Privacy policy
PRIVACY POLICY
Last updated: May 22, 2025
This Privacy Policy describes how Hors du Commun (the "Site," "we," "us," or "our") collects, uses, and discloses your personal information when you visit, use our services, or make a purchase from www.horsducommunofficiel.com or otherwise communicate with us regarding www.horsducommunofficiel.com. For purposes of this Privacy Policy, "you" and "your" means you as the user of the Services, whether you are a customer, website visitor, or another individual whose information we have collected pursuant to this Privacy Policy.
SCOPE AND APPLICABILITY OF POLICY
The processing of personal data performed through www.horsducommunofficiel.com is carried out in compliance with the applicable European Union legislation, including Regulation (EU) 2016/679 (the General Data Protection Regulation or GDPR), and relevant Belgian data protection laws. The processing is limited to what is strictly necessary for the provision, maintenance, and commercial operation of www.horsducommunofficiel.com. The data controller for the processing of personal data is VECA ENTREPRISES, legally established in Belgium, with address at Overijse, 3090, BE.
DATA COLLECTION AND PROCESSING ACTIVITIES
The processing of personal data may occur directly from the data subject, through automated means, or via third-party processors acting on behalf of the controller. The categories of data collected include, but are not limited to, contact information, account identifiers, transaction and order details, user credentials, and interaction logs, all of which are collected to fulfil contractual obligations, facilitate communications, ensure account security, improve service provision, comply with legal obligations, and uphold legitimate interests. Any failure by the data subject to provide necessary information may hinder the ability of the controller to provide the Services.
Furthermore, data relating to the use of www.horsducommunofficiel.com, such as browser metadata, IP addresses, and access logs, may be automatically collected through the use of cookies or comparable tracking mechanisms for analytical, functional, and marketing purposes. Such data may be processed by third-party platforms including, but not limited to, Shopify and designated analytics providers. Data processing involving cookies shall conform to the lawful bases under Article 6(1)(f) GDPR.
THIRD-PARTY DISCLOSURES AND DATA SHARING PRACTICES
Personal data may be disclosed to carefully selected third-party service providers solely for the purposes of contractual fulfilment, technological infrastructure support, data analytics, customer assistance, and lawful compliance. This includes payment processors, shipping facilitators, and technical vendors. Data may also be transferred or disclosed in cases of legal enforcement requests, court orders, or lawful investigations, and in scenarios involving a corporate restructuring, such as a merger or acquisition.
The following tables specify the categories of personal information processed and their potential recipients:
| Category | Categories of Recipients |
|---|---|
| Identifiers such as basic contact details and certain order and account information | Vendors and third parties who perform services on our behalf (such as Internet service providers, payment processors, fulfillment partners, customer support partners and data analytics providers), business and marketing partners, affiliates |
| Commercial information such as records of products or services purchased | Business and marketing partners |
| Usage Data and internet or similar network activity | Business and marketing partners |
TRANSFER OF DATA TO THIRD COUNTRIES
Where data is transferred outside the European Economic Area, such transfers shall be executed in accordance with the Standard Contractual Clauses adopted by the European Commission or other legally recognized transfer mechanisms ensuring an adequate level of protection.
CHILDREN’S DATA
The Services are not intended for minors under the age of 16. The data controller does not knowingly collect, process, or store personal information relating to individuals below this age threshold. If it is determined that such data has been collected, the legal guardian may request the erasure of said data by contacting the controller through the designated communication channels.
DATA SECURITY AND RETENTION
The controller implements appropriate technical and organizational security measures to ensure a level of security appropriate to the risk. Nevertheless, given the nature of digital communications, no method of transmission over the Internet or method of electronic storage is entirely secure. Data subjects are advised not to transmit sensitive information via unsecured channels. Retention of data is limited to the period necessary to fulfil the purposes for which the data was collected, comply with legal obligations, resolve disputes, and enforce agreements
DATA SUBJECT RIGHTS
Data subjects may exercise the rights conferred under Articles 15 through 22 of the GDPR, which include the right of access, rectification, erasure, restriction, objection, data portability, and the right to lodge a complaint with the competent supervisory authority. Requests for access or rectification must be verifiably submitted to the data controller. Where processing is based on consent, data subjects retain the right to withdraw that consent at any time without affecting the lawfulness of prior processing.
| Right | Description |
|---|---|
| Access / Know | Right to access the personal data held and information regarding its use and disclosure |
| Delete | Right to request the deletion of personal data, subject to applicable limitations |
| Correct | Right to rectify inaccurate or incomplete data |
| Portability | Right to obtain and transmit personal data to another controller in a structured format |
| Opt-out of Sale or Targeted Advertising | Right to prevent the sale or sharing of data for targeted advertising |
| Restriction of Processing | Right to request limitation of data processing in certain cases |
| Withdrawal of Consent | Right to revoke previously granted consent |
| Appeal | Right to appeal a decision to deny a rights request |
| Managing Preferences | Right to modify marketing and communication preferences |
COMPLAINTS AND SUPERVISORY AUTHORITY
Should the data subject believe that the controller’s processing of their personal data is in breach of applicable legislation, the subject has the right to lodge a complaint with the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit - GBA) or any other competent supervisory authority in accordance with Article 77 GDPR.
CONTACT DETAILS
For any requests, communications, or concerns relating to the processing of personal data, the data controller may be contacted as follows:
VECA ENTREPRISES
Overijse, 3090
Belgium
Email: info@horsducommunofficiel.com
© 2025, All rights reserved to Hors du Commun.