Definitions

The Publisher: The person, natural or legal, who publishes the online public communication services.
The Site: All sites, Internet pages and online services offered by the Publisher.
The User: The person using the Site and the services.
StendhalGPT: All the applications accessible and offered on stendhalgpt.fr

PERSONAL INFORMATION WE MAY COLLECT ABOUT THE USER
Information you give us: We collect all the information you submit to us ("Personal Information"):

In the registration and configuration sections of the Site, we will collect your user name and e-mail address.
When content you upload contains personal information, or when you enter personal information in postings or comments on the Service, we will collect this information for account authentication purposes. Personal information in content you submit will only be visible to another user if it is identical or similar to content that other user has submitted.
When you leave us feedback or request support, we will collect all the information contained in your feedback or support request.
When you contact us by e-mail or telephone, using one of the e-mail addresses or telephone numbers provided on the Site, we collect any personal information that you may voluntarily provide to us in connection with that communication.
This information (user name and e-mail address) is managed by the service provider Auth0.com, and is hosted in Europe only.

1- Nature of the data collected
As part of the use of the Sites, the Publisher may collect the following categories of data concerning its Users:
 Simple connection data for Google Analytics & Jetpack services (IP addresses, event logs, etc.)

 Data provided by the user on StendhalGPT applications, during any use thereof.

2- Disclosure of personal data to third parties

The data collected for the services of Google Analytics & Jetpack are not communicated to third parties, outside of its services.
The data provided by the user of its use refers to the privacy policy of Streamlit.io, https://streamlit.io/privacy-policy .
The data provided during a payment to the StendhalGPT+ service is collected by Stripe and managed by this external service, your bank details are not communicated, and we do not store your connection data provided during subscription.

Your data is not communicated to third parties. However, you are informed that it may be disclosed pursuant to a law, regulation or pursuant to a decision of a competent regulatory or judicial authority.

3- Prior information for the communication of
Prior information and possibility of opt-out before and after the merger / acquisition. In the event that we take part in a merger, acquisition or any other form of asset transfer, we undertake to guarantee the confidentiality of your personal data and to inform you before these are transferred. or subject to new confidentiality rules.

4- Data aggregation
Aggregation with non-personal data
We may publish, disclose and use aggregate information (information relating to all of our Users or to specific groups or categories of Users that we combine in such a way that an individual User can no longer be identified or mentioned) and information non-personal information for industry and market analysis, demographic profiling, promotional and advertising purposes, and other business purposes.
Aggregation with personal data available on the User's social accounts. If you connect your account to an account of another service in order to make cross-mailings, said service may communicate to us your profile information, connection information, as well as any other information whose disclosure you have authorized. We may aggregate information about all of our other Users, groups, accounts, personal data available about the User.

All data provided when using StendhalGPT refers to Streamlit.io's Terms of Use for free consultation services, https://streamlit.io/terms-of-use, but is not collected by StendhalGPT, likewise use is purely anonymous, on services requiring an account, and connection data is hosted in Europe by the Auth0.com service.

5- Collection of identity data
Free consultation
Consultation of the Site does not require registration or prior identification. It can be done without you communicating personal data concerning you (surname, first name, address, etc.). We do not register any personal data for the simple consultation of the Site.

When you subscribe to StendhalGPT+, your data is processed by the Stripe payment platform, and all data supplied on its forms is stored on the said platform and not processed, other than your e-mail address when you connect to the service. The same applies to your login details (e-mail address, password), which are stored and managed on and by auth0.com and kept in Europe only.

7- Geolocation
Geolocation for the purpose of providing the service
We collect and process your geolocation data in order to provide you with our services. We may need to make use of personal data in order to determine your geographical position in real time. In accordance with your right of opposition provided for by law n ° 78-17 of January 6, 1978 relating to data processing, files and freedoms, you have the possibility, at any time, of deactivating the functions relating to geolocation. We use your geolocation data for ci services, Google Analytics and Jetpack.

Geolocation for crossing purposes
We may collect and process your geolocation data with our partners. We are committed to anonymizing the data used. In accordance with your right of opposition provided for by law n ° 78-17 of January 6, 1978 relating to data processing, files and freedoms, you have the possibility, at any time, of deactivating the functions relating to geolocation.

8- Collection of terminal data
Collection of profiling data and technical data for the purpose of providing the service
Some of the technical data of your device is collected automatically by the Site. This information includes your IP address, Internet service provider, hardware configuration, software configuration, browser type and language, etc. The collection of this data is necessary for the provision of services. Collection of technical data for advertising, commercial and statistical purposes
The technical data of your device is automatically collected and recorded by the Site, for statistical purposes. This information helps us personalize and continually improve your experience on our Site. We do not collect or store any personal data (surname, first name, address, etc.) that may be attached to technical data.

9- Cookies
Cookie retention period
In accordance with the recommendations of the CNIL, the maximum retention period for cookies is a maximum of 13 months after their first deposit in the User's terminal, as is the duration of the validity of the User's consent to the use of these cookies. The lifetime of cookies is not extended with each visit. The User's consent must therefore be renewed at the end of this period.
Cookie purpose
Cookies can be used for statistical purposes, in particular to optimize the services provided to the User, from the processing of information concerning the frequency of access, the personalization of the pages as well as the operations carried out and the information consulted.
You are informed that the Publisher is likely to deposit cookies on your terminal. The cookie records information relating to navigation on the service (the pages you have consulted, the date and time of the consultation, etc.) that we can read during your subsequent visits.

10- Retention of technical data
Shelf life of technical data
Technical data is kept for the time strictly necessary to achieve the purposes referred to above.

11- Personal data retention and anonymization periods
We do not retain any personal data beyond your login time and service login information for the purposes described in this Privacy Policy. 

Data deletion after account deletion

Means of purging data are put in place in order to provide for their effective deletion as soon as the retention or archiving period necessary for the fulfillment of the determined or imposed purposes has been reached. In accordance with the law n ° 78-17 of January 6, 1978 relating to data processing, files and freedoms, you also have a right of deletion on your data which you can exercise at any time by contacting the 'Editor.

Deletion of data after 3 years of inactivity 
For security reasons, if you have not authenticated yourself on the Site for a period of three years, you will receive an e-mail inviting you to connect as soon as possible, otherwise your data will be deleted from our databases. data.

12- Account deletion
On-demand account deletion
The User has the possibility of deleting his Account at any time, by simple request to the Editor OR by the Account deletion menu present in the Account parameters if necessary.
Deletion of the account in case of violation of the Privacy Policy 
In the event of violation of one or more provisions of the Privacy Policy or any other document incorporated herein by reference, the Publisher reserves the right to terminate or restrict without any prior warning and at its sole discretion, your use and access to the services, your account and all Sites.

13- Indications in the event of a security vulnerability detected by the Publisher
User information in the event of a security breach
We undertake to implement all appropriate technical and organizational measures in order to guarantee a level of security adapted to the risks of accidental, unauthorized or illegal access, disclosure, alteration, loss or destruction of personal data about you. In the event that we become aware of illegal access to your personal data stored on our servers or those of our service providers, or of unauthorized access resulting in the realization of the risks identified above, we undertake To :

Notify you of the incident as soon as possible;
Examine the causes of the incident and inform you thereof;
Take the necessary measures within reason to reduce the negative effects and damages that may result from the said incident.
Limitation of Liability

Under no circumstances can the commitments defined in the point above relating to notification in the event of a security breach be assimilated to any acknowledgment of fault or liability for the occurrence of the incident in question.

14- Transfer of personal data abroad
No transfer outside the European Union
The Publisher undertakes not to transfer the personal data of its Users outside the European Union.

https://www.cnil.fr/fr/la-protection-des-donnees-dans-le-monde

15- Modification of the privacy policy
In the event of modification of this Confidentiality Policy, commitment not to lower the level of confidentiality in a substantial way without the prior information of the persons concerned. We undertake to inform you in the event of a substantial modification of this Privacy Policy, and not to lower the level of confidentiality of your data in a substantial way without informing you and obtaining your consent.

16- Applicable law and remedies Arbitration clause

You expressly agree that any dispute that may arise as a result of this Privacy Policy, in particular its interpretation or execution, will be subject to arbitration proceedings subject to the rules of the arbitration platform chosen by mutual agreement. , to which you will adhere without reservation.

17- Data portability
Data portability
The Publisher undertakes to offer you the possibility of having all the data concerning you returned to you on simple request. The User is thus guaranteed better control of his data, and retains the possibility of reusing it. This data should be provided in an open and easily reusable format.

18 - DATA CONFIDENTIALITY

We understand that the data you send to StendhalGPT is confidential and treat it as such. Except as otherwise provided in this Statement, we will never share the data you send us with anyone else, except as required by law. Access will be limited to members of the team you invite, and to certain members of StendhalGPT staff in order to provide support and develop the service.

19 - SAFETY
We follow appropriate industry standards to protect the information in our possession, as required by applicable law. To this end, we use reasonable security measures that comply with Internet industry standards, including encryption and other safeguards. We have adopted strict privacy and confidentiality measures to protect against misuse of, or unauthorized access to, the information you have provided to us. Notwithstanding the above, there is a risk of unauthorized access to our database. In this case, as long as we have used reasonable security measures, we will not be liable for any damage caused by such unauthorized access or for the transfer of information to a third party as a result of such access.

20 - RIGHT TO WITHDRAW YOUR CONSENT AND HAVE YOUR PERSONAL INFORMATION DELETED
Applicable law may give you additional rights, such as the right to withdraw your consent to the processing of your personal information; to have it deleted; to object to processing. For further information or to make a request, please contact contact@stendhalgpt.fr.