Privacy policy


The purpose of this Privacy Policy is to inform you of the use of your Personal Data on the website (hereinafter “the Site”), under the General Data Protection Regulation 2016/679 (hereinafter “GDPR”) and the Computing and Freedoms Act of 6 January 1978, amended.

On the Site, Triballat Noyal processes personal data in its capacity as data controller. The identity and contact details of Triballat Noyal are stated in the “Legal Notices” section.

What is a personal data item?

A personal data item is any information that, directly or indirectly, identifies a natural person. For example, a name, an email address, a phone number or an IP address are Personal Data.

Where does the personal data collected come from?

The data we use are collected directly from you via cookies when you visit the Site, or through the “Contact Us” form.

What personal data do we collect?

We may collect the following categories of personal data directly:
Personal contact details, such as your last name, first name, email address, postal address and phone number (through the “Contact Us” form);

Browsing history, such as the pages visited, the date of your visit, your location during the visit, or the IP address (via cookies)

This list is non-exhaustive. Indeed, any other personal data sent via the “Contact Us” form will be collected by Triballat Noyal.

Why do we collect your personal data?

We collect your personal data for the following purposes:
– to process and respond to your enquiries and to contact you in order to respond to your requests and/or queries (“Contact Us” form);

– to develop and improve our services and the functionality of our Site;

We may also need your personal data to fulfil legal obligations or as part of our contractual relationship with you.

When we collect and use your personal data for the purposes stated below or for any other request, we will inform you thereof before or at the time of collection.

Where necessary, we will ask for your consent to process your personal data. You may withdraw your consent at any time.

What are your rights?

In accordance with Articles 15, 16, 17, 18, 20 and 21 of the GDPR, you have rights that you may exercise at any time. The rights referred to below may only be exercised if proof of identity is communicated.

The right of access to your personal data and the right of rectification (Articles 15 and 16 of the GDPR)
Exercising your right of access allows you to know whether any of your personal data are processed and to check their accuracy. This means that you can access your data at any time and request they are updated in order to rectify them.

The right to erase your personal data (Article 17 of the GDPR)
You have the right to request erasure of your personal data when:
– your personal data are no longer necessary for the purposes for which we collected them;

– you withdraw the consent that you previously gave us to process your personal data, provided that there is no other legal basis for us to continue processing your personal data;

– you object to us processing your personal data;

– your personal data are not processed lawfully;

– your personal data must be erased in order to comply with the legislation in force.

If you wish to erase the personal data that we hold about you, we will take all the measures necessary to satisfy your request provided that we do not have a compelling legitimate reason to process your personal data and that the legal requirements permit us to do so.

The right to restriction of processing of your data (Article 18 of the GDPR)
You have the right to request restriction of processing of your personal data if:
– You believe that the personal data we have about you is inaccurate; or

– Rather than requesting the erasure of unlawfully processed personal data, you prefer us to restrict their processing; or

– We no longer need your personal data for the purposes for which we collected them, but you need the data in order to establish, exercise or defend legal claims; or

– You have objected to the processing of your personal data and are waiting to know whether your interests relating to this objection override the legitimate grounds pursued by Triballat Noyal.

If you wish to restrict the processing that we perform on your personal data, we will take the necessary measures to satisfy your request provided that legal requirements permit us to do so.

The right to personal data portability (Article 20 of the GDPR)
You have the right to receive your personal data in a structured, commonly used and machine- readable format if we have processed your personal data, on the following grounds:
– you have given us your consent to process your personal data;

– we have processed your personal data using automated means (such as profiling).

The right to object to processing of your personal data (Article 21 of the GDPR)
You have the right to object to processing of your personal data at any time.

These rights may be exercised directly:
– via the “Contact Us” form
– by email:
– by letter to Consumer Care – 2 rue Julien Neveu – BP 93106 – 35531 Noyal-sur-Vilaine cedex

Triballat takes great care in protecting Personal Data. However, if you consider that your request has not been satisfied, you may make a complaint to the CNIL at the following address:
Commission nationale de l’informatique et des libertés
Service des plaintes
3 Place de Fontenoy
75334 PARIS CEDEX 07

Who has access to your personal data?

We may share your personal data with the various departments of Triballat Noyal, in particular consumer care, the marketing department, the legal department and the accounting department. Triballat Noyal ensures that your data are communicated securely.

We may be required to communicate your data, for purposes other than those provided for in the Policy, where their communication is required by the law and government authorities.

Where are your personal data hosted?

Your personal data are hosted on servers located in the European Union.

Where processing is performed in a non-EU country, we take all necessary measures to ensure your data are stored securely in compliance with the statutory and regulatory obligations. In particular, we ensure that they are protected in the same way as if they were used within the European Union.

How long are your personal data retained?

We will retain your personal data only for the time that is reasonably necessary for the purposes described in this Policy. The criteria we use to determine how long your personal data are retained are:
– 1 year after the last contact between you and us for a message sent via the “Contact Us” form
– 13 months for cookies from when they are placed on your device (computer, phone, tablet, etc.)
– 6 years for tax documents
– 10 years for accounting documents
– customer reviews and comments are retained until a request for them to be deleted is made
– the entire duration of disputes and until exhaustion of any remedies

How are cookies managed?

You will find all information on this topic in our Cookies Policy.