Baccarat has created this Privacy and Personal Data Protection Policy in order to describe its policy and practices regarding the collection, use and disclosure of your personal data. These data were obtained via this website, uk.baccarat.com (hereafter the “Website”), based on a data collection form you wanted to fill in in our boutiques, via our Customer Service, via social networks, via our digital apps or at events. These data are used for our customer and prospect management in accordance with the rules defined in the French data protection law referred to as the “Loi Informatique et Libertés” of 6 January 1978, as amended, and Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data (hereafter the “GDPR”).
Baccarat SA is the data controller, as defined by the personal data protection regulations, in particular the French data protection law referred to as the “Loi Informatique et Libertés” of 6 January 1978, as amended, and the GDPR.
Baccarat SA is a French public limited company (société anonyme) registered with the Company Register of Nancy under number 760 800 060.
Its registered office is located at: 20, rue des Cristalleries – Baccarat (54120) – France.
Its commercial headquarters is located at: 11, Place des Etats-Unis in Paris (75116) - France.
“Personal data” means any information that identifies you directly or indirectly.
The data collected may include the following:
i. In general, you may browse through our Website without providing any information that identifies you personally. However, we may ask you to provide personal information that identifies you in certain parts of the Website. In some cases, if you choose not to provide the information requested, you may not be able to access all the Website’s functionalities or pages. With regard to our Website, and if you accept, Baccarat will create a database that compiles the data you provide in order to allow you to register and create a “user account”, to process and track your Order, and to communicate specific offers Baccarat proposes.
When you visit our Website, our web server automatically collects anonymous data, such as connection logs and IP addresses. We may use the information collected automatically for a certain number of objectives, for example to improve our Website design, product assortment, customer service and special offers.
Baccarat may also retain copies of communications and correspondence between us to monitor customer relations.
The retention period for credit/bank card data depends on the intended purpose:
iii. In its boutiques, Baccarat may also offer to collect your personal data directly from you via a data collection form.
iiii. Regardless of the collection method, mandatory information is identified by an asterisk when you fill in the form. When optional data is collected, the potential consequences of failing to provide these data are indicated.
iiiii. With regard to a job application, the following information may be collected:
iiiiii. By creating an account on Baccarat’s website, you confirm that you are of legal age.
Your data may be collected and/or received via the following points of contact:
These objectives may include the following:
The legal basis for the processing of data is, depending on the type of data, either a concluded sales agreement, a legal obligation, your explicit consent or Baccarat’s legitimate interest in improving its offering, better understanding its customers, optimizing its communication or fighting fraud. When the legal basis for processing is your explicit consent, you may exercise your right to withdraw your consent at any time by contacting our data protection officer or by clicking on the de-registration link indicated in all of our communications.
If you are a “customer” (i.e. if you have already purchased a Baccarat product in a boutique or online): in the framework of customer management, the data are retained for a maximum period of 10 years from the last commercial interaction in order to provide you with optimal service. This period will be renewed at the time of each new interaction with Baccarat.
If you are a “prospect” (i.e. you have never purchased a Baccarat creation but are interested in the brand): your data will be retained for a maximum period of three years as of the last time you contacted Baccarat. This period will be renewed each time you interact with Baccarat.
If you are in contact with the Communication Department: your data will be retained for a maximum period of 10 years from the time of your first contact; this period will be renewed at the time of each new interaction with Baccarat (for example, a request for information on Baccarat).
If you are a job applicant (i.e. you apply for a job Baccarat is offering or you send an unsolicited application): your data will be retained for a maximum period of two years from the time you applied.
When the maximum data retention period expires, we delete these data from our systems or anonymize them.
The data on Baccarat’s customers and prospects are centralized in our partner’s data warehouse. The protection of this data is strictly controlled and complies with the GDPR.
To ensure a sufficient level of protection when your data are transferred, they are governed by standard contractual clauses established by the European Commission that you may consult by contacting our data protection officer.
Your data are not transmitted to third parties for commercial purposes.
The personal data provided on the Website are transmitted via a secure server that uses the “Secure Socket Layer” (SSL) encryption technology. When the URL’s “http” letters turn into “https”, the “s” indicates that you are in an SSL-secured zone. Your browser may then display a pop-up message indicating that you are about to enter a secure area.
We undertake to process your personal data in accordance with high security standards. We therefore take physical, electronic and administrative measures to ensure the security and accuracy of personally identifiable information that we collect, in particular by limiting the number of individuals who have physical access to our servers and databases (notably, password protection to prevent unauthorized access).
Our Website uses encryption technology, such as Secure Sockets Layer (SSL), to protect your personal data when they are transferred. The SSL system encrypts the information on your order, such as your name, address and bank card number. Our Customer Service also uses a secure private network.
Under the GDPR, your rights over your personal data are as follows:
You may at any time ask Baccarat to exercise your rights referred to above or ask questions on the manner in which your personal data are processed and used:
Our objective is to provide full, accurate and up-to-date information on our Website. Unfortunately, our Website may contain typographical errors, inaccuracies or omissions, some of which may relate to prices and availability. Some information may not be complete or up to date. We reserve the right to correct all errors, inaccuracies or omissions and to change or update the information at any time without notice. We decline all liability for these errors.
Baccarat does not offer any express or implicit guarantee regarding the Website, its content or the information thereon. The Website is provided “as is”, with all of its defects. Unless provided otherwise by law, Baccarat, its subsidiaries, as well as its directors, executives, employees, agents, entrepreneurs, successors and their assigns, may not be held liable for any damage resulting from or related to the use of this Website or any other website linked thereto. This liability limitation applies to any direct or indirect damage (such as a loss of profits, a business shutdown, a loss of data or information) that you or others may suffer.
Baccarat reserves the right to suspend Website operations at any time.