Privacy policy.

The data controller is Sweness — published by Sweness SAS, whose registered office is at Paris, France. For any question relating to data protection, please write to: Contact@sweness.com

Sweness collects the following data: · Identity: first name, last name · Contact details: email, phone, postal address · Order data: products ordered, amounts, history · Payment data: processed exclusively by Shopify Payments (PCI-DSS); Sweness stores no banking data on its servers · Browsing data: IP address, browser type, pages visited (for anonymised statistics) No sensitive data (health, religion, sexual orientation) is collected.

Your data is processed for: · Order and delivery management · Customer service and complaints · Newsletter (only with your explicit consent) · Anonymised website analytics · Compliance with legal obligations (accounting, tax)

Processing of your data is based on: · Performance of the sales contract (order, delivery, warranty) · Your consent (newsletter, non-essential cookies) · A legal obligation (invoicing, accounting) · Sweness's legitimate interest (fraud prevention, service improvement)

Your data is accessible only to authorised people within Sweness, and to our subcontractors for contract performance: · Shopify Payments (payment) — shopify.com · Vercel (hosting) — vercel.com · Colissimo / Chronopost (shipping) · Klaviyo (newsletter) No data is sold to third parties for commercial purposes. No transfer outside the EU is made without appropriate guarantees (Standard Contractual Clauses).

Your data is kept for: · Order data: 10 years (accounting obligation) · Account data: as long as the account is active, then 3 years after last activity · Newsletter: until unsubscription, then deletion within 30 days · Browsing data: maximum 13 months (cookies)

Under GDPR and the French Data Protection Act, you have the following rights: · Right of access: get a copy of your data · Right of rectification: correct inaccurate data · Right to erasure ("right to be forgotten") · Right to restrict processing · Right to portability · Right to object · Right to withdraw consent at any time · Right to lodge a complaint with the CNIL (cnil.fr) To exercise these rights, write to Contact@sweness.com proving your identity. We commit to reply within one month.

sweness.com uses cookies for: · Essential cookies: cart, session, language preferences (no consent required) · Anonymised analytics (no consent required) · Personalisation and marketing cookies: only with your explicit consent via the banner on first visit You can change your preferences at any time via "Manage cookies" at the bottom of the page (coming soon), or in your browser settings.

Sweness implements appropriate technical and organisational measures to protect your data from loss, alteration, unauthorised access or disclosure: · HTTPS encryption (TLS 1.3) · PCI-DSS payment (Shopify Payments) · Hosted on secure infrastructure (Vercel, ISO 27001 certified datacenters) · Password-restricted access · Regular encrypted backups

This policy may be modified at any time to reflect legal changes or new processing. The version in force is the one dated at the top of this page. In case of substantial modification, you will be informed by email or by a notice on the site.