Privacy policy

1. Definition and nature of personal data

During your use of our website and app and our services, we may ask you to provide us with personal data concerning you.

The term “personal data” refers to all data that can be used to identify an individual, which corresponds in particular to your surname, your given name, pseudonym, photo, postal and e-mail addresses, phone numbers, date of birth, data relating to your transactions on the site/app, details of your purchases and subscriptions, credit card numbers, as well as any other information that you choose to communicate to us about yourself.

2. Purpose of this policy

The purpose of this policy is to inform you about the means that we employ to collect your personal data, in the strictest respect of your rights.

We conform, in the collection and management of your personal data, to Law No. 78-17 of 6 January 1978, in its current version, relating to computing, files and freedoms.

3. Agency responsible for data collection

The agency responsible for the collection of your personal data is the company Raisin, SASU registered with the Paris Register of Commerce and Companies under the No. 817 402 878 00018, having its head office at 88, rue de la Villette, bât. B, 75019 Paris.

4. Collection of Personal Data

Your personal data are collected for one or more of the following purposes:

(i) To manage your access to certain services accessible on the site/app and their use,

(ii) To carry out operations relating to the management of customers concerning contracts, orders, deliveries, invoices, loyalty programs, monitoring the relationship with customers,

(iii) To build a file of registered members, users, customers and prospects,

(iv) To send newsletters, solicitations and promotional messages. In the event you do not wish to receive them, we give you the opportunity to express your refusal on this subject during the collection of your data;

(v) To develop trade statistics and information on the frequency of access to our services,

(vi) To organize contests, lotteries and all promotional operations with the exclusion of online gambling and games of chance subject to the approval of the French Regulatory Authority for Online Games, (Autorité de Régulation des Jeux en ligne)

(vii) To better manage monitoring people’s opinions on the products, services, or content,

(viii) To manage outstanding payments and any disputes as to the use of our products and services,

(ix) To meet our legal and regulatory obligations.

We inform you that during the collection of your personal data, which data must be entered and which are optional. We also indicate what are the possible consequences of failure to reply.

5. Recipients of the collected data

Our company staff, the services responsible for oversight (auditors in particular) and our subcontractors will have access to your personal data.

Public agencies, exclusively to respond to our legal obligations, judicial officers, public legal officials and the bodies responsible for carrying out the recovery of debts.

6. Transfer of Personal Data

Your personal data will not be the subject of assignments, rentals or trade for the benefit of third parties.

7. Period of conservation of personal data

(i) Concerning data relating to the management of customers and prospects:

Your personal data will not be kept any longer than strictly necessary to the management of our commercial relationship with you. However, the data used to establish proof of a right or a contract, that requires retaining to comply with a legal obligation, will be retained for the duration of the period provided for by the law in force.

Concerning possible prospecting operations aimed at customers, their data may be retained for a period of three years from the end of the commercial relationship.

The personal data relating to a prospect, non-customer, may be retained for a period of three years from the date of their collection or of the last contact from the prospect.

At the end of this three year period, we may resume contact with you to learn whether you want to continue to receive commercial solicitations.

(ii) Concerning the management of the opt-out system for receiving solicitation:

The information for taking into account your opt-out right is kept for a minimum of three years from the date of exercising the opt-out right.

(iii) Concerning usage measurement statistics:

The information stored on the users’ terminal or any other element used to identify users and to allow their traceability or usage will not be retained beyond 6 months.

8. Security

We take all necessary precautions, appropriate organizational and technical measures to safeguard the security, integrity and confidentiality of your personal data and in particular, to prevent their distortion, damage or being accessed by unauthorized third parties. We use state of the art secure payment systems in accordance with the applicable regulations.

9. Cookies & Files. 

❌ NO ADVERTISING / NO TARGETING ❌ NO SELLING YOUR DATA ❌ NO RENTING. 

✅ ONLY TECHNICAL COOKIES ARE ENABLED.

Mobile or cookies are small text files stored in your browser/application. When you visit a website or our mobile app, we send information to your device, which creates these files/cookies (local file storage/Internal storage on mobile apps). During subsequent visits, your device returns this info to the server to maintain information about your session and preferences. We can distinguish two types of cookies/files that do not have the same purposes.

Technical and advertising files/cookies:

Ø Technical files/cookies are used throughout your navigation to facilitate and perform certain functions. A technical cookie can, for example, be used to store the answers entered in a form or the user preferences in the case of language or the presentation of an Internet site/app when such options are available.

Ø Advertising files/cookies are not used.

Technical files/cookies are stored in your browser and/or mobile app for a period that may not exceed six months.

TECHNICAL files/cookies:

• Firebase is a Google development platform that serves as the technical backbone for applications, providing essential infrastructure support. It handles real-time database operations for instant updates, manages secure user authentication for logins and signups, and provides file storage capabilities for user uploads. The platform also monitors application performance and crashes, while offering server-side computing capabilities to handle complex operations.
• Cloudflare is a protective layer between your website and the internet, implementing crucial security measures against DDoS attacks and malicious traffic. It enhances website performance by caching content closer to users (CDN) and optimizing the delivery of images and code. Additionally, Cloudflare provides SSL/TLS encryption to ensure secure connections between users and your website and mobile app.
• Amazon Web Services (AWS) provides the fundamental infrastructure to run applications and websites. It offers servers for hosting, scalable storage solutions for files and data, and powerful computing resources for handling complex tasks. AWS manages databases, provides AI/ML services, and delivers content through its global network. A key feature is its ability to automatically scale resources based on demand, ensuring consistent performance during usage spikes.
• Google Analytics is configured for anonymous data collection and monitors website and application technical performance. It tracks system stability, monitors for technical errors and crashes, and measures critical metrics like page load times and server response rates. The service helps identify technical bottlenecks that might affect performance and provides comprehensive system health monitoring, including detailed reports on service availability and uptime.
• Intercom is a customer communication platform that enables real-time messaging between users and support teams through live chat and help center features. The platform manages message delivery and storage while handling user authentication for conversations. Additionally, Intercom tracks technical interactions to ensure reliable message delivery and provides insights into system performance.

⚠️ On top of that, we also use an IP Anonymizer. An IP anonymizer is a tool or feature that anonymizes IP addresses before any data storage occurs, making them permanently unidentifiable to protect user privacy. It sets the last octet of the IP address to zero. For example, 92.168.12.144 will be set to 92.168.12.0.

10. Consent

When you choose to communicate your personal data, you expressly give your consent for the collection and use of that data in accordance with what is stated in this policy and the legislation in force.

11. Access to your personal data

In accordance with law No. 78-17 of 6 January 1978 relative to computing, files and freedoms, you have the right to obtain the communication and, where appropriate, the rectification or deletion, of data concerning you, through an online access to your folder. You can also contact:

– E-Mail Address: [email protected]
– Postal Address: 88, rue de la Villette, bât. B, 75019 Paris

Please note that any person may, for legitimate reasons, oppose the processing of data concerning them.

12. Modifications

We reserve the right, at our sole discretion, to modify at any time this policy, in whole or in part. These modifications will come into force upon the date of publication of the new policy. Your use of the site/app following the entry into force of these modifications will be deemed recognition and acceptance of the new policy. If not, and if you do not accept this new policy, you should no longer access the site/app.

13. Implemented:

This policy is implemented on 7 March 2016. – Updated on January 27th 2025.