Privacy Policy

Last updated: 15/02/2026

This Privacy Policy describes how EuroCrafted SASU, trading as Temporalis ("we", "us", or "our"), collects, uses, and protects your personal information when you visit, use our services, or make a purchase from www.temporalis.tattoo (the "Website"), or otherwise communicate with us.

We are committed to protecting your privacy in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR") and the French Data Protection Act (Loi Informatique et Libertés).

Data controller:
EuroCrafted SASU
61 rue de Lyon, 75012 Paris, France
Email: contact@temporalis.tattoo

---

1. What personal data we collect

The types of personal data we collect depend on how you interact with our Website and services.

Data you provide directly:

• Contact details: name, email address, phone number, postal address
• Order information: billing and shipping addresses, payment confirmation, email, phone number
• Account information: username, password (if you create an account)
• Customer support: any information you include in messages to us
• Newsletter subscription: email address and language preference
• Back-in-stock notifications: email address and product interest

Data collected automatically:

• Usage data: pages visited, time spent on pages, click behaviour, referral source
• Device information: browser type, operating system, screen resolution
• Network data: IP address, approximate location (country/region)
• Cookies and similar technologies: see Section 6 below

Data from third parties:

• Payment processors: payment confirmation from Shopify Payments, PayPal, or Klarna (we do not receive or store your full card details)
• Shopify: platform and analytics data related to your use of the Website

2. Why we process your data and legal basis

We only process your personal data when we have a valid legal basis under the GDPR:

Purpose	Data used	Legal basis (GDPR Art. 6)
Processing and fulfilling orders (payment, shipping, returns, customer notifications)	Contact details, order info, payment confirmation	Performance of a contract (Art. 6.1.b)
Managing your account	Account info, contact details	Performance of a contract (Art. 6.1.b)
Sending transactional emails (order confirmation, dispatch notification, back-in-stock alerts)	Email address, order info	Performance of a contract (Art. 6.1.b)
Sending marketing emails (newsletters, promotions, product launches)	Email address, name, language, purchase history	Consent (Art. 6.1.a)
Improving our Website and services (analytics, A/B testing, user experience)	Usage data, device info	Legitimate interest (Art. 6.1.f)
Personalising advertising (retargeting, audience matching)	Usage data, purchase history	Consent (Art. 6.1.a)
Fraud prevention and security	IP address, order info, payment data	Legitimate interest (Art. 6.1.f)
Legal obligations (accounting, tax compliance, consumer rights)	Order info, invoicing data	Legal obligation (Art. 6.1.c)

3. How long we retain your data

We retain your personal data only for as long as necessary for the purposes outlined above, unless a longer retention period is required by law.

Data category	Retention period	Basis
Customer account data	Duration of the account + 3 years after last activity	CNIL guidelines
Order and invoicing data	10 years from the end of the financial year	French Commercial Code (Art. L.123-22)
Prospect data (newsletter subscribers who have not purchased)	3 years from last contact or interaction	CNIL guidelines
Marketing consent records	Duration of consent + 3 years	Accountability (GDPR Art. 5.2)
Cookies and usage data	13 months maximum	CNIL guidelines
Customer support correspondence	3 years after resolution	Legitimate interest

At the end of the applicable retention period, your data is securely deleted or anonymised.

4. Who we share your data with

We may share your personal data with the following categories of recipients, only to the extent necessary for the purposes described above:

• Shopify Inc. — e-commerce platform, hosting, payment processing, and analytics
• Payment processors — Shopify Payments/Stripe, PayPal, Klarna (to process your payments securely)
• Shipping carriers — to fulfil and deliver your orders
• Email service providers — to send transactional and marketing emails (only with your consent for marketing)
• Analytics providers — to understand how our Website is used and improve it
• Advertising partners — for personalised advertising (only with your consent)

We do not sell your personal data. We require all third-party service providers to process your data only on our behalf and in accordance with our instructions and applicable data protection law.

5. International data transfers

Some of our service providers (including Shopify and payment processors) are based outside the European Economic Area (EEA), primarily in Canada and the United States. When your data is transferred outside the EEA, we ensure appropriate safeguards are in place, including:

• European Commission adequacy decisions (e.g., Canada)
• Standard Contractual Clauses (SCCs) approved by the European Commission

You may request a copy of the applicable safeguards by contacting us at contact@temporalis.tattoo.

6. Cookies

We use cookies and similar tracking technologies on our Website. Cookies are small text files stored on your device that help us improve your browsing experience and analyse Website usage.

Strictly necessary cookies: These are essential for the Website to function (e.g., shopping cart, authentication, security). They do not require your consent.

Analytics cookies: These help us understand how visitors use our Website (e.g., pages visited, traffic sources). They are placed only with your consent.

Marketing and advertising cookies: These are used to deliver personalised advertisements and measure their effectiveness. They are placed only with your consent.

When you first visit our Website, a cookie banner allows you to accept or refuse non-essential cookies. You can change your preferences at any time by clicking the cookie settings link in our Website footer, or by adjusting your browser settings.

In accordance with CNIL guidelines, cookies that require consent are not placed until you have given your explicit agreement, and refusing cookies is as easy as accepting them.

For more information about Shopify's cookies, see: Shopify Cookie Policy.

7. Your rights

Under the GDPR, you have the following rights regarding your personal data:

• Right of access: You may request a copy of the personal data we hold about you.
• Right to rectification: You may ask us to correct inaccurate or incomplete data.
• Right to erasure ("right to be forgotten"): You may request that we delete your personal data, subject to legal retention obligations.
• Right to restriction: You may ask us to restrict the processing of your data in certain circumstances.
• Right to data portability: You may request a copy of your data in a structured, machine-readable format.
• Right to object: You may object to processing based on our legitimate interests or for direct marketing purposes.
• Right to withdraw consent: Where we rely on your consent (e.g., marketing emails, advertising cookies), you may withdraw it at any time. This does not affect the lawfulness of processing carried out before withdrawal.

To exercise any of these rights, please contact us at contact@temporalis.tattoo. We will respond within one month of receiving your request, as required by the GDPR. In complex cases, this period may be extended by two additional months, and we will inform you accordingly.

We may need to verify your identity before processing your request.

8. Marketing communications

We only send marketing emails (newsletters, promotions, product launches) to people who have given their explicit consent to receive them.

You can unsubscribe from marketing emails at any time by clicking the "unsubscribe" link at the bottom of any email, or by contacting us at contact@temporalis.tattoo.

Unsubscribing from marketing emails will not affect transactional emails related to your orders (e.g., order confirmations, dispatch notifications, refund updates).

9. Children's data

Our Website and services are not directed at children under the age of 16. We do not knowingly collect personal data from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at contact@temporalis.tattoo so we can take appropriate action.

10. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encrypted connections (SSL/TLS), secure payment processing, and restricted access to personal data.

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

11. Third-party links

Our Website may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites. We encourage you to read their privacy policies before providing any personal data.

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. The updated version will be posted on this page with the "Last updated" date revised accordingly.

For significant changes, we will make reasonable efforts to notify you (e.g., via email or a notice on our Website).

13. Complaints and supervisory authority

If you have questions or complaints about how we process your personal data, please contact us first:

EuroCrafted SASU
61 rue de Lyon, 75012 Paris, France
Email: contact@temporalis.tattoo

If you are not satisfied with our response, you have the right to lodge a complaint with the relevant data protection authority. For France, this is:

CNIL (Commission Nationale de l'Informatique et des Libertés)
3 Place de Fontenoy, TSA 80715
75334 Paris Cedex 07, France
Website: www.cnil.fr

If you are located in another EU member state, you may also contact your local data protection authority.