Privacy Policy

Last updated: April 2026

1. Data Controller

The controller of personal data collected on safecheck.fr is SafeCheck, [legal form to be completed], with its registered office at [address to be completed]. Email: contact@safecheck.fr.

2. Data Collected

As part of using the platform, we collect the following data:

Registration data: name, email address, phone number, role (installer or business provider), password (encrypted)

Professional data: SIRET, company name, director's name, registered office address, qualifications, service area

KYC documents: ID card, KBIS extract, selfie with ID

Transaction data: purchases, amounts, dates, disputes

Published client data: name, phone number, end client address (masked until purchase)

Navigation data: IP address, browser type, pages visited

3. Purposes of Processing

Your data is collected for the following purposes:

Account management and authentication
Identity verification (KYC) and profile validation
Connecting buyers and sellers
Payment processing via Stripe
Sending email notifications (confirmations, disputes)
Dispute and litigation management
Platform improvement and usage statistics
Compliance with legal obligations

4. Legal Basis

Contract performance: processing necessary for service provision (registration, transactions, connection)
Legitimate interest: service improvement, fraud prevention, statistics
Legal obligation: retention of billing data, anti-money laundering
Consent: sending marketing communications (if applicable)

5. Subcontractors and Transfers

Supabase: database hosting and authentication (AWS, EU region)

Stripe: payment processing (PCI-DSS certified)

Resend: sending transactional emails (AWS SES, EU region)

Vercel: website hosting (global CDN)

Some subcontractors are located outside the European Union. Appropriate safeguards are in place (standard contractual clauses, certifications) to ensure the protection of your data.

6. Retention Period

Account data: kept for the entire duration of the account, then 3 years after deletion
Transaction data: 10 years (accounting obligation)
KYC documents: 5 years after the end of the business relationship
Navigation data: 13 months maximum

7. Your Rights

In accordance with GDPR, you have the following rights:

Right of access

Obtain a copy of your personal data

Right to rectification

Correct inaccurate or incomplete data

Right to erasure

Request the deletion of your data

Right to portability

Receive your data in a structured format

Right to object

Object to the processing of your data

Right to restriction

Request restriction of processing

To exercise your rights, contact us at contact@safecheck.fr. You can also lodge a complaint with the CNIL (cnil.fr).

8. Cookies

SafeCheck uses cookies strictly necessary for the service to function (authentication, theme preferences). No advertising or third-party tracking cookies are used. Session cookies are deleted when the browser is closed.

9. Security

We implement appropriate technical and organizational measures to protect your data: encryption of communications (HTTPS/TLS), secure authentication, role-based access control (RLS), secure storage of KYC documents, payments via Stripe (PCI-DSS certified).