PRIVACY POLICY

Last update : september 12, 2024

BOZA, a French simplified joint-stock company (société par actions simplifiée) with share capital of €5,000, having its registered office at 2 RUE GUSTAVE EIFFEL 10430 ROSIERES-PRES-TROYES, registered in the Troyes Trade and Companies Register under number 949 200 398.

ARTICLE 1: PREAMBLE

The purpose of this privacy policy (hereinafter the "Privacy Policy") is to inform users (collectively referred to as "Users") of the getboza.io or app.getboza.io websites (hereinafter the "Site"), about the following:

This Privacy Policy supplements the legal notice and the general conditions of subscription and use of the Site.

ARTICLE 2: PRINCIPLES GOVERNING THE COLLECTION AND PROCESSING OF PERSONAL DATA

In accordance with Article 5 of the General Data Protection Regulation 2016/679 (hereinafter "GDPR"), personal data are:

In accordance with Article 6 of the GDPR, processing is lawful only if, and insofar as, at least one of the following conditions is met:

ARTICLE 3: PERSONAL DATA COLLECTED AND PROCESSED IN CONNECTION WITH BROWSING AND USE OF THE SITE

Article 3.1: Purpose of the data collected

This data is collected and processed for the following purposes: 

Article 3.2: Data collection method

The following data is collected for the creation of an account on the Site:

The creation of such an account and its configuration are necessary for the delivery of services (hereinafter the "Services"), in particular: 

Setting up a User's account on the Site (i.e. connecting the Site's API to the User's internal software and applications, or providing additional data via import or input) requires the collection of the following data in order to deliver the Services:

Other personal data is collected when you carry out the following operations on the Site: 

They are stored by the data controller under reasonable security conditions.

ARTICLE 4: DATA CONTROLLER 

The data controller can be contacted as follows:

ARTICLE 5: THE USER'S RIGHTS REGARDING DATA COLLECTION AND PROCESSING

Any User concerned by the processing of their personal data may avail themselves of the following rights, pursuant to the GDPR and Law 78-17 of January 6, 1978, known as the "Loi Informatique et Liberté":

To exercise your rights, please write to : 

In order for the data controller to process the User's request, the User may be required to provide certain information, such as first and last names, pseudonym, e-mail address and account, personal space or subscriber number. 

Visit cnil.fr for more information on your rights.

ARTICLE 6: COOKIES POLICY 

When you use the Site, BOZA may store and/or access information on your device via cookies or similar technologies to process personal data. 

This section of the Privacy Policy aims to explain what cookies are, how they are used on the Site and how you can manage them.

Article 6.1: What are cookies?

A cookie is a small file stored by a server on a user's terminal (computer, telephone, etc.) and associated with a web domain. 

They may be deposited and/or read, for example, when a website or mobile application is consulted, or when software is installed or used, regardless of the type of terminal used.

This file is automatically returned when you contact the same domain again.

For more information on cookies, please visit the CNIL website: https://www.cnil.fr/fr/definition/cookie

Article 6.2: Types of cookies used

Security and technical cookies

We place so-called "technical" cookies on your device, which are necessary for BOZA to provide the services on the website.

This type of cookie is essential to ensure the proper functioning of the Site and to guarantee the security of your browsing:

a) On the application available at https://app.getboza.io  

jwtToken:

authUser :

These cookies are strictly necessary to provide the basic and secure functionalities of our application. Without them, some parts of the site may not function properly or be accessible.

b) On the showcase site at https://getboza.io

Third-party cookies

These cookies come from BOZA's partners and you can refuse their use. These cookies are subject to our partners' terms of use.

In some cases, these cookies may be placed by a third party on behalf of BOZA, but BOZA is not authorized to use them for purposes other than those mentioned above.

We place cookies on your device, which are used to measure traffic on the Site and to track Users' actions, in particular to start up emailing scenarios linked to the Services.

This type of cookie is important to ensure that the Site functions properly:

a) Analysis and Performance Cookies :

b) Advertising cookies :

Article 6.3: Management of your consents

You can prevent cookies from being deposited on your device, including technical cookies.

However, blocking our technical cookies may prevent you from accessing some of the Site's functionalities.

For more information on how to adjust or modify your browsing settings, please visit www.aboutcookies.org or www.allaboutcookies.org.

You can deactivate the use of certain third-party cookies by going to the deactivation page: http//www.networkadvertising.org/managing/opt_out.asp.

You can always activate/deactivate the use of third-party cookies for advertising personalization purposes. Please see below for further information.

If you access the Site from different devices (e.g. smartphone, tablet, computer, etc.), you will need to ensure that your cookie preferences are set on the browser of each device. If you adjust the cookie settings, the other websites you visit may also be affected.

Article 7: Data Retention and Deletion

Article 7.1: Retention of Google User Data

We retain the personal data of users obtained via Google OAuth, including but not limited to email addresses and profile information, for as long as the user maintains an account with us or as required to deliver our services. Upon account closure, personal data will be retained for a period of up to 2 years to fulfill any remaining obligations or for legal purposes. After this period, the data will be permanently deleted unless further retention is required by law.

Article 7.1: User Data Deletion

Users may request the deletion of their Google-related personal data at any time by contacting us at dpo@getboza.io. Upon receiving such a request, we will delete the user's data within 30 days, except where retention is required for compliance with legal obligations.

Article 8: Data Protection Mechanisms for Sensitive Data

We implement industry-standard security measures to ensure the protection of sensitive data, including Google user data. These measures include:

Article 9 : Sharing, Transfer, and Disclosure of Google User Data

We do not sell or rent personal data to third parties. However, we may share Google user data with the following:

We ensure that any third party with whom we share Google user data follows strict data protection measures as required by law.

ARTICLE 8: CONDITIONS FOR MODIFYING THE PRIVACY POLICY

BOZA reserves the right to modify this Privacy Policy at any time in order to ensure compliance with applicable law. 

The User is invited to familiarize himself/herself with this Privacy Policy each time he/she uses our services, without the need for formal notification.