GDPR up to date
Your Data Protection Rights (GDPR)
At PILOBOOTS , we take the protection of your personal data very seriously. In accordance with the General Data Protection Regulation (GDPR) , as well as other international legislation such as LGPD (Brazil), CCPA/CPRA (California), VCDPA (Virginia), APPI (Japan) and PIPEDA (Canada), this page allows you to exercise your rights regarding your personal information.
1. Right to rectify data
If the information we hold about you is incorrect or incomplete, you have the right to have it corrected. To do this, contact us at hello@piloboots.com with the details to be amended. We will make the necessary corrections within 30 days.
2. Right to data portability
You have the right to receive a copy of your personal information in a structured, commonly used and machine-readable format (e.g. CSV format ). To exercise this right, please contact us at
You will receive your data within 30 days of your request.
3. Rights of access, erasure and limitation
You may exercise the following rights regarding your personal information:
-
Right of access : Request a report detailing all the personal information we store about you. Send your request to
hello@piloboots.com and we will provide you with a full report within 30 days.
- Right to erasure (right to be forgotten): You may request that your personal information be deleted from our systems. This will also result in the deletion of your account and associated data, making your account inaccessible. Some data may be retained for legal or tax reasons. To request deletion of your data, contact us at
hello@piloboots.com
- Right to restriction of processing: If you consider that your data is incorrect or that its processing is unlawful, you can request the temporary suspension of the processing of your data until a solution is found.
4. Right to object
You have the right to object to the processing of your personal information, in particular in the context of processing based on legitimate interest or in the context of targeted advertising . To exercise this right, please contact us at
If you object to processing for direct marketing purposes, you can also opt out by following the unsubscribe instructions in our marketing communications.
5. Consequences of refusal of treatment
If you refuse the processing of certain data or limit their use, certain features of the site, such as the ability to place orders or access certain information, may be restricted. This includes disabling certain non-essential cookies.
6. Data retention
We retain your personal information for as long as necessary to fulfill the purposes described in our Privacy Policy , such as processing orders and managing customer relationships, unless there is a legal or tax obligation to retain it for longer.
7. International data transfers
Your personal information may be transferred and processed outside the European Union, including in countries such as Canada or the United States. We ensure that these transfers comply with applicable legal requirements, using standard contractual clauses or other safeguards in accordance with European legislation.
8. Data security
We implement appropriate technical and organizational security measures to protect your information from unauthorized access, alteration, disclosure or destruction. These measures include data encryption, the use of SSL protocols for transactions and regular security audits.
9. Procedure in the event of data theft or breach
In the event of a personal data breach, we take the following steps in accordance with GDPR:
1) Notification to the CNIL : If we notice a violation likely to affect the rights and freedoms of individuals, we will inform the CNIL within 72 hours of discovering the incident.
2) User information : If the breach poses a high risk to your rights and freedoms (e.g. theft of credentials or sensitive data), we will inform you as soon as possible and provide you with recommendations to protect your data.
3) Corrective measures : We will take immediate steps to limit the impact of the breach (strengthening security, updating passwords, increasing monitoring of systems).
10. Management of automated decision-making and profiling
We do not carry out any automated decision-making with legal or significant effects on our users, nor do we carry out systematic profiling. If such practices were to be implemented, we will inform you in advance and offer you the possibility to object to this type of processing.
11. Exercising your rights
For any request concerning your personal data or to exercise one of your rights (access, rectification, erasure, portability, limitation, opposition), please contact us:
By email:We are committed to responding to all your requests within 30 days, in accordance with current regulations.
12. Your additional rights depending on your region
In addition to the GDPR, other data protection laws may apply depending on where you live. For example:
- CCPA/CPRA (California): You have the right to know the categories of personal information we collect, to request its deletion, and to object to the sale of your data.
- LGPD (Brazil): You have the right to request confirmation of the existence of the processing of your data, their access, correction or deletion.
- PIPEDA (Canada): You have the right to access your data and request its correction if it is inaccurate.
If you would like to know more about your rights under the legislation in your region, please do not hesitate to contact us.
13. Destruction or anonymization of data
When your personal information is no longer necessary for the purposes for which it was collected, we will delete or anonymise it, unless the law requires us to keep it for a longer period.
14. Additional information
We use an application to ensure compliance with data protection regulations, including GDPR , LGPD , CCPA , and other similar legislation. This application collects information such as your IP address and email address to process your rights requests.
To learn more about our data protection practices, please review our Privacy Policy or contact us directly.