Privacy Policy
Last updated: January 15, 2026
This privacy policy describes how Zenthalorimexia SAS (hereinafter "the Company") collects, uses, and protects the personal data of users of the website zenthalorimexia.com. This policy complies with the General Data Protection Regulation (GDPR - EU Regulation 2016/679) and the French Data Protection Act of January 6, 1978, as amended.
1. Data Controller
The data controller is Zenthalorimexia SAS, registered with the Paris Trade and Companies Register under number B 912 345 678, with its registered office at 14 rue de Rivoli, 75004 Paris, France. For any questions regarding the protection of your data, you may contact our Data Protection Officer (DPO) at: dpo@zenthalorimexia.com.
2. Data Collected
As part of our services, we collect the following categories of data: identification data (surname, first name), contact data (email address), browsing data (IP address, cookies, pages visited), and the content of messages sent through our contact form. This data is collected directly from you when you use our form or browse our website.
3. Purposes of Processing
Your data is processed for the following purposes: responding to your inquiries and advisory requests, monitoring your administrative file, improving the quality of our services and website, complying with our legal and regulatory obligations, and informing you about our news and service offers (with your prior consent).
4. Legal Basis for Processing
The processing of your data is based on the following legal grounds in accordance with Article 6 of the GDPR: your consent (Article 6.1.a), the performance of a contract or pre-contractual measures (Article 6.1.b), compliance with our legal obligations (Article 6.1.c), and our legitimate interest in improving our services (Article 6.1.f).
5. Data Retention Period
Your personal data is retained for the period strictly necessary for the purposes for which it was collected. Contact data and messages are retained for a period of 3 years from the last contact. Browsing data (cookies) is retained for a maximum period of 13 months in accordance with CNIL recommendations. At the end of these periods, your data is deleted or irreversibly anonymized.
6. Data Recipients
Your personal data is only transmitted to authorized persons within our company. It is never sold to third parties. However, it may be communicated to our technical subcontractors (hosting, maintenance) who act on our instructions and in compliance with the GDPR, as well as to competent authorities in the event of a legal obligation.
7. Your Rights
In accordance with the GDPR and the French Data Protection Act, you have the following rights: right of access to your data (Article 15 GDPR), right of rectification (Article 16), right to erasure (Article 17), right to restriction of processing (Article 18), right to data portability (Article 20), right to object (Article 21), and right to define directives regarding the fate of your data after your death. To exercise these rights, contact us at dpo@zenthalorimexia.com. You also have the right to lodge a complaint with the CNIL (www.cnil.fr).
8. Data Security
We implement appropriate technical and organizational measures to ensure the security and confidentiality of your personal data, in accordance with Article 32 of the GDPR. Our systems are regularly audited and our employees are trained in data protection.
9. Data Transfers
Your data is hosted within the European Union. In the event of a transfer outside the EU, we ensure that appropriate safeguards are in place (standard contractual clauses approved by the European Commission, or adequacy decision).
10. Policy Modifications
We reserve the right to modify this privacy policy at any time. Any changes will be published on this page with an updated date. We encourage you to consult this page regularly to stay informed of our data protection practices.