Privacy Policy

PRIVACY POLICY

Last updated: [Date]

1. Preamble

The purpose of this Privacy Policy is to inform users of the [Website Name] website and/or the [Application Name] application about how their personal data is collected, used, protected, and stored in accordance with the General Data Protection Regulation (GDPR) (EU 2016/679) and current French legislation.

Use of our site or application implies acceptance of this policy.

2. Data Controller

The data controller is:

[Company Name]

Address: [Full Address]

Email: [Contact Email]

Phone: [Phone Number]

SIRET: [Number]

For any questions regarding personal data protection, you can contact us at the following address:

[GDPR Email]

3. Data Collected

We may collect the following categories of data:

Identification Data

  • First and last name
  • Email address
  • Phone number
  • Mailing address

Account Data

  • User ID
  • Encrypted password
  • User preferences

Payment Data

Payment information is processed directly by our secure payment providers. We never store full credit card numbers.

Technical Data

  • IP address
  • Device type
  • Operating system
  • Browser used
  • Connection data
  • Usage logs

Usage Data

  • Order history
  • Subscription history
  • Application feature usage
  • Customer service interactions

4. Purposes of Processing

The collected data is used for:

  • Creating and managing user accounts;
  • Providing the offered services;
  • Managing orders and subscriptions;
  • Ensuring billing and payments;
  • Providing customer support;
  • Improving our services and user experience;
  • Preventing fraud and securing the platform;
  • Complying with our legal and regulatory obligations.

5. Legal Basis for Processing

Data processing is based on:

  • Performance of a contract;
  • User consent;
  • Compliance with legal obligations;
  • The legitimate interest of the company to improve its services and ensure their security.

6. Data Recipients

Personal data may only be transmitted to the following persons or organizations:

  • Payment providers;
  • Hosts and cloud providers;
  • Technical providers necessary for the service's operation;
  • Administrative or judicial authorities when required by law.

We never sell our users' personal data to third parties.

7. Data Retention

Data is retained only for the period necessary for the purposes for which it was collected.

For reference:

Data Type Retention Period
User account Until account deletion
Billing data 10 years
Connection data Maximum 12 months
Commercial prospecting 3 years after last contact

At the end of these periods, the data is deleted or anonymized.

8. Data Security

We implement appropriate technical and organizational measures to ensure the confidentiality, integrity, and availability of personal data, including:

  • Encryption of sensitive data;
  • Secure hosting;
  • Access control;
  • Regular backups;
  • Monitoring and prevention of unauthorized access.

9. Cookies and Trackers

Our site and/or application uses cookies to:

  • Ensure its proper functioning;
  • Measure audience;
  • Improve user experience;
  • Personalize certain content.

Upon first visit, a consent banner allows the user to manage their preferences regarding non-essential cookies.

The user can change their choices at any time.

10. User Rights

In accordance with the GDPR, each user has the following rights:

  • Right of access;
  • Right to rectification;
  • Right to erasure;
  • Right to restriction of processing;
  • Right to object;
  • Right to data portability;
  • Right to withdraw consent at any time.

Any request can be addressed to:

[GDPR Email]

We commit to responding within a maximum of one month.

11. Account Deletion

The user can request deletion of their account at any time.

Account deletion results in the erasure of personal data, subject to legal obligations requiring their retention.

12. International Transfers

In the event that certain data is transferred outside the European Union, we ensure that appropriate safeguards are in place in accordance with the GDPR (standard contractual clauses, adequacy decision, etc.).

13. Complaints

If the user believes their rights are not being respected, they can file a complaint with:

CNIL – Commission Nationale de l'Informatique et des Libertés

3 Place de Fontenoy

TSA 80715

75334 Paris Cedex 07

https://www.cnil.fr

14. Policy Amendments

We reserve the right to amend this Privacy Policy at any time to reflect legal, regulatory, or technical developments.

Users will be informed of any substantial changes.

15. Contact

For any questions regarding personal data protection:

[Company Name]

Address: [Full Address]

Email: [Contact Email]

Phone: [Phone Number]