Login

Language

Privacy Policy

PRIVACY POLICY

Last updated: 2 May 2026

PREAMBLE

Maison Zokar Paris places particular importance on protecting the personal data of its Clients and visitors. The purpose of this policy is to inform users of the website www.maisonzokarparis.com about the nature of the data collected, the purposes of processing, and the rights they hold, in accordance with Regulation (EU) 2016/679 of 27 April 2016 ("GDPR") and French Law no. 78-17 of 6 January 1978 as amended ("French Data Protection Act").

ARTICLE 1 — DATA CONTROLLER

The data controller responsible for personal data processing is:

Maison Zokar Paris
320, rue Saint-Honoré
75001 Paris — France
Email: contact@maisonzokarparis.com

ARTICLE 2 — DATA COLLECTED

Maison Zokar Paris collects the following categories of data:

Identification and contact data: surname, first name, email address, delivery and billing addresses, telephone number.

Order data: order history, products ordered, amounts, delivery status.

Payment data: transactions are processed by Shopify Payments and partner banking providers. No banking data (card number, security code) is stored by Maison Zokar Paris.

Browsing data: IP address, browser type, pages visited, duration of visit, data collected via cookies (see article 7).

Communication data: content of exchanges by email or via the contact form.

ARTICLE 3 — PURPOSES AND LEGAL BASES OF PROCESSING

Data is processed for the following purposes, on the corresponding legal bases:

Purpose Legal basis
Order processing and fulfilmentPerformance of contract (art. 6.1.b GDPR)
Customer relationship management and after-sales servicePerformance of contract
Invoicing and accounting obligationsLegal obligation (art. 6.1.c GDPR)
Sending commercial communicationsConsent (art. 6.1.a GDPR)
Site improvement and statisticsLegitimate interest (art. 6.1.f GDPR)
Fraud preventionLegitimate interest

ARTICLE 4 — DATA RECIPIENTS

Personal data is intended for authorised internal staff of Maison Zokar Paris. It may be shared with service providers involved in delivering the service:

  • Shopify Inc. / Shopify International Limited: platform hosting and payment solution
  • La Poste / Colissimo: delivery in France and the EU
  • Canada Post: delivery in Canada
  • Banking service providers: payment security

No data is transferred, sold or rented to third parties for commercial purposes without the explicit consent of the Client.

ARTICLE 5 — TRANSFERS OUTSIDE THE EUROPEAN UNION

Some service providers (notably Shopify) may process data on servers located outside the European Union, in particular in Canada and the United States. These transfers are governed by the appropriate safeguards provided for by the GDPR (Standard Contractual Clauses adopted by the European Commission, adequacy decisions).

ARTICLE 6 — DATA RETENTION PERIOD

Data is retained for the following periods:

  • Customer account data: throughout the duration of the commercial relationship, then three (3) years from the last contact
  • Order and invoicing data: ten (10) years from the order, in accordance with accounting obligations (art. L123-22 of the French Commercial Code)
  • Marketing prospection data: three (3) years from the last contact or until withdrawal of consent
  • Cookies: duration specified in article 7, within a limit of thirteen (13) months

ARTICLE 7 — COOKIES

The site uses cookies to ensure proper functioning, remember the Client's preferences, analyse audience, and personalise the experience.

Categories of cookies used:

  • Strictly necessary cookies (basket, session): exempt from consent
  • Audience measurement and analytics cookies
  • Personalisation and marketing cookies

On the first visit, an information banner allows the Client to accept, decline or configure non-essential cookies. The Client may modify their choices at any time via the "Your privacy choices" page accessible at the bottom of the site.

ARTICLE 8 — USER RIGHTS

In accordance with articles 15 to 22 of the GDPR, the Client has the following rights over their personal data:

  • Right of access: obtain confirmation that their data is processed and receive a copy
  • Right of rectification: correct inaccurate or incomplete data
  • Right to erasure ("right to be forgotten"): request the deletion of their data
  • Right to restriction of processing
  • Right to object to processing, in particular for marketing purposes
  • Right to data portability
  • Right to set instructions regarding the handling of their data after death
  • Right to withdraw consent at any time when processing is based on consent

To exercise these rights, the Client may write to: contact@maisonzokarparis.com, providing proof of identity.

A response will be provided within one (1) month, which may be extended by two (2) months depending on the complexity or number of requests.

Right to lodge a complaint: in the event of an unresolved dispute, the Client may submit a complaint to the French Data Protection Authority (CNIL):

CNIL — 3 place de Fontenoy, TSA 80715, 75334 Paris Cedex 07
Website: www.cnil.fr

ARTICLE 9 — DATA SECURITY

Maison Zokar Paris implements appropriate technical and organisational measures to ensure a level of security adapted to the risk, including SSL encryption of transactions, restriction of data access to authorised personnel only, and hosting on platforms compliant with current security standards.

ARTICLE 10 — MODIFICATIONS

Maison Zokar Paris reserves the right to modify this policy at any time to adapt it to legislative, case-law, or technical developments. The date of the last update appears at the top of the page.

Contact
For any enquiries regarding this policy: contact@maisonzokarparis.com