Grimor's Privacy Policy

This privacy policy covers Grimor's data collection and processing practices. Grimor takes special care with all personal data collected during the provision of its services. This policy is effective from August 14, 2024.

1. Introduction

This privacy policy outlines Grimor's practices regarding the collection and processing of personal data. Grimor is committed to protecting all personal data collected while providing its services. This policy is effective from August 14, 2024.

2. Data Controller

Data is collected by Grimor, headquartered at 80 Michel Ange Street, 75016 Paris. The Data Protection Officer (DPO) is Jean Marc Doucet and is a member of the AFCPD. For any questions regarding this policy, you can contact us at: contact@grimor.co.

3. Data Collected

Information provided by the user when creating their account:

  • Name
  • First Name
  • Company or Organization Name
  • Position within the Company
  • Professional Email Address
  • Secret, personal, and confidential password

Financial information required for subscription setup:

  • Credit Card Number (managed by our secure payment gateway)
  • Billing Information (SIRET number, VAT number)

Information automatically obtained when browsing the site or using the services:

  • IP Addresses
  • Browser Type
  • Browser Language

4. Purpose of Processing

All personal data collected is processed solely for:

  • Implementing the services
  • Conducting specific promotions related to Grimor
  • Diagnosing issues and administering the site
  • Tailoring services to clients' needs
  • Improving the site
  • Contacting users for service-related reasons
  • Protecting the rights and property of Grimor and its users
  • Ensuring efficient technical service
  • Managing relationships with clients, users, and prospects
  • Complying with legal and regulatory obligations, including anti-money laundering, counter-terrorism financing, and anti-corruption regulations, billing, and accounting

5. Data Security and Storage

All personal data is stored and processed in compliance with French legislation. Access to personal data is limited to entities and individuals necessary, such as our subcontractors, technicians, service providers, collaborators, and other agents, who are subject to strict confidentiality obligations.

Grimor uses Scaleway as its host, a strategic choice for several reasons:

  • Security and compliance: Scaleway is certified ISO/IEC 27001:2013, 27017, and 27018, ensuring optimal data protection.
  • Hosting located in France: Data is hosted in France, ensuring full compliance with European regulations.
  • High availability and performance: Scaleway provides a resilient infrastructure with high availability cloud services, suited for the needs of legal techs.

6. User Rights

In accordance with applicable regulations, you have the following rights:

  • Right of access
  • Right of rectification
  • Right to erasure
  • Right to restriction of processing
  • Right to object
  • Right to data portability

To exercise these rights, please contact us at: contact@grimor.co.

7. Policy Changes

Grimor reserves the right to modify this privacy policy to reflect changes in its services. Any modifications will be posted on this page and, if necessary, communicated to you by email.

8. Data Breach Notification

In case of a data breach, Grimor is committed to:

  • Inform the affected users as soon as possible.
  • Implement corrective measures to limit the effects of the breach.
  • Cooperate with data protection authorities to ensure proper management of the incident.

9. Contact

For any questions regarding this privacy policy or the management of your data, you can contact us at:

Grimor
80 Michel Ange Street
75016 Paris
Email: contact@grimor.co