• fr
  • en
    • Retour à l'accueil

    Privacy policy

    Last updated: June 4, 2026

    This privacy policy describes how Boutique Jean Marie Dionne (hereinafter “we,” “our,” or “the Shop”) collects, uses, and protects your personal information when you visit our website at https://shop.jeanmariedionne.com and make purchases from us.

    By using our site, you accept the practices described in this privacy policy. We encourage you to read it carefully.

    1. Data Controller

    Boutique Jean Marie Dionne
    Website: https://shop.jeanmariedionne.com
    Main site: https://jeanmariedionne.com

    For any questions regarding this policy or the processing of your personal data, you may contact us through the contact form available on our site.

    2. Personal Data We Collect

    We only collect the information necessary for the proper operation of our online shop and the processing of your orders. This information is provided directly by you during your interactions with our site.

    2.1 When placing an order

    • First and last name
    • Shipping and/or billing address
    • Email address
    • Phone number (if provided)
    • Payment information (processed securely by our payment processor — we do not store your bank card details)
    • Purchase and order history

    2.2 When creating an account

    • Username
    • Email address
    • Password (encrypted)

    2.3 Data collected automatically

    While you browse our site, certain technical data may be collected automatically:

    • IP address
    • Browser type and version
    • Pages visited and time spent (for security and proper site operation purposes only)
    • Date and time of the visit

    We do not use any analytics tracking tools (such as Google Analytics), any advertising tracking pixels, or any third-party tracking cookies on our site. Your browsing remains private.

    3. Cookies

    Our site only uses cookies that are essential to the proper functioning of the online shop. These cookies are strictly necessary and cannot be disabled without affecting the core features of the site.

    The essential cookies we use include, among others:

    • Session cookie: keeps your session active while you browse.
    • Shopping cart cookie: remembers the contents of your cart during your visit.
    • Authentication cookie: keeps you logged in when you are connected to your account.

    We do not use any advertising, social media, or behavioral analytics cookies.

    4. Purposes of Processing Your Data

    We use your personal data solely for the following purposes:

    • Processing and shipping your orders: order confirmation, preparation, delivery, and tracking.
    • Communication related to your purchases: sending order confirmations, receipts, and updates on the status of your delivery.
    • Managing your customer account: access to your order history and your personal information.
    • After-sales service: processing return, exchange, or refund requests.
    • Legal and tax obligations: retention of invoices and transaction data in accordance with applicable laws.
    • Site security: detecting and preventing fraud and unauthorized access.

    5. Legal Basis for Processing

    The processing of your personal data is based on the following legal grounds:

    • Performance of a contract: processing is necessary to fulfill your order and provide our services.
    • Legal obligation: we are required to retain certain data for tax and accounting purposes.
    • Legitimate interest: the security of our site and fraud prevention constitute a legitimate interest justifying the processing of certain technical data.
    • Consent: for any marketing communications (where applicable), we will obtain your prior consent.

    6. Sharing Your Personal Data

    We never sell, rent, or share your personal data for commercial purposes. Your information may, however, be shared with the following third parties, strictly as necessary to deliver our services:

    • Carriers and delivery services: your name and address are passed on to the carrier in order to deliver your order.
    • Payment processors: your payment information is handled by secure payment providers (e.g., Stripe, PayPal, or other). These providers are subject to their own privacy policies.
    • Site host: our site is hosted by Hostinger, which may have access to certain data as part of providing hosting services.
    • Legal authorities: if required by law, we may have to disclose your data to the competent authorities.

    All our partners are required to process your data in accordance with applicable personal data protection laws.

    7. Data Retention

    We retain your personal data for as long as necessary for the purposes described in this policy:

    • Order data: kept for 7 years for legal and tax purposes.
    • Customer account data: kept as long as your account is active. If you delete your account, your data is erased within a reasonable timeframe, unless there is a legal retention obligation.
    • Technical data (logs, IP): kept for a maximum of 12 months.

    8. Security of Your Data

    We implement appropriate technical and organizational measures to protect your personal data against any unauthorized access, loss, destruction, or disclosure. These measures include, among others:

    • SSL/TLS encryption of all communications between your browser and our server.
    • Passwords stored in encrypted form (hashing).
    • Restricted access to personal data, limited to authorized personnel only.
    • Regular updates to the platform and its extensions to fix security vulnerabilities.

    Although we take all reasonable precautions, no data transmission or storage system is entirely foolproof. In the event of a security incident affecting your data, we undertake to notify you within the timeframes required by applicable law.

    9. Your Rights

    In accordance with applicable personal data protection laws (notably Quebec’s Law 25 and the GDPR for residents of the European Union), you have the following rights:

    • Right of access: you may request a copy of the personal data we hold about you.
    • Right to rectification: you may request the correction of any inaccurate or incomplete information.
    • Right to erasure: you may request the deletion of your personal data, subject to our legal retention obligations.
    • Right to data portability: you may request to receive your data in a structured, machine-readable format.
    • Right to object: you may object to the processing of your data in certain circumstances.
    • Right to restriction: you may request the restriction of the processing of your data in certain cases.
    • Right to withdraw your consent: if processing is based on your consent, you may withdraw it at any time, without affecting the lawfulness of processing carried out before such withdrawal.

    To exercise any of these rights, please contact us through the contact form available on our site. We undertake to respond to your request within 30 days.

    10. Links to Third-Party Sites

    Our site may contain links to third-party websites. These sites have their own privacy policies, for which we accept no responsibility. We encourage you to review the privacy policy of any third-party site you visit.

    11. Changes to This Policy

    We reserve the right to modify this privacy policy at any time. Any changes will be posted on this page with a revised update date. In the event of significant changes, we will make every effort to notify you by email or through a clearly visible notice on our site.

    We encourage you to review this page regularly to stay informed about how we protect your information.

    12. Contact Us

    If you have any questions, concerns, or requests regarding this privacy policy or the processing of your personal data, please do not hesitate to contact us:

    Boutique Jean Marie Dionne
    Website: https://shop.jeanmariedionne.com
    Contact form: shop@jeanmariedionne.com

    This privacy policy was drafted in compliance with Quebec’s Act to modernize legislative provisions respecting the protection of personal information (Law 25) and the principles of the General Data Protection Regulation (GDPR).