Privacy Policy

Last updated: May 2026

1. Data Controller

Royal Pop Store, independent collector watch retailer.
Contact : contact@royal-pops.store

2. Data Collected

We collect the following data during your purchases and browsing:

• Identification data: name, first name, email address
• Delivery data: postal address, zip code, city, country
• Order data: items purchased, amount, payment method
• Navigation data: IP address, browser type, pages visited (via analytics cookies if consented)

3. Purposes of Processing

Your data is used to:

• Process and ship your orders
• Send you order confirmations and delivery information
• Manage your customer account
• Improve our services and user experience
• Comply with our legal and accounting obligations

4. Legal Basis

The processing of your data is based on the performance of the contract (order), our legitimate interest (service improvement), and your consent for marketing communications and analytics cookies.

5. Data Recipients

Your data may be shared with:

• Supabase (secure database, EU servers)
• Stripe (card payment, PCI-DSS certified)
• Carriers (for the delivery of your order)

No data is sold to third parties.

6. Retention Period

• Order data: 10 years (accounting obligation)
• Account data: until account deletion
• Navigation data (cookies): maximum 13 months

7. Your Rights

Under the GDPR, you have the following rights: access, rectification, erasure, portability, restriction, and objection. To exercise these rights, contact us at contact@royal-pops.store. You may also lodge a complaint with the relevant supervisory authority (cnil.fr).

8. Security

Your data is protected by TLS encryption in transit and stored on secure servers. Card payments are processed directly by Stripe without us having access to your banking details.

9. Cookies

For more information on our use of cookies, please consult our Cookie Policy.