Privacy Policy

1. Data Controller

The data controller responsible for the processing of personal data is:

Neoratek
Legal form: Single-member limited liability company (EURL)
Address: 247 chemin de Carrère, 97170 Petit-Bourg, Guadeloupe
Contact email: contact@neoramouv.com

2. Personal Data Collected

When using the website www.neoramouv.com, the following categories of personal data may be collected:

  • Identification data: first name, last name

  • Contact details: postal address, email address, telephone number

  • Order data: purchased products, quantities, amounts, order history

  • Payment data: processed exclusively by secure payment providers and not stored by Neoratek

  • Browsing data: IP address, browser type, pages viewed, connection data

  • Marketing data: preferences, newsletter subscriptions, interactions with communications (where applicable)

3. Purpose of Processing

Personal data is collected for the following purposes:

  • Order and delivery management

  • Customer relationship management and after-sales service

  • Payment processing and security

  • Compliance with legal, tax and accounting obligations

  • Sending commercial or marketing communications, subject to prior consent

  • Improving website performance and user experience

  • Fraud prevention and transaction security

4. Legal Basis for Processing

In accordance with Article 6 of the General Data Protection Regulation (GDPR), processing activities are based on:

  • Performance of a contract (order and delivery processing)

  • Compliance with legal obligations (invoicing, accounting)

  • User consent (newsletter subscriptions, non-essential cookies)

  • Legitimate interest of the data controller (website security, service improvement, fraud prevention)

5. Data Recipients

Personal data is accessible only to the following recipients, within the scope of their respective duties:

  • Logistics providers: order preparation and delivery

  • Secure payment providers: transaction processing

  • Technical and IT service providers: hosting, maintenance, e-commerce tools, email services

  • Administrative or judicial authorities where required by law

No personal data is sold, rented or transferred to third parties for commercial purposes.

6. Data Transfers Outside the European Union

As part of the use of technical services such as Shopify, certain personal data may be transferred outside the European Union, particularly to Canada or the United States.

Such transfers are governed by appropriate safeguards in compliance with the GDPR, including:

  • Adequacy decisions issued by the European Commission (notably for Canada), or

  • Standard Contractual Clauses adopted by the European Commission.

7. Data Retention Period

Personal data is retained for periods proportionate to the purposes pursued:

  • Customer data: for the duration of the commercial relationship, then archived for evidentiary purposes for 5 years

  • Accounting and invoicing data: 10 years (legal obligation)

  • Marketing data: until consent is withdrawn or 3 years after the last contact

  • Browsing data and cookies: maximum of 13 months

8. User Rights

In accordance with the GDPR, users have the following rights:

  • Right of access

  • Right to rectification

  • Right to erasure

  • Right to restriction of processing

  • Right to object

  • Right to data portability

  • Right to withdraw consent at any time

These rights may be exercised by sending a request to:
📧 contact@neoramouv.com

9. Data Security

Neoratek implements appropriate technical and organizational measures to ensure the security, integrity and confidentiality of personal data, and to prevent unauthorized access, loss, alteration or disclosure.

10. Cookies

The website uses:

  • Strictly necessary cookies required for proper functioning, and

  • Where applicable, analytical or marketing cookies subject to the user's prior consent.

A cookie management banner allows users to accept, refuse or configure cookies upon their first visit, and to modify their preferences at any time.

11. Complaints and Remedies

If a user believes that their rights have not been respected, they may file a complaint with the competent supervisory authority:

CNIL – French Data Protection Authority
https://www.cnil.fr

Users also have the right to bring legal proceedings before the competent courts.

12. Changes to the Privacy Policy

This Privacy Policy may be modified at any time.
The applicable version is the one in force at the date of consultation of the website.