Legal
Privacy Policy
At DATAKISS, respecting your privacy and protecting your personal data are our priority. This privacy policy (hereinafter the "Privacy Policy") aims to inform you about how your personal data is processed when you use the website https://www.datakiss.co/ (the "Site") in accordance with Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (the "GDPR") and Law No. 78-17 of 6 January 1978 relating to data processing, files and freedoms in its latest version in force (together the "Applicable Regulations").
1. Who is the data controller?
The data controller is KEEP IT SMART AND SIMPLE ("DATAKISS"), a simplified joint-stock company registered with the Nanterre Trade and Companies Register under number 838 834 026, with its registered office at 1, rue d'Anjou - 92600, Asnières-sur-Seine, France ("We", "Us", "Our").
2. What data do we collect?
Personal data is any information that can identify an individual directly or indirectly by combining it with other data.
We collect personal data falling into the following categories:
- Identifying information (name, first name, email address, phone number);
- Any information you wish to send us as part of your contact or demonstration request.
Required data is indicated when you provide your data to us. It is clearly marked.
3. How do we collect your personal data?
We collect your personal data directly when you provide it to us, for example, by filling out a contact request form on our Site.
4. Details on the processing of your personal data
| Purposes | Legal bases | Retention periods |
|---|---|---|
| Responding to your requests for information, contact, and/or demonstration | Our legitimate interest in responding to your requests | Data is retained for a period of 3 years from your last contact. |
| To build a prospect database | Our legitimate interest in developing and promoting our business | Your data is retained for a period of 3 years from your last contact with us. |
| To send newsletters, solicitations, and promotional messages by email | Our legitimate interest in retaining and informing our prospects about our news | Data is retained for 3 years from your last contact with us. |
| To respond to requests for exercising rights by data subjects | To comply with our legal and regulatory obligations | If we request proof of identity: we only retain it for the time necessary for identity verification. Once verification is complete, the proof is deleted. If you exercise your right to object to receiving marketing communications: we retain this information for 3 years. |
5. Who are the recipients of your data?
Will have access to your personal data:
- Our company's staff;
- Our subcontractors: hosting providers, CRM tool, email service;
- To any authority legally authorized to access it, particularly judicial, police, or administrative authorities, if they request it.
6. Is your data likely to be transferred outside the European Union?
Your data is retained and stored for the entire duration of processing on the servers of Hubspot, located within the European Union.
As part of the tools we use (see the article on recipients concerning our subcontractors), your data may be transferred outside the European Union. The transfer of your data in this context is secured using the following tools:
- or the data is transferred to a country that has been subject to an adequacy decision by the European Commission, in accordance with Article 45 of the GDPR: in this case, that country ensures a level of protection deemed sufficient and adequate to the provisions of the GDPR;
- either the data is transferred to a country whose level of data protection has not been recognized as adequate under the GDPR: in this case, these transfers are based on appropriate safeguards indicated in Article 46 of the GDPR, adapted to each service provider, including, but not limited to, the conclusion of standard contractual clauses approved by the European Commission, the application of binding corporate rules, or under an approved certification mechanism;
- or the data is transferred on the basis of one of the appropriate safeguards described in Chapter V of the GDPR.
You can obtain a copy of the tools enabling the transfer of your data outside the European Union by contacting us at the details provided in the section "What are your data rights?" below.
7. What are your data rights?
You have the following rights regarding your personal data:
- Right to information: This is precisely why we have drafted this Privacy Policy. This right is provided for by Articles 13 and 14 of the GDPR.
- Right of access: You have the right to access all of your personal data at any time, pursuant to Article 15 of the GDPR.
- Right to rectification: You have the right to rectify your inaccurate, incomplete, or outdated personal data at any time in accordance with Article 16 of the GDPR.
- Right to restriction of processing: You have the right to obtain the restriction of processing of your personal data in certain cases defined in Article 18 of the GDPR.
- Right to erasure: You have the right to request that your personal data be erased, and to prohibit any future collection for the reasons set out in Article 17 of the GDPR.
- Right to define directives concerning the retention, erasure, and communication of your personal data after your death.
- Right to withdraw your consent at any time: For processing based on consent, Article 7 of the GDPR states that you may withdraw your consent at any time. This withdrawal will not affect the lawfulness of processing based on consent before its withdrawal.
- Right to data portability: Under certain conditions specified in Article 20 of the GDPR, you have the right to receive the personal data you have provided to us in a standard machine-readable format and to request their transfer to a recipient of your choice.
- Right to object: Under Article 21 of the GDPR, you have the right to object to the processing of your personal data. Please note, however, that we may continue to process your data despite this objection, for legitimate reasons or for the establishment, exercise or defence of legal claims.
You can exercise these rights by writing to us at the following address: dpo@datakiss.co
We may ask you to provide additional information in case of reasonable doubt, or any document that may prove your identity if the doubt persists.
If your query or request remains unresolved, you have the right to lodge a complaint with the competent supervisory authority, in France, the National Commission for Information Technology and Civil Liberties (CNIL), located at 3 Place de Fontenoy - TSA 80715 - 75334 Paris Cedex 07.
8. Amendments
We may amend this Privacy Policy at any time, particularly to comply with any regulatory, legal, editorial, or technical developments. These amendments will take effect on the effective date of the modified version. You are therefore encouraged to regularly consult the latest version of this policy. Nevertheless, we will inform you of any significant changes to this Privacy Policy.
Effective: June 1, 2026.