Made By Iva

Privacy Policy

Privacy policy

Last updated: 11.05.2026

This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit or make a purchase from our website (the “Site”). We operate an ecommerce store using Elementor, WordPress, Hostinger, AllinoneSEO, Litespeedcache,  WpConsent, and WooCommerce.

1. Data Controller

The data controller responsible for your personal data is:

IVA POPSURREAL

SIREN : 978358406

33 Rue Roger Salengro, 78710, Rosny sur Seine

Suzan Valois

admin@madebyiva.com

 

2. Personal Data We Collect

2.1 Information You Provide

We collect personal data when you:

  • Place an order

  •  

  • Subscribe to a newsletter

  • Contact us via forms or email

This may include:

  • Name

  • Email address

  • Billing address

  • Shipping address

  • Phone number (optional)

  • Order details

  • Any information you include in messages sent to us

2.2 Automatically Collected Data

When you visit the Site, we automatically collect:

  • IP address

  • Browser type and version

  • Device information

  • Pages visited

  • Referring URLs

  • Time and date of access

This data is collected through essential cookies and server logs.

 

3. How We Use Your Data

We process your data for the following purposes:

  • To process and fulfill orders

  • To manage payments and prevent fraud

  • To provide customer support

  • To send transactional emails (order confirmations, updates)

  • To operate and secure the website

  • To comply with legal obligations

If you subscribe to our newsletter, we process your email address with your consent.

 

4. Legal Bases for Processing (GDPR)

We process personal data under the following legal bases:

  • Contract performance — to process your orders

  • Legal obligation — tax, accounting, and regulatory requirements

  • Legitimate interest — website security, fraud prevention

  • Consent — newsletter subscriptions, non‑essential cookies

 

5. Sharing Your Personal Data

We share your data only with essential service providers:

5.1 Payment Processors

  • Stripe

  • WooCommerce Payments

5.2 Hosting & Email Services

Our website and email services are hosted by:

  • Hostinger (hosting, server logs, email delivery)

Hostinger may process IP addresses and technical data for security and performance.

5.3 WordPress & WooCommerce

These systems store:

  • Order data

  • Customer account information

  • Basic technical logs

5.4 Elementor

Elementor processes:

  • Page content and layout

  • Form submissions 

  • Essential cookies for editor functionality

5.5 All‑in‑One SEO (AIOSEO)

AIOSEO may process:

  • Structured data

  • Sitemap generation

  • Technical metadata

5.6 Other Third‑Party Tools 

  • Email marketing provider 

  • Security plugins

  • Backup services

We only share the minimum data required for each service.

We never sell your personal data.

6. International Data Transfers

Some processors (e.g., Stripe, hosting providers) may transfer data outside the EU. When this occurs, transfers are protected by:

  • Standard Contractual Clauses (SCCs)

  • Adequacy decisions

  • Other GDPR‑compliant safeguards

 

7. Data Retention

We retain personal data only as long as necessary:

  • Order records: 10 years (legal requirement)

  • Newsletter data: until you unsubscribe

  • Contact form messages: up to 12 months

  • Server logs: up to 12 months

 

8. Your GDPR Rights

You have the right to:

  • Access your data

  • Correct inaccurate data

  • Request deletion (“right to be forgotten”)

  • Restrict processing

  • Object to processing

  • Request data portability

  • Withdraw consent at any time (newsletter, cookies)

To exercise your rights, contact us at: [admin@madebyiva.com]

 

9. Cookies 

Cookies are small text files that are placed on your computer, smartphone, or other device when you visit a website. They are widely used to make websites work more efficiently, to provide a better browsing experience, and to supply information to the operators of a website.
 
Cookies may be set by the website you are visiting (“first-party cookies”) or by third parties whose content or services appear on that website (“third-party cookies”).
Cookies can remain on your device for different periods of time. “Session cookies” exist only while your browser is open and are deleted automatically when you close your browser. “Persistent cookies” survive after your browser is closed and can be used to recognise your device when you re-open your browser and browse the internet again.
 
For more information: Cookie Policy
 

10. Tracking Technologies

For digital products:

  • Downloads are tracked to prevent fraud

  • IP address and timestamp may be logged

  • Files are delivered via secure links and/or email communications

 

11. Children’s Privacy

Our Site is not intended for children. We do not knowingly collect data from minors.

 

12. Security

We implement technical and organizational measures to protect your data, including:

  • SSL encryption

  • Secure hosting

  • Access controls

  • Regular updates

  • Malware and firewall protection

 

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in applicable law, or improvements to our Website. Any changes will be posted on this page with an updated “Last Updated” date.
 
We encourage you to review this Privacy Policy periodically to stay informed.
 

14. Contact Us

 
If you have any questions, concerns, or requests regarding this Privacy Policy or your rights;
 
IVA POPSURREAL
33 Rue Roger Salengro
78710 Rosny sur Seine
France
Email: admin@madebyiva.com
Website: https://madebyiva.com/
Publication Director: Suzan Valois
Hosting Provider: Hostinger