Last updated: April 11, 2026

Privacy Policy

1. Data Controller

CrownMakers SAS, registered in Paris, France, is the data controller for personal data collected on www.crownmakers.com.

DPO contact: privacy@crownmakers.com

2. Data We Collect

We collect the following data:

  • Contact form: name, email address, message.
  • Browsing data (with your consent): pages visited, session duration, traffic source via Google Analytics 4.
  • Technical data: IP address (anonymised), browser type, browser language.

3. Purposes of Processing

  • Responding to your contact requests (legal basis: legitimate interest).
  • Improving our website and services (legal basis: consent for analytics cookies).
  • Complying with our legal obligations.

4. Cookies and Trackers

We use Google Analytics 4 (GA4) to measure site audience. These cookies are only placed after your explicit consent, in accordance with GDPR.

We use Google Consent Mode v2, which respects your choice even if you decline cookies. You can change your preferences at any time via the cookie banner.

5. Data Retention

  • Contact data: 3 years from the last interaction.
  • Analytics data (GA4): 14 months (Google default setting).
  • Server logs: maximum 12 months.

6. Data Sharing

We never sell your personal data. It may be shared with:

  • Google LLC (GA4) — anonymised data, transfer governed by EU Standard Contractual Clauses.
  • Scaleway SAS — data hosted in France (fr-par region).
  • Cloudflare, Inc. — CDN and network security.

7. Your Rights (GDPR)

Under GDPR, you have the following rights:

  • Right of access: obtain a copy of your data.
  • Right of rectification: correct inaccurate data.
  • Right to erasure: request deletion of your data.
  • Right to object: object to processing of your data.
  • Right to data portability: receive your data in a structured format.
  • Right to withdraw consent: at any time for consent-based processing.

To exercise your rights: privacy@crownmakers.com
To lodge a complaint: www.cnil.fr (French supervisory authority)

8. Security

We implement appropriate technical and organisational measures to protect your data: TLS encryption, server-side API tokens, restricted system access.

9. Changes to This Policy

This policy may be updated. The last modification date is shown at the top of this page. We will notify you of any significant changes.