Personal data protection principles

Your requests for changes to your personal data
  • As a user of THE NINES company services, you can modify your personal data from your customer account.
  • If you wish to delete your customer account, you can also perform this action (please note that this action is irreversible, you will lose access to your order history, loyalty points, promo codes... But it will be possible to create a new customer account) from your customer account.
  • You can export your personal data from your customer account.
  • For any other request to access, obtain, rectify or delete your personal data, please contact our data protection service.

Introduction

This page describes the principles by which THE NINES collects different types of data about its customers. The elements described on this page are explained in detail in THE NINES data protection principles.

This page also details the commitments regarding THE NINES' data security and protection policy in order to respect your privacy to the fullest extent possible.

Definitions

To avoid imprecise interpretation, here are some elements for understanding the terms used:

  • Personal data: any information relating to an identified or identifiable natural person is deemed to be "an identifiable natural person" a natural person who can be identified, directly or indirectly.
  • Processing: any operation or set of operations performed with or without automated processes and applied to personal data or sets of personal data (collection, recording, transmission, storage, conservation, extraction, consultation, use, interconnection, segmentation, etc.).

Data Controller

All processing of personal information communicated to THE NINES is carried out under the responsibility of THE NINES INTERNET company, 31 rue d'Armagnac, 33800 Bordeaux, SIRET: 901 665 455.

How do we collect data about you?

The collection of your personal data (such as name and contact details) is most often based on your customer relationship or other relevant relationship with us. For example, we collect data when you perform actions on our services, by registering as a user of our site, using THE NINES services, or providing us with other information.

When you use THE NINES network and communication services, for example by making a call or creating your customer account or sending an email, identification data is stored in our systems for service use.

When you visit THE NINES websites or load pages from them, you leave us different types of anonymous navigation data, such as your IP address and browsing history. The operation of the services is based on the use of cookies.

We may collect data based on your consent. We record customer service calls so that we can verify the actual discussion if necessary. We also collect data from our potential customers when they participate in contests, sweepstakes, or customer events.

What data do we collect?

This data includes your first and last name, address, phone number, email address, date of birth, direct marketing and consent information, company contact person information, company name, information provided by you, customer classification information, order, delivery, agreement and billing information. We store what can be connected to you.

The data created and collected during communication includes information about the communicating parties, connection time, routing information, data transfer protocol, connection format and location information.

When browsing the Internet, "measurement data" is collected using cookies. This data cannot be associated with an individual.

The customer information we collect helps us personalize and continuously improve your shopping experience on THE NINES services. We use this information to process orders, deliver products and services, process payments, and communicate with you regarding your orders, products, services, and promotional offers, maintain and update our files and thus your accounts with us, provide content such as wish lists and customer reviews, and recommend products and services that may interest you. We also use this information to improve our stores and websites, prevent or detect fraud or abuse on our website, and allow third parties to provide technical, logistical, or other functions on our behalf.

List of types of information we collect:

  • Information you provide to us

We collect and record all information you provide to us through our website or through other means. You may choose not to provide certain information to us, however this decision may limit your use of our services. We use the information you provide to us, particularly to respond to your requests, personalize your future purchases, improve our services and communicate with you.

  • Automatically collected information

Every time you contact us, we receive and record certain types of information. Like many other websites, we use "cookies" in particular and obtain certain types of information when your browser accesses THE NINES website or advertisements and other content displayed on other websites by THE NINES or on its behalf.

  • Information related to emails

To optimize the usefulness and interest of our emails, if your computer allows it, we frequently receive confirmation of emails sent by THE NINES that you have opened. If you do not wish to receive emails from us, simply notify us in your account.

How do we manage your information?

Please note that THE NINES staff and its subsidiaries and their subcontractors act under the obligation of secrecy when processing data about you.

We maintain the confidentiality of data concerning you and ensure that it is only used for predefined purposes.

Your data is processed to produce and deliver agreed communication and other services, develop services, bill, provide you with the best and most complete possible services, and inform you about our services.

We also use your data for customer communication, such as sending information about our services and for direct marketing purposes.

We also use the data for customer profiling using billing, usage amounts, customer relationship duration, and external classifications. We use both summarized usage data and person-specific data to create target groups for marketing.

We process our potential customers' data for direct marketing purposes.

We strive to ensure that customer data is up-to-date and correct. We delete obsolete and unnecessary data when possible.

We protect all data concerning you through personal access rights based on tasks and prevent third-party access to data.

Where do we send your data?

We only submit your data to the extent permitted by applicable legislation and as indicated in the file description to authorities and other telecommunication companies. When we use subcontractors, we sign a security agreement with them that also covers the use of your data. We are also responsible for this kind of handling for you.

THE NINES data protection principles

The purpose of this data protection policy is to describe the principles and practices we observe at THE NINES to ensure privacy protection, communication confidentiality, and legal protection of our customers.

THE NINES regularly updates this policy as operations or services change or develop. For this reason, we encourage you to regularly check the latest statement.

The important core values for THE NINES include client data confidentiality and communication privacy, as well as protecting customers' privacy in all company operations. When handling our clients' personal data, we follow French legislation, orders and instructions from authorities, and best practices for data processing.

THE NINES implements a high level of data protection. Personal and identification data as well as location-related data are collected only for specific predefined and legal purposes and are not processed in a way incompatible with these objectives.

We protect the security of your personal information during transmission by using SSL (Secure Sockets Layer Software) which encrypts the information you enter before it is sent to us.

We maintain physical and electronic security measures and backup procedures related to the collection, storage, and communication of customers' personal information. Our security procedures may require us to ask for proof of your identity before we can communicate your personal information to you.

We constantly train our staff on data processing principles and monitor data usage through appropriate means.

General principles of customer data management

The processing of personal data must always be justified for THE NINES operations. THE NINES has defined the purpose of collecting, manipulating, and submitting personal data in the following section.

THE NINES only processes customer data necessary for its operations, as defined in the purpose of use indicated in the file description for the customer register. We strive not to process incorrect, incomplete or outdated data.

Customer data processing is generally based on a relevant relationship, information received when using or registering for a service, or your consent. We may also process your data for other reasons, for example at your request or when required by law. Your information may be processed within THE NINES. We encourage our customers to regularly update their contact information.

We record your conversations with our customer service to verify a business transaction, to respond to your requests, and to monitor and develop the quality of service.

Please note that as a customer of THE NINES, you have the right to verify what data concerning you has been stored in our information systems, or that there is no data concerning you in our file. You can also refuse the use of your data in accordance with relevant legislation. The inspection can be carried out once a year free of charge. The request for data inspection must be made with a signed document between THE NINES and you.

Collection, storage, extraction and processing of personal data

Register of data collected directly through THE NINES services:

Contact Form
  • Data collected: Email and message
  • Objective pursued: Customer relationship management
  • Data retention: Recording in database
  • Retention period: 1 year
  • Data access: THE NINES customer service department
  • Is data stored or processed outside the EU: No

Customer account creation
  • Data collected: Name, first name, address, phone number, email address, date of birth, direct marketing information and consent, company contact person information, company name, information provided by yourself, customer classification information, order, delivery, agreement and billing We store what can be connected to you.
  • Intended purpose: Order / Order tracking / Address / Returns / Credit notes / Loyalty management
  • Data retention: Recording in database
  • Retention period: Customer lifetime
  • Data access: Logistics (partially, only data related to processing and shipping your order) / Marketing service / Customer service
  • Is data stored or processed outside the EU: No

Newsletter opt-in form
  • Data collected: Email and message
  • Intended purpose: Marketing emails
  • Data retention: Opt-in in database
  • Retention period: Duration of client opt-in unless refused by the client
  • Data access: The marketing department
  • Is data stored or processed outside the EU: No

In accordance with the "Data Protection Act", you can exercise your right to access data concerning you and have it rectified via the contact button available at the top of this page.

Register of data transmitted to subcontractors via THE NINES services:

Shopimind

MailJet

Facebook
  • Provider information: https://www.facebook.com/
  • Provider location: United States
  • Intended purpose: Connecting to your customer account on the site via your Facebook account
  • Is data stored or processed outside the EU: Yes
  • Provider's GDPR charter: https://www.facebook.com/

Google Analytics

Google Adwords

Crosslog

DHL

Mondial Relay

Sending and sharing data

THE NINES can only submit your data to third parties in accordance with current legislation. We submit information upon request to authorities, such as police and security authorities, as well as other authorities for reasons specified by legislation.

Information about our customers represents a significant part of our business, and our job is not to trade it. We share this information only in the previously expressed cases and for the purposes described in this privacy policy.

In addition, we may submit your data to subcontractors, in which case we will ensure that the confidentiality of the data is maintained, and we will also be responsible for data management in this case. If we process your data outside the EU region, we will protect your data by ensuring that the subcontractor guarantees appropriate data processing.

Processing of identification and location data related to electronic communication

THE NINES treats all data and messages created during communication as confidential. Our staff is bound by an obligation of secrecy and a prohibition on using messages or other confidential information. When communication occurs via a network, it always leaves a trace. These network traces are called identification data if they can be connected to a person. Network traces are created, for example, during phone calls, sending emails and SMS messages, and browsing the Internet, and may contain information about correspondents, connection route or routing, data transfer protocol used, the event and terminals used or their location.

THE NINES manages communication identification and location information in accordance with applicable law for purposes such as service implementation and use, billing, and technical development, consent, marketing. The data may also be used for billing other service providers where necessary.

THE NINES may also manage identification data in cases of abuse, data security breaches, and fault repair.

In all of the above situations, we only process identification and location data to the extent necessary to accomplish a specific task.

Use of location data

A real location method where another person can track where another person is located requires the consent of the person to be located. The customer may not be located at all if they refuse geolocation services.

If we submit location information to location service providers, we ensure through appropriate means that there is consent from the person to be located.

Persons authorized to manage identification and location data

Only specific people at THE NINES whose work requires access to identification and location data can process this data.

In practice, authorization is only granted to individuals performing tasks related to billing, maintenance or development of networks or communication services, prevention and investigation of abuse, customer service, and marketing. People with the right to handle data can only manage it to the extent required to perform individual tasks.

Duration of identification and location data processing and data storage

We process identification and location data as long as necessary for billing purposes, technical development, fault repair, marketing, investigating misuse, or data security. However, handling only takes place to the extent required by the actions and without unduly compromising message confidentiality and privacy protection.

We store the required billing data for at least one year from the invoice due date and for a period not exceeding three years from the invoice due date, unless it is necessary to retain the data for a longer period related to invoice collection. Otherwise, the data is stored to the extent permitted and required by relevant legislation.

Websites, visit tracking

We also collect data about website visits. This data includes the IP address and corresponding DNS name, the organization that registered the IP address, the name and address of the visited page, page loading time and browser type.

Please note that the IP address is a required identification for the operation of the Internet, used to direct messages transmitted on the Internet to the appropriate places. Generally, the IP address is not connected to the person using the computer, but it can be connected to the organization that registered the IP address. The IP address connection can be established at the request of the authorities.

Cookies

As a customer of THE NINES, you can browse our websites anonymously. However, like most websites, we use cookie technology. When you view our website, the cookie sets a random number for the browser that does not indicate your identity. Cookies help THE NINES determine which are the most popular sections of its websites, where visitors go, and how long they stay there. The data is used to implement and develop services and target advertisements on the websites.

You can prevent cookie storage by modifying your browser settings. In some cases, prevention may slow down or make navigation on pages or the website impossible.

Data security

We ensure the security of our services' data by using methods proportionate to the severity and sophistication of threats as well as cost.

THE NINES takes care to perform actions aimed at preventing data security breaches or eliminating disruptions that affect data security. Additionally, we use all means to ensure that message confidentiality or privacy protection is not unduly compromised when performing the above actions.

We provide information about actions related to our services' data security and other data security issues through appropriate channels, such as our website or customer bulletins.

In order to prevent data security breaches and eliminate disruptions affecting data security, we may, among other things, prevent the receipt of electronic messages, remove viruses and other malicious software from messages, and take other comparable technical measures (necessary measures within the authorized and required limits specified in the relevant legislation). We use physical, administrative, and technical protection measures to keep secret the messages and identification data transmitted on the communication network. These actions reduce the risk of your data being disclosed to third parties and prevent any misuse or other unauthorized access. Some of our services also use standardized encryption methods.

Please note that as a user of THE NINES services, you must also use the most appropriate methods to ensure your own data security. We encourage you to store and use our services and your devices carefully and control their use, for example by using secure codes and unique passwords, and to use sufficient antivirus and firewall services and keep them as well as the operating system up to date.

Customer communication and direct marketing

THE NINES sends customer messages about its products and services to its customers via the consent available in the customer account.

THE NINES also sends direct marketing messages in electronic format. You have the right to prohibit THE NINES from sending direct marketing messages. You can prohibit marketing by following the instructions included in the direct marketing message or via your customer account available on our website.