D
DBShopi
Back to home

GDPR compliance

Our commitment to protecting your data

GDPR Compliant

DBShopi, operated by NO4MAT SAS (France), is fully compliant with the European Union's General Data Protection Regulation (GDPR) and French data protection laws.

Our GDPR Commitment

As a French company, we take data protection very seriously. Here's how we ensure compliance:

1. Lawful Processing

We process data only on valid legal bases:

Legitimate Interest

For publicly accessible B2B data used for legitimate commercial prospecting.

Consent

For marketing communications and newsletters.

Contract Performance

To provide services ordered by our customers.

Legal Obligation

To comply with our accounting and tax obligations.

2. Data Sources

Our database data is collected exclusively from publicly accessible sources:

  • Public websites of Shopify stores
  • Contact pages and legal notices
  • Professional profiles on LinkedIn and business social networks
  • Public business registries
  • WHOIS records

3. Data Subject Rights

Anyone whose data is in our database can exercise the following rights:

Right of Access

Obtain confirmation of processing and a copy of data

Right to Rectification

Correct inaccurate or incomplete data

Right to Erasure

Request deletion of data (under certain conditions)

Right to Object

Object to processing for prospecting purposes

Right to Portability

Receive data in a structured, reusable format

4. Security Measures

We implement appropriate technical and organizational measures:

  • Data encryption in transit (HTTPS/TLS)
  • Data encryption at rest
  • Strict access controls
  • Regular secure backups
  • Staff training on data protection
  • Regular security audits

5. International Transfers

Data is hosted in the European Union. In case of transfer outside the EU, we ensure adequate protection through Standard Contractual Clauses or other approved mechanisms.

6. Response Time

We commit to responding to any request within one month, in accordance with GDPR. This period may be extended by two additional months for complex requests.

7. Exercise Your Rights

To exercise your GDPR rights, contact our Data Protection Officer:

Email: dpo@no4mat.com

Company: NO4MAT SAS - France

8. Complaints

If you believe your rights have not been respected, you can file a complaint with the CNIL (French Data Protection Authority):

CNIL
3 Place de Fontenoy
TSA 80715
75334 PARIS CEDEX 07
www.cnil.fr