Privacy Policy (GDPR)

PRIVACY POLICY & GDPR

(Last updated: 2025)

1. Data Controller

The website autodiag-france.com is operated by:

SMG-France
Personal business
SIRET: 893 757 898 00018
7 Allée de Chartres, 33000 Bordeaux – France

Email: contact@autodiag-france.com

The Company is responsible for the processing of personal data collected on the site.

2. Data collected

As part of its business, the Company collects and processes different categories of data:

2.1. Data provided directly by the Client

  • Name, surname

  • Mailing address

  • E-mail address

  • Phone number

  • Delivery information

  • Billing information

  • Shopping cart contents and order history

  • Messages sent to customer service

2.2. Automatically collected data

  • IP address

  • Navigation information (pages viewed, duration, clicks)

  • Device and browser used

  • Approximate location data

  • Technical and analytical cookies

  • Shopify unique identifiers / tracking

2.3. Payment-related data

Payments are handled by external providers (Shopify Payments, Stripe, PayPal…).

👉 No banking data is recorded or stored by autodiag-france.com.

3. Purposes of the collection

The Company processes your data for:

3.1. Business Relationship Management

  • Order processing and delivery

  • Billing

  • Sending digital files / downloaded products

  • Customer history management

  • Customer Service & After-Sales Support

  • Fraud prevention

3.2. Technical operation of the site

  • Securing the site

  • Shopify Performance

  • Displaying content and customer account

  • Cookie management

3.3. Marketing and Statistics

  • Facebook Ads / Meta Ads Campaigns

  • Statistical analyzes (Shopify Analytics, Google Analytics, etc.)

  • Newsletters (if you consent)

  • Personalized advertising (if consent is given)

3.4. Legal obligations

  • Accounting archiving

  • Compliance with tax obligations

  • Dispute resolution

4. Legal basis for processing

The treatments performed are based on:

  • Contract (order placement, delivery)

  • Legal obligation (invoicing)

  • Legitimate interest (security, fraud prevention, internal analysis)

  • Consent (non-essential cookies, newsletters, marketing)

5. Shelf life

Personal data is stored:

Category Duration
Order data 5 years
Invoices & Accounting 10 years (legal obligation)
Emails & Customer Support Tickets 3 years
Marketing data 3 years after last contact
Cookies From 1 day to 13 months depending on the type
Inactive customer accounts Removal after 36 months

6. Data Recipients

Data may only be transmitted to service providers necessary for the operation of the site:

  • Shopify Inc. (e-commerce hosting and infrastructure)

  • Payment providers (Shopify Payments, PayPal, Stripe…)

  • Carriers (if physical products)

  • Meta / Facebook Ads

  • Google Analytics (optional)

  • Email sending tools (Shopify Email / Klaviyo if you use one)

These partners comply with GDPR/RGPD regulations.

The data is never sold to third parties.

7. Cookies & trackers

7.1. Necessary cookies

They allow:

  • the proper functioning of the basket

  • customer identification

  • securing the site

➡️ They do not require consent.

7.2. Statistical Cookies

Ex: Shopify Analytics, Google Analytics
➡️ Subject to consent.

7.3. Marketing cookies

Ex: Facebook Pixel (Meta Pixel), retargeting, conversions
➡️ Subject to consent.

The user can:

  • accept, refuse or customize cookies via the banner displayed on the first visit.

  • change your choices at any time via your browser.

8. Your rights (GDPR)

In accordance with the General Data Protection Regulation (GDPR), you have the following rights:

  • Right of access : obtain a copy of your data

  • Right to rectification : correct your inaccurate data

  • Right to erasure : deletion subject to conditions

  • Right to limitation

  • Right to object

  • Right to portability

  • Right to withdraw your consent at any time

To exercise your rights:
📩 contact@autodiag-france.com

You will receive a response within a maximum of 30 days.

9. Data Security

The Company is implementing all necessary technical measures:

  • Shopify secure hosting

  • transaction encryption

  • intrusion protection

  • internal access control

  • regular backups

Payments are secured through PCI-DSS certified providers.

No banking data is stored by the site.

10. Subcontractors located outside the EU

Since Shopify is a North American company, data may be transferred to Canada or the United States.

These transfers are governed by:

  • standard contractual clauses (SCCs) imposed by the European Union

  • additional measures guaranteeing a level of protection equivalent to the GDPR

11. Customer account & deletion

Any user can request:

  • the deletion of his account

  • the recovery of his data

  • the deletion of certain information

📩 Simply send your request to: contact@autodiag-france.com

12. Links to third-party sites

The site may contain links to external sites.
The Company declines all responsibility regarding:

  • the content,

  • the privacy policy,

  • security practices

from these third-party sites.

13. Claims & Disputes

If you disagree with the use of your data, you can contact:

📩 contact@autodiag-france.com

Or file a complaint with the competent French authority:
CNIL – www.cnil.fr

14. Changes to the Privacy Policy

This policy may be modified at any time.
In the event of a major change, a notification will be published on the website.

30-day money-back guarantee*

Subject to conditions

Free delivery within the EU

Maximum payment security

Easy returns within the EU

General Terms and Conditions | Legal Notices

Apple Pay Maestro Mastercard PayPal Visa