Confidentiality
In force on 06/09/2021
This privacy policy applies to the Leaft.co site and its mobile application made available to users of the Leaft service.
​
The purpose of this privacy policy is to expose users of the site:
the way they are collected and process their personal data. All data capable of identifying a user must be considered as personal data. These include the first and last name, age, postal address, e-mail address, and location of the user or his IP address;
what are the rights of users regarding their data;
who is responsible for the processing of personal data collected and processed;
to whom these documents acquired their data are transmitted;
Possibly, the site's policy regarding files between quotation marks "cookies"
This privacy policy supplements the legal notices, general conditions of use and general conditions of sale that users can consult at the following addresses:
https: // www.leaft.co/mentions-legales
General principles of data collection and processing
In accordance with the provisions of article five of European regulation 2016/679, the collection and processing of site user data complies with the following principles:
Lawfulness, loyalty and transparency: data can only be collected and processed with the consent of the user who owns the data. Whenever personal data is collected, the user will be informed that their data is being collected, and for what reason this data is collected;
Limited purpose: the collection and trance and processing of data are carried out to meet one or more objectives determined in the previous general conditions of use;
Minimization of data collection and processing: only the data necessary for the proper execution of the objectives pursued by the site are collected;
Reduced data retention over time: data is kept for a limited period of time, of which the user is informed. When this information cannot be communicated, the user is informed of the criteria used to determine the retention period; Integrity and confidentiality of data collected and processed
​
In order to be lawful, and in accordance with the requirements of Article 6 of European Regulation 2016/697, the collection and processing of personal data we can intervene only if it meets at least one of the conditions below listed:
The user is expressly consented to the processing; The processing is necessary for proper The user is expressly consented to the processing;
The processing is necessary for the proper performance of the contract;
The processing meets a legal obligation;
The processing is explained by a necessity linked to the protection of the vital interests of the data subject or of another natural person;
The processing may be explained by a need linked to the performance of a task of public interest or which falls within the exercise of public authority;
The processing and collection of personal data is necessary for the purposes of the legitimate and private interests pursued by the controller or by a third party.
Personal data collected and processed in the context of browsing the site
Data collected and processed and method of collection
The personal data collected on the lift site are as follows:
First and last name
Date of Birth
Address
Messages for our customer service
Bank details
Professional email address;
Personal email address
Kbis extract
​
​
This data is collected when a user performs the following operations on the site:
When a user purchases a product or orders a service
When a user subscribes to the newsletter
When a user connects to his personal space on the site and on the Leaft application
When a user signs up for an online demo
When a user connecting the help service
When a user posts a review on the site, or the product or service
​
In addition, when paying on the site, proof of the transaction including the order form and invoice will be kept in the site editor's computer systems.
​
The data controller in its IT departments on the site and under reasonable security conditions all the data collected for a period that does not exceed the period necessary for the purposes for which these data are collected and processed.
​
The collection and processing of data serve the following purposes:
Order processing
Provision of services
Responses to requests sent by contact form
Processing of applications sent via the online HR portal
​
The data processing carried out is based on the following legal basis:
The user has expressly consented to the processing;
Processing is necessary for the proper performance of a contract;
The processing meets a legal obligation;
The processing is applied by necessity linked to the protection of the vital interests of the data subject or of another natural person
The processing can be explained by a need linked to the performance of a mission of public interest or which falls within the exercise of public authority;
The processing and collection of personal data is necessary for the purposes of the legitimate and private interests pursued by the controller or by a third party.
Data collected and processed and method of collection
The data may be transmitted to the third parties listed below:
Certain data may be transferred to Stripe when a user makes an online payment for the purchase of a product or service.
Some data may be transferred to a PayHere when a user makes an online payment for the purchase of a product or service.
Some data may be transferred to Calendly when a user books a demo online
Some data may be transferred to Tally when a user completes a request form
Some data may be transferred to Wix when a user completes a newsletter registration form.
Data hosting
The Leaft site is hosted by Wix Online Platform Limited, headquartered at 1 Grant's Row, Dublin 2 D02HX96, Ireland, with telephone number here .
​
The Leaft app is hosted by Typeguard Inc., whose seat social is located at 1 Blackfield Drive, Suite 2, # 346 Tiburon, CA 94920. The host can be contacted at following phone number: +1 (415) 340-7257 or by email at hello@glideapps.com
​
The data collected and processed by the site are transferred to the following countries: Ireland, Belgium, USA.
Data controller
The person in charge of personal data is Elvira BARATINY who can be contacted from Monday to Friday from 9 a.m. to 5 p.m. by e-mail: support@leaft.co
​
The data controller is responsible for determining the purposes and means used for the processing of personal data.
Obligations of the data controller
The data controller undertakes to protect the personal data collected, not to transmit them to third parties without the user being informed and to respect the purposes for which these data were collected.
​
The site has an SSL certificate to guarantee that the information and the transfer of data passing through the site are secure. An SSL certificate ("Secure Socket Layer") aims to secure the data exchanged between the user and the site.
​
In addition, the data controller without pledges to notify the user in the event of rectification, rectification or deletion of the data, unless this entails disproportionate formalities, costs and procedures for him.
​
In the event that the integrity, confidentiality or security of the user's personal data is compromised, the data controller undertakes to inform the user by any means.
Obligations of the data controller
In addition, the user is informed that a data protection officer has been appointed: Elvira baratiner.
The role of the data protection officer and to ensure the proper implementation of national and supranational provisions relating to the collection and processing of personal data. It is sometimes called DPO (for Data Protection Officer). The data protection officer can be reached by e-mail: support@leaft.com
User rights
In accordance with the regulations concerning the processing of personal data, the user has the rights if after listed.
In order for the data controller to face up to his request, the user is required to provide him with: his first and last names as well as his e-mail address, and if relevant, his account or space number. staff or subscribers.
The data controller is required to respond to the user within a maximum of 30 days.
Presentation of user rights in terms of data collection and processing
Right of access, rectification and right to erasure
The user can read, update, modify or request the deletion of data concerning him, respecting the person the procedure of sending an e-mail to the data controller specifying the subject of this request, to email address: support@leaft.co
If he has one, user has the right to request the deletion of his personal account by following the procedure of sending an e-mail to the data controller specifying his e-mail address. The request will be processed within 10 working days.
Right to data portability
The user has the right to request the portability of these areas of his personal data, held by the site, to another site, by complying with the procedure of sending an e-mail to the person in charge of processing personal data, specifying the subject of his request to the contact email address support@leaft.co
Right to limit and oppose data processing
The user has the right to request the limitation of opposing the processing of this data by the site without the site being able to refuse, except to demonstrate the existence of a legitimate and compelling reason, which may prevail over the interests and rights. and user freedoms. In order to request the limitation of the processing of this data or to formulate an opposition to the processing of this data, the user must follow the procedure of sending an e-mail to the person in charge of processing personal data.
Right not to be the subject of a decision based exclusively on an automated process
In accordance with the provisions of Regulation 2016/679, the user has the right not to be the subject of a decision based on an automated process if the decision produces legal effects concerning him, or celebrates it in a similar way. .
Right to determine the fate of his data after death
The user is reminded that he can organize whatever the fate of his data collected and processed if he dies in accordance with Law No. 2016 1321 of October 7, 2016.
Right to seize the competent supervisory authority
As part of the respect, the data controller decides not to respond to the user's request, and that the user wishes to challenge this decision, or, if he thinks that one of the rights listed above, he is entitled to appeal to the CNIL (Commission Nationale de l'Informatique et des Libertés) or your competent judge.
Use of "Cookies" files
The site may use the techniques of "cookies".
A "cookie" is a small file, stored by the site on the user's hard drive, containing information relating to the user's browsing habits.
These files allow it to process statistics and traffic information, facilitate navigation and improve the service for the convenience of the user.
​
For the use of cookie files involving the saving and analysis of personal data, the user's consent is necessarily requested.
This user consent is considered valid for a maximum period of 6 (six) months. At the end of this period, the site will again request the user's authorization to save cookie files on their hard drive.
User opposition to the use of cookie files by the site
Cookies that are not essential for the operation of the site are only placed on the user's terminal after obtaining their consent. User can remove their consent at any time by clicking on the "Refuse" button.
More generally, it is brought to the attention of the user that he can ask himself to save these "cookie" files by configuring his browser software.
Description of the cookie files used by the site
The publisher of the site draws the user's attention to the fact that the following cookies are used when browsing:
Wix (Site hosting, CRM, online form)
Glide (application hosting)
Airtable (ticket management)
Calendly (online appointment management)
Stripe (payment and refunds)
PayHere (payment and refunds)
Tally (contact forms)
Google Analytics (audience analysis)
Google Ads (targeted advertising)
Facebook Pixel (audience analysis and targeted advertising)
Twitter Ads (targeted advertising)
LinkedIn Insights (targeted advertising)
In addition, the site integrates social network buttons, allowing the user to share their activity on the site. Cookie files from these social networks are therefore likely to be stored on the user's computer when using its functionalities. The intention of the user is focused on the fact that these sites have their own privacy policy and general conditions of use that may differ from the site. The site editor invites users to consult the confidentiality policies and general conditions of use of these sites.
Conditions for modifying the privacy policy
This confidentiality policy can be consulted at any time at the address indicated below:
​
​
The site editor reserves the right to modify it in order to guarantee its conformity with the law in force.
​
Consequently, the user is invited to come and consult this privacy policy regularly in order to stay informed of the latest changes that will be made to it.
However, in the event of a substantial modification of this policy, the user will be informed by email to the address provided. It is brought to the attention of the user that the last update of this privacy policy took place on 06/09/2021.