Privacy Policy

PRIVACY POLICY — SUMMARY VERSION 

Last updated: June 2026 

At Granit Design, we place great importance on protecting your personal information and respecting your privacy. When you use our websites, online tools, request support, or contact us, certain information may be collected in order to provide you with professional and personalized service. 

This policy applies to Granit Design (Canada) and Granite Design USA (collectively “Granit Design”). By using our websites, platforms, or online tools, by placing an order through them, by doing business with one of our authorized distributors for a project carried out by Granit Design, or by contacting us in any way, you agree to the practices described in this policy. 

Personal Information 

The information collected may include your name, phone number, email address, mailing address, project-related information (dimensions, specifications, site photos), and, when necessary, the last four digits of your credit card. Complete credit card data is never retained by Granit Design: payment processing is handled by secure payment service providers. This data is used solely in the context of our business activities, in particular to respond to your requests, prepare quotes, plan measurement appointments and installation, track your projects and after-sales service, and improve our services. 

When the sale of your project is completed through an authorized distributor, that distributor may transmit to us the information necessary for planning, manufacturing, installation, and follow-up of your project. 

Cookies 

Our websites and platforms use connection cookies and certain technological tools to ensure their proper functioning, improve your browsing experience, analyze site usage, and tailor certain content or advertisements. Non-essential cookies are disabled by default and are only enabled with your consent. Depending on the platform used, you can manage your preferences at any time through our cookie management module or your browser settings, or by contacting us by email. Contact details are provided in the “Contact Us” section. 

Security and Retention 

We implement reasonable security measures to protect your information against unauthorized access, loss, theft, or inappropriate use, and we retain it only for as long as necessary for the purposes for which it was collected, subject to legally prescribed retention periods. 

Your Rights 

You may request access to your personal information, its correction, portability, or the withdrawal of your consent by contacting our Privacy Officer, whose contact details are provided in section 18 (“Contact Us”). The full version of our policy is available below. 

Our privacy policy may be updated from time to time to reflect changes in our practices, services, or applicable privacy requirements. 

PRIVACY POLICY — FULL VERSION 

Last updated: June 2026 

At Granit Design, we place particular importance on protecting the personal information of our clients, partners, distributors, visitors, and users of our websites. We are committed to ensuring confidentiality, security, and transparency in the management of the information entrusted to us. 

This policy explains what information may be collected when you interact with our company, how it is used, with whom it may be shared, and what measures are in place to ensure its protection. 

1. Scope of the Policy and Entities Covered 

This policy applies to both entities of the group:  

Granit Design, headquartered in Quebec (Canada), and Granite Design USA (collectively “Granit Design”, “we”, “our”, “us”). It applies to all of our activities, including planning, design, measuring, custom manufacturing, delivery, installation, and after-sales service for our projects, whether the sale was made directly or through one of our authorized distributors. 

We comply with applicable personal information protection laws, including the Act Respecting the Protection of Personal Information in the Private Sector (Quebec), as amended by Law 25, the Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada, and applicable US state privacy laws governing our activities in the United States. 

By using our websites (granitdesign.com and granitedesignusa.com), our platforms or online tools, by placing your order through them, by communicating with us by any means (in person, by phone, email, SMS, chat, or otherwise), or by doing business with one of our distributors for a project carried out by Granit Design, you agree to the practices described in this policy. 

2. Privacy Officer 

In compliance with Law 25, Granit Design has designated a Privacy Officer. This person is responsible for enforcing this policy and ensuring compliance with applicable laws. You may contact them with any questions, requests to exercise your rights, or complaints: 

Privacy Officer: Karine Martineau 

Email: reception@granitdesign.com  —  Phone: 1-877-373-7111  —  Address: 77 Industrielle Street, Stanstead, Quebec, J0B 3E0 

3. What Personal Information Do We Collect? 

Personal information is any information that makes it possible to identify an individual, directly or indirectly. Depending on the nature of your interactions with Granit Design, we may collect the following: 

  • Identity: first name, last name, customer number; 
  • Contact Information: mailing address, email address, phone number; 
  • Project-Related and Commercial Information: project details, requested dimensions and specifications, plans, installation site photos, site address, order information, purchase history, product preferences; 
  • Financial Information: billing information and payment history. When necessary, only the last four digits of your credit card are retained for reference purposes; complete credit card data is never retained by Granit Design and is processed exclusively by secure payment service providers; 
  • Login Credentials: username, password, security questions; 
  • Technical Information: IP address, device type, web browser, browsing data (cookies, logs); 
  • Communications: emails, SMS messages, chat, phone conversations — these may be recorded or transcribed for quality, training, or file-tracking purposes; 
  • Preferences: your communication preferences and the history of your interactions with us. 

Certain technical information may also be collected automatically when browsing our websites (most of this information does not allow identification of the visitor), such as your IP address, the type of device used, your web browser, the pages visited, time spent on the site, and certain analytical and statistical data. 

4. How Is Information Collected? 

You may provide us with your personal information when interacting directly with us, including: 

  • when making a purchase, requesting a quote, or ordering a sample; 
  • when creating an account or using our online services and tools; 
  • during project planning, measurement appointments at your home or on site, installation, and after-sales follow-up; 
  • when communicating with our teams (in person, by email, phone, SMS, chat, or any other means); 
  • when participating in a contest, promotion, or survey; 
  • through any other means by which you interact with us, regardless of the communication channel used. 

 4.1 Information from our distributors: when the sale of your project is completed through an authorized distributor (kitchen designer, interior designer, retailer), they transmit to us the information necessary for the completion of your project, including your contact details, the installation address, and the project specifications, so that we may carry out planning, measurement, manufacturing, installation, and after-sales follow-up. We then process that information in accordance with this policy. Certain information is also collected automatically when you browse our websites, through cookies and similar technologies (see section 6). 

5. Why Do We Collect Your Information and How Is It Used? 

We collect and use your personal information for serious and legitimate purposes, determined prior to collection, as well as for any other purpose authorized or required by law or to which you have consented. The information collected enables us to: 

  • respond to your information requests; 
  • prepare quotes; 
  • schedule appointments, including for measurements and installation; 
  • manage your orders and projects, including coordination with your distributor; 
  • provide after-sales follow-up and warranty management; 
  • communicate with you; 
  • improve our customer service, website, and services; 
  • ensure the security of our systems; 
  • conduct certain statistical analyses; 
  • send you promotions or newsletters, when you consent to this. 

We always limit collection to the information necessary for the stated purposes, in the context of our business activities. 

6. Connection Cookies and Other Tracking Technologies 

Our websites use connection cookies and certain similar technologies. Some cookies are necessary for the proper functioning of the site, while others are used for analytical, statistical, or advertising purposes, in order to: 

  • improve your browsing experience; 
  • remember certain preferences; 
  • analyze site traffic; 
  • assess the performance of our content; 
  • optimize our advertising campaigns. 

In compliance with Law 25, cookies and technologies that enable identification, location, or profiling are only activated with your consent: non-essential cookies are disabled by default and your consent is requested before their use. 

Depending on the platform used, you can manage your preferences at any time through our cookie management module or your browser settings, or by contacting us by email. Contact details are provided in the “Contact Us” section. 

7. Analytical and Advertising Tools 

We may use analytical or advertising tools to better understand the usage of our websites and to deliver content tailored to our visitors’ interests. These tools may include analytical platforms (such as Google Analytics), social networks, digital advertising services, and audience measurement technologies. These platforms may collect certain information in accordance with their own privacy policies, which we encourage you to review. 

8. With Whom May Your Personal Information Be Shared? 

We never sell your personal information. However, we may disclose it, strictly to the extent necessary, to the following categories of recipients: 

  • Our affiliated entities: Granit Design (Canada) and Granite Design USA may share information necessary for the completion and follow-up of your project; 
  • Our authorized distributors and partners: when your project involves a distributor (sales, coordination), we may exchange with them the information required for the completion of your project; 
  • Our service providers: web hosting and transactional platforms, payment processors, analytical tools, communication service providers, subcontractors involved in delivery or installation. These providers are contractually bound to protect your information and to use it only for the intended purposes; 
  • Competent authorities: when required or authorized by law, including pursuant to a legal obligation, court order, or investigation. 

9. Where Is Your Information Stored, For How Long, and Cross-Border Transfers 

Your personal information is primarily stored in secure databases located in Quebec, according to the systems and service providers used by Granit Design. However, certain information may be disclosed outside of Quebec, in particular to our US entity or to certain service providers. Prior to transferring personal information outside of Quebec, we conduct a privacy impact assessment in accordance with Law 25 to ensure that it receives adequate protection. 

Personal information is retained only for the duration necessary for the purposes for which it was collected, unless a longer retention period is required or permitted by law, including for project management, administrative, tax, and accounting obligations, after-sales service, warranties, and client follow-ups. 

When information is no longer necessary, it is securely destroyed or anonymized in accordance with applicable requirements. 

10. Consent 

We only collect, use, and disclose your personal information with your consent, unless law authorizes or requires us to do otherwise. Depending on the context and the sensitivity of the information, your consent may be express (explicit) or implied: when you transmit your information to us for the completion of your project, your consent to its use for that purpose is implied. 

We obtain your explicit consent before: 

  • sending marketing communications — this consent covers, in general, all of our promotional or informational communications relating to our products, services, offers, events, news, or content that may be of interest to you, regardless of the channel used (email, SMS, or otherwise); 
  • using certain advertising tools; 
  • using non-essential cookies; 
  • sharing certain data with external partners, when such sharing is not necessary for the completion of your project. 

You may withdraw your consent at any time by contacting us or by using the unsubscribe options available in our communications. Withdrawal of consent does not affect processing that is necessary for the performance of your current project or required by law. 

11. What Security Measures Are in Place? 

We implement reasonable security measures, proportionate to the sensitivity of the information, to protect it against unauthorized access, disclosure, loss, theft, alteration, or misuse. These measures may include: restricted access to data on a need-to-know basis, secure passwords, IT protections, backups, firewalls, access monitoring, and internal security practices. Despite our efforts, no computer system can guarantee absolute security. 

12. Management of Privacy Incidents 

In the event of an incident that may present a risk of serious harm, we will take the necessary steps to assess the situation, limit the impact, secure the affected systems, and implement the necessary corrective measures. When required by law, we will promptly notify the affected individuals and the competent authorities, including the Commission d’accès à l’information du Québec or, where applicable, the relevant US authorities. 

13. Your Rights 

Subject to applicable laws, you may: 

  • request access to your personal information; 
  • request the correction of inaccurate, incomplete, or ambiguous information; 
  • withdraw your consent to the use or disclosure of your information; 
  • request clarification regarding the use of your information and the categories of persons having access to it; 
  • request the portability of computerized personal information you have provided to us, in a structured, commonly used technological format; 
  • request the cessation of dissemination of information or its de-indexing, when the conditions provided by law are met; 
  • request the deletion of certain information, when permitted by law. 

If you hold an account on our platform, you may also view and modify certain information directly in your account settings. To exercise your rights, please contact our Privacy Officer at the contact details provided in section 2. We will respond to your request within the timelines prescribed by law (30 days in Quebec). If you are dissatisfied with the handling of your request, you may file a complaint with the Commission d’accès à l’information du Québec or the competent authority in your jurisdiction. 

14. Information Applicable to US Residents 

If you reside in the United States, certain state privacy laws may grant you additional rights, including the right to know what information has been collected about you, to request its deletion or correction, and to opt out of the “sale” or “sharing” of personal information for targeted advertising purposes. Granit Design does not sell your personal information. To exercise these rights, please contact us at the details provided in section 2; we will not penalize you in any way for exercising your rights. 

15. Protection of Minors 

Our services and websites are not intended for persons under the age of 18. We do not knowingly collect personal information from minors without appropriate authorization when required. If we become aware that personal information has been collected from a minor without appropriate authorization, we will take reasonable steps to delete, deactivate, or limit the use of that information, unless its retention is required by law or necessary for legitimate administrative purposes. 

16. External Links and Social Media 

Our websites, platforms, and tools may contain links to external websites or third-party platforms, and we are present on various social media platforms. We are not responsible for the privacy practices of these third-party sites and platforms, and we encourage you to review their respective policies. When you interact with our pages or advertisements on social media, certain information may be collected by these platforms in accordance with their own privacy policies. 

17. Policy Updates 

We may update this privacy policy at any time to reflect changes in our practices, technological changes, legal changes, or improvements to our services. Any updates will be posted on our websites with the corresponding revision date. We encourage you to review it regularly. 

18. Contact Us 

For any questions regarding this policy or the management of your personal information, please contact us: 

Granit Design  &  Granite Design USA 

Privacy Officer: Karine Martineau 

Email: reception@granitdesign.com  —  Phone: 1-877-373-7111  —  Address: 77 Industrielle Street, Stanstead, Quebec, J0B 3E0