Privacy Policy

Last Updated: October 6, 2025

Introduction

Welcome to Kaha Miniatures (« we, » « our, » or « us »). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website kahaminiatures.com (the « Site ») and purchase our products.

Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the Site.

1. Information We Collect

1.1 Personal Information You Provide to Us

We collect personal information that you voluntarily provide to us when you:

  • Create an account on our Site
  • Place an order for our products
  • Subscribe to our newsletter
  • Contact us via email or contact form
  • Leave a review or comment

Types of personal information we may collect include:

  • Contact Information: Name, email address, phone number, shipping address, billing address
  • Account Information: Username, password (encrypted)
  • Payment Information: Credit card details, billing information (processed securely by our payment provider)
  • Order Information: Products purchased, order history, preferences
  • Communication Information: Messages you send us, feedback, reviews

1.2 Information Automatically Collected

When you visit our Site, we automatically collect certain information about your device and browsing behavior:

  • Technical Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages visited, time spent on pages, links clicked, referring/exit pages
  • Location Data: General geographic location based on IP address

Technologies We Use:

  • Cookies: Small text files stored on your device. See our Cookie Policy section below.
  • Analytics Tools: Google Analytics to understand how visitors use our Site
  • Tracking Pixels: To measure email open rates and campaign effectiveness

2. How We Use Your Information

We use your personal information for the following purposes:

2.1 Order Processing & Fulfillment

  • Process and fulfill your orders
  • Send order confirmations and shipping notifications
  • Handle returns, refunds, and customer service inquiries
  • Communicate about your orders

2.2 Account Management

  • Create and maintain your user account
  • Allow you to access order history
  • Save preferences and shipping addresses

2.3 Marketing Communications (With Your Consent)

  • Send newsletters with new products, special offers, and updates
  • Share educational content about miniatures and painting techniques
  • Announce exclusive launches and events

You can unsubscribe at any time by clicking the « Unsubscribe » link in any email or contacting us directly.

2.4 Site Improvement & Analytics

  • Analyze Site usage and trends
  • Improve user experience and functionality
  • Develop new products based on customer feedback
  • Test and optimize Site features

2.5 Legal & Security

  • Comply with legal obligations
  • Prevent fraud and unauthorized access
  • Protect our rights and property
  • Enforce our Terms and Conditions

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), our legal basis for collecting and using your personal information depends on the data involved and the context:

  • Contract Performance: Processing necessary to fulfill our contract with you (e.g., delivering your order)
  • Legitimate Interests: We have a legitimate interest in running our business, improving our Site, and preventing fraud
  • Consent: You have given us explicit consent (e.g., subscribing to newsletters)
  • Legal Obligation: We must process your data to comply with the law (e.g., tax records)

4. How We Share Your Information

We do not sell your personal information to third parties. We may share your information with:

4.1 Service Providers

We work with trusted third-party companies to help us operate our business:

  • Payment Processors: To process credit card payments securely (e.g., Stripe, PayPal)
  • Shipping Companies: To deliver your orders (e.g., La Poste, Colissimo, DPD)
  • Email Service Providers: To send newsletters and transactional emails (e.g., Klaviyo, Mailchimp)
  • Analytics Providers: To understand Site usage (e.g., Google Analytics)
  • Hosting Provider: To store our website and data securely

All service providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.2 Legal Requirements

We may disclose your information if required by law or in response to:

  • Court orders or legal processes
  • Government requests
  • Protection of our rights or safety
  • Investigation of fraud or illegal activities

4.3 Business Transfers

If Kaha Miniatures is acquired, merged, or sold, your information may be transferred to the new owner as part of the transaction. We will notify you of any such change.

5. International Data Transfers

Kaha Miniatures is based in France. If you are accessing our Site from outside the EEA, please be aware that your information may be transferred to, stored, and processed in France and other countries.

We ensure that appropriate safeguards are in place to protect your information, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions recognizing equivalent data protection

6. Data Retention

We retain your personal information only as long as necessary for the purposes outlined in this Privacy Policy:

  • Order Information: 10 years (for tax and accounting purposes, as required by French law)
  • Account Information: Until you request account deletion
  • Marketing Data: Until you unsubscribe or request deletion
  • Analytics Data: 26 months (Google Analytics default)

After the retention period, we will securely delete or anonymize your information.

7. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

7.1 GDPR Rights (EEA Residents)

  • Right to Access: Request a copy of your personal data we hold
  • Right to Rectification: Correct inaccurate or incomplete information
  • Right to Erasure (« Right to be Forgotten »): Request deletion of your data in certain circumstances
  • Right to Restriction: Limit how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or direct marketing
  • Right to Withdraw Consent: Withdraw consent at any time (e.g., unsubscribe from emails)
  • Right to Lodge a Complaint: File a complaint with your local data protection authority

7.2 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

Email: fancagne@gmail.com
Subject: Data Privacy Request

We will respond to your request within 30 days (or as required by applicable law).

8. Cookies Policy

8.1 What Are Cookies?

Cookies are small text files placed on your device when you visit our Site. They help us provide a better user experience.

8.2 Types of Cookies We Use

Essential Cookies (Required)

  • Enable basic Site functions (shopping cart, checkout, login)
  • Cannot be disabled without affecting Site functionality

Performance Cookies (Analytics)

  • Google Analytics: Track Site usage and performance
  • Help us understand visitor behavior and improve the Site

Preference Cookies

  • Remember your language and region preferences
  • Save your shopping preferences

8.3 Managing Cookies

You can control cookies through:

  • Browser Settings: Most browsers allow you to block or delete cookies
  • Cookie Consent Banner: Adjust your preferences when you first visit our Site
  • Opt-Out Tools: Google Analytics opt-out: https://tools.google.com/dlpage/gaoptout

Note: Disabling essential cookies may affect Site functionality (e.g., shopping cart won’t work).

9. Security of Your Information

We implement appropriate technical and organizational measures to protect your personal information:

  • Encryption: SSL/TLS encryption for data transmission (HTTPS)
  • Secure Payment Processing: We do not store credit card details; payment processors handle this securely
  • Access Controls: Limited access to personal data on a need-to-know basis
  • Regular Security Audits: We review and update our security practices
  • Password Protection: User passwords are encrypted (hashed)

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

10. Third-Party Links

Our Site may contain links to third-party websites (e.g., Instagram, payment processors, shipping tracking). We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.

11. Children’s Privacy

Our Site and services are not intended for children under 18 years of age. We do not knowingly collect personal information from minors.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. We will delete such information promptly.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect:

  • Changes in our practices
  • Updates to applicable laws
  • New features or services

When we make changes:

  • We will update the « Last Updated » date at the top
  • Significant changes will be notified via email or a prominent notice on our Site
  • Continued use of the Site after changes constitutes acceptance

We encourage you to review this Privacy Policy periodically.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Kaha Miniatures
Email: fancagne@gmail.com
Privacy Email: fancagne@gmail.com
Website: https://kahaminiatures.com

Data Protection Officer (if applicable):
[Name and contact if you have a DPO]

14. Data Protection Authority

If you are located in the EEA and believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with your local supervisory authority.

France – CNIL (Commission Nationale de l’Informatique et des Libertés)
Website: https://www.cnil.fr
Email: contact@cnil.fr
Phone: +33 1 53 73 22 22

Your Consent

By using our Site, you consent to our Privacy Policy and agree to its terms.

Summary of Key Points

✅ We collect personal information necessary to fulfill orders and improve our services
✅ We do not sell your personal information to third parties
✅ You can unsubscribe from marketing emails at any time
✅ You have rights to access, correct, and delete your data (GDPR)
✅ We use cookies to enhance your experience (you can manage preferences)
✅ We implement security measures to protect your information
✅ Contact us anytime with privacy questions or requests

Thank you for trusting Kaha Miniatures with your personal information. We are committed to protecting your privacy while providing you with exceptional mythological miniatures.

🐉 Where Legends Come to Life

Appendix: Definitions

Personal Information: Any information that can identify you as an individual (name, email, address, etc.)

Processing: Any operation performed on personal data (collection, storage, use, disclosure, deletion)

Data Controller: The entity that determines the purposes and means of processing personal data (Kaha Miniatures)

Data Processor: Third parties that process data on behalf of the controller (service providers)

GDPR: General Data Protection Regulation – EU privacy law

EEA: European Economic Area (EU member states + Iceland, Liechtenstein, Norway)

This Privacy Policy is provided in English for international customers. A French version (Politique de Confidentialité) is available upon request.