How customer and visitor data is processed for service delivery, payments, fraud prevention, and compliance.
This Data Processing Policy explains how MaisonEleganceUS LLC processes personal data in connection with website operation, customer communications, boutique service requests, invoice-based ordering, payment coordination, fulfillment, fraud prevention, and legal compliance. It supplements our Privacy Policy and is intended to provide additional transparency regarding data-handling practices.
We may process customer and visitor data including identification data, contact data, communication records, order details, fitting and sizing information, delivery information, invoice records, payment-status information, website usage data, device and log data, and compliance-related records needed for fraud prevention, dispute handling, or lawful reporting.
Where applicable under data protection law, we process personal data because it is necessary to enter into or perform a contract with you, to respond to your request prior to entering a contract, to comply with legal obligations, to pursue legitimate business interests such as fraud prevention and service improvement, or on the basis of consent where consent is specifically required.
We obtain personal data directly from customers and site visitors, automatically through website technologies, and from service providers or business partners involved in payment processing, hosting, communications, analytics, logistics, fraud prevention, and customer support.
We may share personal data with trusted service providers acting on our behalf or in connection with the transaction flow, including website hosts, payment processors, communication providers, analytics providers, delivery partners, cloud-storage or productivity tools, legal or accounting advisers, and other vendors necessary to operate the business responsibly and securely. Such disclosures are limited to what is reasonably necessary for the relevant purpose.
For invoice payment and related transaction handling, personal data may be processed for identity verification, invoice reconciliation, payment confirmation, fraud screening, dispute resolution, and recordkeeping. Card or payment credentials may be collected and processed by third-party payment providers rather than directly by us, depending on the payment method used.
We retain personal data only for as long as reasonably necessary to provide services, maintain business records, resolve disputes, comply with legal and tax obligations, protect against fraud, enforce our agreements, and meet payment-provider requirements. When retention is no longer reasonably required, data is deleted, anonymized, or securely archived where appropriate.
We apply reasonable technical and organizational measures designed to reduce the risk of unauthorized access, disclosure, loss, destruction, or misuse of personal data. These may include account permissions, secure provider infrastructure, internal access limitations, process controls, and fraud or anomaly monitoring appropriate to the scale of our business.
Some vendors, systems, or service providers may store or process data outside your local jurisdiction. Where this occurs, we seek to use commercially reasonable safeguards and provider arrangements suitable for lawful and secure business processing.
Subject to applicable law, individuals may request access to their personal data, request correction of inaccurate data, request deletion where legally permissible, or ask questions about how their data is processed. We may request identity verification before responding and may retain data where necessary to complete transactions, prevent fraud, or comply with legal requirements.
Our services are not intended to require the routine collection of sensitive personal data. Customers should avoid sending unnecessary sensitive information unless specifically requested and legitimately required for the service. If such information is sent, it will be handled with appropriate care within the limits of our systems and business processes.
We may revise this Data Processing Policy from time to time to reflect operational, legal, technical, or provider-related changes. The updated version becomes effective when posted on this website.
