Privacy policy

(Compliant with Regulation (EU) 2016/679 – GDPR)

1. Identity of the data controller

The processing of personal data implemented in the context of the operation of the site is carried out by MSELUAD VENTURES LTD , acting as data controller (hereinafter the “Company”).

The purpose of this policy is to inform any individual concerned (“the User”) of the conditions under which their data is collected, used, stored and, where applicable, transmitted to third parties.

It falls within the contractual framework applicable to the services offered on the site, including the General Terms and Conditions of Use and Sale.

2. Categories of data processed

As part of its activities, the Company may process the following categories of data:

2.1 Identification and contact details

  • Sex

  • Date of birth

  • Email address

  • Account ID

  • Phone number

2.2 Transaction Data

  • Payment ID

  • Billing address

  • Delivery address

  • Amount of transactions carried out

  • Date and time of transactions

  • Invoices

2.3 Technical and navigation data

Collected in particular via tracking technologies:

  • IP address

  • Device type (computer, smartphone, tablet, etc.)

  • Operating system (Windows, macOS, iOS, Android, etc.)

  • Plugin versions

  • Internet service provider

  • Browser used

  • Advertising identifier associated with the terminal

  • Language preferences

  • Consultation statistics data

  • Full navigation path (URL)

2.4 Data from advertising partners

  • Age range or estimated age

  • Sex

  • Declared or estimated socio-professional category

  • Presumed areas of interest

3. Purposes of processing and legal basis

In accordance with Article 6 of the GDPR, the processing is based on the following legal grounds:

3.1 Contractual performance

The following data is required:

  • to the management of orders and subscriptions;

  • to payment processing;

  • to invoicing;

  • to customer relationship management and after-sales service.

3.2 Compliance with legal obligations

Certain information is retained in order to meet applicable accounting and regulatory obligations, as well as requirements related to the retention of technical logs.

3.3 Consent

Consent is required in particular for:

  • certain commercial prospecting activities;

  • the use of cookies that are not strictly necessary.

3.4 Legitimate interest

The Company may process certain data for:

  • the prevention and detection of fraud;

  • the improvement of services;

  • securing systems.

These processing operations are implemented subject to not infringing on the fundamental rights and freedoms of the persons concerned.

4. Data Recipients

The data may be disclosed, strictly to the extent necessary to achieve the purposes pursued, to the following categories:

  • Logistics providers responsible for delivery;

  • Providers of secure payment services;

  • Partners involved in the fight against fraud;

  • Services responsible for customer support;

  • Advertising platforms such as Facebook, Google, TikTok and Pinterest as part of marketing campaigns.

Bank details are transmitted directly to the secure payment provider. The Company does not have access to complete bank card information.

5. Shelf life

The data is kept for periods proportionate to the purposes pursued:

  • User account data: three (3) years from the last activity.

  • Transaction data: archiving may last up to two (2) additional years.

  • Accounting documents: to be kept for up to seven (7) years in accordance with legal obligations.

Intermediate archiving corresponds to a restricted and secure storage of data when its administrative utility remains (particularly in the event of litigation), before final deletion or anonymization.

6. Security and confidentiality

The Company implements appropriate technical and organizational measures to ensure a level of security appropriate to the risks, in accordance with Article 32 of the GDPR.

These measures include, in particular:

  • data stream encryption;

  • secure backup systems;

  • access control mechanisms;

  • stricter requirements for password creation (minimum eight characters including uppercase letters, lowercase letters, numbers and special characters).

7. Cookies and similar technologies

Cookies and trackers are used in order to:

  • to establish attendance statistics;

  • to improve the ergonomics of the site;

  • to adapt the display to the characteristics of the terminal;

  • to memorize information entered in forms;

  • to strengthen the security of connections.

Cookies are stored for a maximum period of thirteen (13) months.

The User can manage their preferences via:

  • his browser settings;

  • the cookie management tool available on the website.

8. Rights of the persons concerned

In accordance with Articles 12 to 22 of the GDPR, every person has the following rights:

  • Right of access;

  • Right of rectification;

  • Right to erasure;

  • Right to restriction of processing;

  • Right to data portability;

  • Right to object to processing based on legitimate interest;

  • Right to withdraw consent at any time when processing is based on consent.

Applications can be sent to:

By mail:
Suite 3H, The Old Courthouse, Chapel Street,
Duckinfield, SK16 4DT, United Kingdom

By email: support@zalinio.com

A response will be provided within one (1) month of receipt of the request, which may be extended by two (2) months in the event of complexity or multiple requests.

9. Applicable regulatory framework

The treatments are carried out in accordance with:

  • to Regulation (EU) 2016/679 of 27 April 2016 (GDPR);

  • to the provisions applicable under British law regarding data protection.