Paradisiak

Privacy Policy

Introduction

Paradisiak places paramount importance on protecting your personal data and respecting your privacy.

This policy describes the personal data processing carried out when using the paradisiak.com website, in compliance with the General Data Protection Regulation (GDPR) and applicable data protection laws.

Data Controller: Paradisiak Contact: contact@paradisiak.com

Scope

This policy covers only data processing conducted on the paradisiak.com website (contact forms, resource downloads, cookies, navigation statistics).

The complete identity of the data controller can be found in our Legal Notice.

Data Collected on the Website

Contact Forms

When you use our contact forms, we collect:

  • First and last name
  • Email address
  • Phone number (optional)
  • Company and job title (optional)
  • Message content

Navigation and Audience Measurement

To improve your experience and understand how our site is used, we collect:

  • Pages viewed
  • Navigation events
  • Cookie identifiers
  • IP address (anonymized)
  • Technical information (browser, operating system)

Purposes and Legal Bases

Response to Contact Requests

Legal Basis: Legitimate interest or pre-contractual measures Purpose: Respond to your information requests, quotes, or demonstration requests

Audience Measurement

Legal Basis: Consent (for non-essential trackers) Purpose: Analyze site usage and improve our services via Google Analytics 4

Website Security

Legal Basis: Legitimate interest Purpose: Protect the website against attacks and ensure its availability

Subcontractors and Service Providers

We work with the following service providers for managing our website:

Google Analytics 4 (Google Ireland / Google LLC)

Service: Audience statistics and navigation analysis Location: European Union (Ireland) with possible transfers to the United States Safeguards: Consent banner, anonymized IP, Standard Contractual Clauses (SCC) + supplementary measures

HubSpot (HubSpot Ireland / HubSpot, Inc.)

Service: Contact forms and request management (CRM) Location: European Union (Ireland) with possible transfers to the United States Safeguards: Standard Contractual Clauses (SCC) + enhanced security measures

Web Hosting (Vercel)

Service: Website hosting Location: European Union and/or United States depending on configuration Safeguards: Secure infrastructure compliant with industry standards

For the detailed list of our subcontractors: contact@paradisiak.com

Data Recipients

Access to your personal data is limited to:

  • Authorized internal teams (marketing, sales, technical support)
  • Our service providers mentioned above, bound by GDPR-compliant contracts
  • Legal authorities in case of official request

We never sell or rent your personal data to third parties.

Retention Periods

We retain your personal data only for the duration necessary for the purposes pursued:

  • Prospects / contact forms: Up to 3 years after the last contact
  • Resource downloads: 3 years after the last interaction
  • Analytics cookies: Maximum 13 months (Google Analytics)
  • Technical cookies: Session duration or according to their nature
  • Security logs: Maximum 1 year

Beyond these periods, your data is either deleted or anonymized.

Cookies and Trackers

Upon arrival on the site, a consent banner allows you to accept, refuse, or configure non-essential cookies.

Types of Cookies Used

Strictly Necessary Cookies (no consent required):

  • Session cookies and language preference
  • Security cookies (protection against attacks)

Analytics Cookies (consent required):

  • Google Analytics 4: audience measurement and navigation statistics

Marketing Cookies (consent required):

  • HubSpot: tracking interactions with our forms

You can modify your choices at any time via the cookie management link in the footer, or from your browser settings.

Consent Retention Period: Maximum 13 months, in accordance with data protection authority recommendations.

Your GDPR Rights

In accordance with GDPR, you have the following rights regarding your personal data:

  • Right of access: Obtain a copy of your data
  • Right to rectification: Correct inaccurate or incomplete data
  • Right to erasure: Request deletion of your data
  • Right to restriction: Limit the processing of your data
  • Right to object: Object to processing for legitimate reasons
  • Right to data portability: Retrieve your data in a structured format
  • Right to withdraw consent: Withdraw your consent at any time

How to Exercise Your Rights

To exercise any of these rights, contact us:

We will respond to your request within a maximum of one month.

Complaint to Supervisory Authority

If you believe your rights are not being respected, you may lodge a complaint with your local data protection authority or with the French CNIL:

  • Website: www.cnil.fr
  • Address: 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07

Data Security

We implement appropriate technical and organizational measures to protect your personal data against:

  • Unauthorized access
  • Modification or alteration
  • Disclosure or leakage
  • Accidental or unlawful destruction

These measures include:

  • Communication encryption (HTTPS/TLS)
  • Restricted data access (principle of least privilege)
  • Regular and secure backups
  • Access monitoring and logging
  • Team training on security best practices

Data Transfers Outside the EU

Some of our service providers (Google, HubSpot) may transfer your data outside the European Union, particularly to the United States.

These transfers are governed by:

  • Standard Contractual Clauses (SCC) approved by the European Commission
  • Supplementary security measures (encryption, pseudonymization)
  • EU-US Data Privacy Framework for certified companies

We regularly verify that our service providers maintain an adequate level of protection.

Minors

Our website is not intended for persons under 18 years of age. We do not knowingly collect personal data from minors without parental consent.

If you believe we have collected data concerning a minor, please contact us immediately.

Updates to This Policy

This privacy policy may be updated to reflect changes in our practices, legislation, or services.

Last updated: December 3, 2024

In case of substantial modification, we will inform you through a visible notice on the site or by email if we have your address.

Contact

For any questions regarding this privacy policy or the processing of your personal data:

Email: contact@paradisiak.com

We are committed to responding to you as soon as possible.