portability of your personal data by formulating your request to the addresses indicated in The "Contact us" section, under the conditions laid down by the applicable regulations. You must indicate what right you intend to exercise as well as all the necessary details so that we can meet your request.

These rights are exercised under the conditions laid down by the applicable regulations.

•   THE permission to access means that you can ask us at any time to tell you if we process personal data concerning you and, if necessary, to tell you which personal data concerned as well as the characteristics of the processing (s) made.

•   THE right of rectification means that you can ask us for the rectification of your personal data when it is inaccurate. You can also ask that of your personal data, as soon as incomplete, be completed insofar as this is relevant with regard to the purpose of the treatment in question.

•   THE right to erasure means that you can ask to erase your personal data, especially when: (i) their conservation is no longer necessary with regard to the purposes for which they have been collected (ii) your personal data is processed on the basis of your consent, you wish to withdraw this consent, and there is no other legal basis likely to justify the processing (III) you have opposed the processing of your personal data and you therefore wish that it is erased (iv) your personal data have been the subject of illegal treatment; (v) Your personal data must be erased to comply with a legal obligation which is provided for either by European Union law or by French law.

•   THEright to limit means that you can ask us to limit the processing of your personal data (i) when you dispute the accuracy of your personal data for a period allowing us to verify the accuracy of these, (ii) when following To a treatment established as non-compliant, you prefer the limitation of processing to the complete erasure of your personal data (III) when we no longer need your personal data for the purposes of processing but that it is still necessary to you for the observation, exercise or defense of legal rights; (IV) when you have opposed the processing of your personal data and you wish to limit the processing for the duration allowing us to check if the legitimate reason you invoke is justified. The limitation of processing means that the processing of your personal data will then mean the storage of your corresponding personal data alone. We will then no longer carry out any other operation on your personal data considered.

•   THE right of opposition means that you can oppose the processing of your personal data, when this processing is based on the continuation of the legitimate interest of Lili Margo. The right of opposition is exercised subject to justifying a legitimate reason relating to your particular situation. We will then stop the treatment in question unless there are legitimate and imperious reasons by justifying the prosecution in accordance with the applicable regulations. When your personal data is processed for commercial prospecting, you can oppose your personal data at any time to this end.

•   THE right to define directives relating to the fate of your data after your death Allows you to publicize your instructions regarding the conservation, erasure and communication of your personal data after your death.

•   THE right to portability means that you can ask us, under the conditions laid down by the applicable regulations, to receive your personal data in a structured format, commonly used and readable by machine, and to transmit it to you, or to ask us to transmit them directly to a third party of your choice when this is legally and technically possible.

When we process your personal data on the basis of your consent, you have the ability to withdraw your consent at any time by contacting the addresses indicated in the "Contact us" section. However, the withdrawal of your consent does not call into question the validity of the treatment made before this withdrawal.

A cookie is a tracker deposited on your terminal which is used to record information relating to your consultation and your navigation on the site.

When you connect to the site, we may have to install cookies on your terminal.

Some cookies are essential for the use of the site (these are so -called "essential" cookies), others allow you to personalize the content displayed to carry out attendance statistics or display advertisements.

Essential cookies that are strictly necessary for the provision of a service to which you wish to access do not require your prior consent to be used.

You will find below the characteristics of the cookie used on the site, its purpose and how to deactivate it.

Cookie name:
Prestashop cookie

Purpose:
Storage of information necessary for the use of the site: date of creation of the cookie and memorization of acceptance; user language; group of user messages; guest identifiers if the user is connected; User's current connection identifiers; storage of user products comparisons; Storage of the name, first name, email, current basket, encrypted password, connection condition (if the user is connected or not)

Lifetime :
1 month

If you reject or delete this cookie, certain associated elements and functions of our site may become unavailable for you and the use of our site as you experiment can be reduced, or even impossible.

If you reject or delete this cookie, certain associated elements and functions of our site may become unavailable for you and the use of our site as you experiment can be reduced, or even impossible.

The cookie is not kept for more than 1 month.

When you visit our site for the first time, Lili Margo informs you of the use of a cookie using an information banner. By continuing your navigation on the site when displaying this banner, you consent to what we used this cookie.

You can nevertheless deactivate the cookie at any time by referring to the table above.

You can also deactivate cookies through the settings in your Internet browser. The procedure to follow in order to deactivate cookies is different according to each browser. You will find below the links to the relevant pages for each of the main browsers.

For Internet Explorer: https://support.microsoft.com/fr-fr/help/17442/windows-internet-explorer-delete-manage-cookies

Safari: http://docs.info.apple.com/article.html?path=Safari/3.0/fr/9277.html

Chrome: http://support.google.com/chrome/bin/answer.py?hl=fr&hlrm=en&answer=95647 

Firefox: http://support.mozilla.org/fr/kb/Activer%20et%20d%C3%A9sactiver%20les%20cookies 

To deactivate cookies on your smartphone, the indications are available on the links below:

For iOS: https://support.apple.com/fr-fr/HT201265

For Android: https://support.google.com/chrome/topic/3434352

This privacy policy may be updated.

When you have sent us a valid e-mail address, we inform you of this change by e-mail and communicate you to the new version of the Privacy Policy before implementing the change. We also recommend that you regularly consider this Privacy Policy in order to have a perfect knowledge of our commitments in terms of security and protection of your personal data.

For any questions concerning this privacy policy as well as for the exercise of your rights, you can contact us:

• by email : contact@lilimargo.com
  
• By mail: 99 rue Paul Vaillant Couturier, 92240, Malakoff

If the answer provided does not satisfy you, you have the right to submit a complaint to the National Commission for Data Protection ("CNIL")

• By mail: National Commission for Data Protection

3 place de Fontenoy
TSA 80715
75334 Paris Cedex 07 

• On the CNIL website: www.cnil.fr

Opening of accounts

Management of customer accounts and sending of commercial prospecting

Consent (art. 6.1.A GDP)

Civility, name, first name, pseudo, profile photography, date of birth, company, email address, telephone numbers, city, country, orders of orders;

> 3 years from the opening of the account if no order has placed

In the event of an order, the conservation period is that indicated in the line "Orders Management"

- Lili Margo employees in charge of the website, customer service and IT.

- external providers in charge of computer maintenance and site accommodation

Order management

Management of customer contracts

Execution of a contract (art 6.1, b GDPR)

Civility, name, first name, pseudo, email, company, billing address, delivery address, telephone numbers, means of payment, IP address,
order details, order number, order tracking number, information exchanges when ordering;

> 5 years from the end of execution of the contract for orders placed by professionals (article L 110-4 of the Commercial Code; article 2224 of the Civil Code) or for orders of a value of less than 120 euros passed by consumers 
> 10 years from delivery for orders placed by consumers worth more than 120 euros (article L 213-1 and article D213-2 of the Consumer Code),
> 10 years from the end of the accounting financial year for data participating in the establishment of accounting (article L123-22 Commercial code)

- Lili Margo employees in charge of the website, customer service and IT

- External provider in charge of payments

- external providers in charge of delivery

- external providers in charge of computer maintenance and site accommodation

Management of "#LMCLUB" awards

Management of “#LMCLUB” contracts

Execution of a contract (art 6.1, b GDPR)

Civility, name, first name, pseudo, email, registration, "ambassador" code, billing address, telephone numbers, bank identity statement, number of affiliates, total number of orders, orders, orders, commissions, history of payments;

> 5 years from the end of execution of the contract

- Lili Margo employees in charge of the website, customer service and IT.

- external providers in charge of computer maintenance and site accommodation

Relances "Panned" baskets "

Recovery Basket Purchase

Consent (art. 6.1.A GDP)

E-mail address ;

> 3 years from the last connection (the user is customer or prospect identified)

- Lili Margo employees in charge of the website, customer service and IT

- external providers in charge of computer maintenance and site accommodation

Information requests

Management of information requests made on the site

Consent (art. 6.1.A GDP)

Civility, name, first name, pseudo, e-mail address, telephone numbers, country city, subject of the request;

The shelf life depends on the nature of the demand. For exemple,

> The data corresponding to a request relating to an order in progress will be kept in accordance with what is indicated in the line "Command management"

> The data corresponding to a request relating to the products offered for the sale or the terms of the "Ambassador" program will be kept for 3 years from the last contact with the user in the absence of order

- Lili Margo employees in charge of the website, customer service and IT.

- external providers in charge of computer maintenance and site accommodation

Newsletter

Sending a newsletter

Consent (art. 6.1.A GDP)

Civility, name, first name, pseudo, email address, country city;

> Data is kept until unsubscribe
> In the event of unsubscribe, the data necessary for the management of oppositions is kept for 3 years from the unsubscribe

- Lili Margo employees in charge of the website, customer service and IT.

- external providers in charge of computer maintenance and site accommodation

- External provider in charge of sending the newsletter

"Consumer" opinion

Management of opinions given by consumers through site features and reusable for promotion purposes in accordance with the terms of a license.

Execution of a contract (art 6.1, b GDPR)

Last name, first name, pseudo, date of publication, notice;

> 5 years from the end of execution of the contract

- Lili Margo employees in charge of the website, customer service and IT.

- external providers in charge of computer maintenance and site accommodation

- External provider in charge of communication

Advertising targeting

Targeted advertising

Consent (art. 6.1.A GDP)

E-mail, navigation information, IP address

> 13 months from consent

- Lili Margo employees in charge of the website, customer service and IT.

- external providers in charge of computer maintenance and site accommodation

- External provider in charge of communication

Sales statistics

Sales Analysis

Lili Margo legitimate interest to establish statistics in order to have a global vision of its sales, to analyze its results to improve its services (Art 6.1.F RGPD)

Last name, first name e-mail address, sales information

> 3 exercises closed according to the last transaction with the user.

- Lili Margo employees in charge of the website, customer service and IT.

- external providers in charge of computer maintenance and site accommodation

Connection monitoring

Connect and navigation log

Consent (art. 6.1.A GDP)

When the user connected via his account: the data processed is all the account information

When the user did not connect via a customer account, only the IP address and navigation information is collected.

> 13 months for data from cookies
> 3 years from the last connection as soon as the user is an identified customer or prospect

- Lili Margo employees in charge of the website, customer service and IT.

- external providers in charge of computer maintenance and site accommodation

- External provider in charge of communication