Privacy Policy

Last updated: January 2026

1. Introduction

Ristolux Lighting Ltd ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

Company Information:
Ristolux Lighting Ltd
VAT: 948210536 RT 0001
Address: 1000 Rue de la Gauchetière O, Montréal, QC H3B 4W5, Canada
Email: sales@ristolux.shop
Phone: +1 514 871 2284

2. Information We Collect

We may collect information about you in a variety of ways. The information we may collect on the Site includes:

Personal Data

When you interact with us, we may collect personal information such as:

• • Name, email address, and phone number
• • Mailing address, city, province, postal code, and country
• • Company name and business information
• • Project details and specifications
• • Payment information (processed securely by third-party providers)

Automatically Collected Information

When you visit our website, we may automatically collect:

• • Log data (IP address, browser type, pages visited, time spent on pages)
• • Device information (hardware model, operating system, unique device identifiers)
• • Cookies and similar tracking technologies
• • Location data (approximate location based on IP address)

3. How We Use Your Information

We use the information we collect in the following ways:

• • Provide, operate, and maintain our services
• • Process your project requests and deliver lighting design solutions
• • Send promotional emails and newsletters (with your consent)
• • Respond to your inquiries and customer service requests
• • Process payments and prevent fraudulent transactions
• • Improve our website and services based on user feedback
• • Comply with legal obligations and protect our legal interests
• • Create aggregated, anonymized data for analytics and research

4. Legal Basis for Processing (GDPR)

For users in the European Union and United Kingdom, we process your personal data based on the following legal bases:

• • Consent: Where you have given explicit consent to process your data
• • Contract: Where processing is necessary to fulfill our contract with you
• • Legal Obligation: Where we are required by law to process your data
• • Legitimate Interests: Where processing is necessary for our legitimate business interests

5. Disclosure of Your Information

We may share your information in the following situations:

Service Providers

We may share your information with third-party service providers who assist us in operating our website and conducting our business, including hosting providers, email service providers, payment processors, and analytics providers. These providers are contractually obligated to use your information only as necessary to provide services to us.

Legal Requirements

We may disclose your information when required by law, regulation, court order, or other legal process, or when we believe in good faith that such disclosure is necessary to protect our rights, your safety, or the safety of others.

Business Transfer

In the event of a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will provide notice of any such change and obtain consent if required by applicable law.

6. Data Retention

We retain your personal information for as long as necessary to provide our services, fulfill the purposes for which it was collected, or as required by applicable law. When information is no longer needed, we will securely delete or anonymize it. Retention periods vary depending on the type of information and the legal basis for processing.

7. Security of Your Information

We implement comprehensive technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• • SSL/TLS encryption for data in transit
• • Secure servers with firewalls and intrusion detection
• • Access controls and authentication mechanisms
• • Regular security audits and vulnerability assessments
• • Employee confidentiality agreements and training

However, no method of transmission over the Internet or electronic storage is 100% secure. While we use reasonable security measures, we cannot guarantee absolute security of your information.

8. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

GDPR Rights (EU and UK Users)

• • Right of Access: Request access to your personal data
• • Right to Rectification: Correct inaccurate or incomplete information
• • Right to Erasure: Request deletion of your data ("right to be forgotten")
• • Right to Restrict Processing: Limit how we process your data
• • Right to Data Portability: Receive your data in a structured format
• • Right to Object: Opt-out of certain processing activities
• • Right to Lodge a Complaint: Contact your local data protection authority

Canadian Privacy Rights

Under the Personal Information Protection and Electronic Documents Act (PIPEDA) and provincial privacy laws, you have the right to:

• • Access your personal information
• • Request correction of inaccurate information
• • Opt-out of marketing communications
• • Understand how your information is being used

Email Communications

You can opt-out of promotional emails at any time by clicking the "unsubscribe" link in our emails or by contacting us directly. Please note that even if you opt-out of promotional communications, we may still send you transactional emails related to your orders and account.

9. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your experience. Cookies are small data files stored on your device that help us remember your preferences and analyze how you use our site.

Types of Cookies We Use:

• • Essential Cookies: Required for basic website functionality
• • Analytics Cookies: Help us understand how users interact with our site
• • Marketing Cookies: Used for advertising and personalization

You can control cookies through your browser settings. Most browsers allow you to refuse cookies or alert you when cookies are being sent. However, disabling cookies may affect the functionality of our website.

10. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of external sites. We encourage you to review their privacy policies before providing any personal information. This Privacy Policy applies only to information collected through our website.

11. Children's Privacy

Our services are not directed to individuals under the age of 18 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete such information and terminate the child's account.

12. California Privacy Rights (CCPA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA), including:

• • Right to know what personal information is collected, used, and shared
• • Right to delete personal information collected from you
• • Right to opt-out of the sale or sharing of personal information
• • Right to correct inaccurate personal information

To exercise these rights, please contact us using the information provided in the Contact Us section below.

13. International Data Transfers

Your personal information may be transferred to, stored in, and processed in countries other than your country of residence. These countries may have data protection laws that differ from your home country. When we transfer data internationally, we implement appropriate safeguards, including:

• • Standard contractual clauses approved by the European Commission
• • Adequate levels of protection in recipient countries
• • Your explicit consent to international transfer

14. Data Breach Notification

In the event of a data breach that affects your personal information, we will notify you without undue delay as required by applicable law. Notifications will be sent via email or through prominent notices on our website with information about the nature of the breach and steps we are taking to address it.

15. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

Ristolux Lighting Ltd
1000 Rue de la Gauchetière O
Montréal, QC H3B 4W5
Canada

Email: sales@ristolux.shop
Phone: +1 514 871 2284

VAT Number: 948210536 RT 0001

We will respond to your request within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.

16. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. Any material changes will be communicated to you via email or through a prominent notice on our website. Your continued use of our services following the posting of revised terms means you accept and agree to the changes.

The date this Privacy Policy was last updated is listed at the top of this page.