AGB

General Terms of Use

Our policy on the protection of your personal data creates a relationship of trust between you and our services and provides you with a positive experience in full transparency.

Thanks to this policy, we can take your needs into account and meet your expectations.

To honour your trust, Hyralia first and foremost guarantees the protection of your personal data and confidentiality towards its customers (hereinafter "your data").

For full transparency towards you and to ensure safe use of the website www.hyralia.com in all available versions and in the related applications (hereinafter the "website www.hyralia.com"), we set out the way in which we process your data so that our services always remain consistent with your rights.

Our policy ensures that all necessary precautions are taken to protect your data from disclosure, loss or alteration. Data is only stored for as long as is necessary for its processing. You can access your data and amend it at any time in your personal area on the website.

Hyralia undertakes to comply with the principles of the General Data Protection Regulation (GDPR) and the applicable regulations, and provides information on the processing carried out, users' rights, retention periods and the security measures taken.

WHO ARE YOU?

When we say "you", we mean any person who uses the website www.hyralia.com, whether as a customer, as an account holder without an order, or as a simple visitor.

FOR WHAT PURPOSES DO WE PROCESS YOUR DATA?

3.1. Data collection

Your data may be collected while browsing the website via cookies, when creating a customer account, placing an order or subscribing to the newsletters (SMS, email).

This data makes it possible to improve your browsing experience, manage orders, prevent fraud, and manage refunds and customer reviews.

3.2. Browsing the website

Data is processed on the basis of your consent in order to enable browsing.

3.3. Order management

Data is used for order management, customer service, after-sales service, deliveries, marketing and customer acquisition.
The legal basis is, depending on the case, the performance of the contract, a legal obligation or consent.

3.4. Payment in instalments

Data is processed in order to offer payment in instalments, on the basis of the performance of the contract and consent for banking data.

3.4.1. Klarna

Certain data may be transmitted to Klarna to assess eligibility for payment in instalments, in accordance with their privacy policy.

3.5. Customer reviews

Data is used for the publication of reviews on the basis of consent or legitimate interest.

3.6. Fraud prevention

Data is used to secure payments and prevent fraud, on the basis of legitimate interest and the performance of the contract.

3.7. Promotional marketing

Data enables the management of advertising campaigns, statistical analyses and promotions, on the basis of consent or legitimate interest.

WHERE DOES YOUR DATA GO?

Data is accessible to the internal departments of Hyralia as well as to the service providers required for the management of orders, payments, deliveries, customer reviews and technical services.

DATA RETENTION

Prospective customers' data is kept for 3 years from the last contact.
Customer data and orders are kept for 5 years in the active archives and then for 5 years in the intermediate archives.
Banking data is kept for the period of validity of the card.

EXERCISING YOUR RIGHTS

You have rights of access, rectification, erasure, restriction, objection, data portability and withdrawal of consent.

Requests should be sent to contact@hyralia.com, together with the information required to identify you.

You may also lodge a complaint with the competent data protection authority.

COOKIES

The website uses essential, analytical, personalisation and advertising cookies.
You can configure their use via your browser.

TRANSFERS OUTSIDE THE EUROPEAN UNION

Certain data may be transferred outside the EU with the appropriate safeguards in accordance with the GDPR.

SECURITY MEASURES

Technical and organisational measures are taken to ensure an appropriate level of security, in particular compliance with the PCI-DSS standard.

PROFILING AND AUTOMATED DECISIONS

Certain automated decisions may be used, in particular for payment in instalments.
You may request human intervention.

POLICY UPDATES

The policy is updated as necessary, and at least every three years.