GDPR · Notifcar SAS

Privacy policy

Information on the collection, use and protection of your personal data.

This policy informs you about how we collect, use, store and protect your personal data, in compliance with the GDPR and the French Data Protection Act.

Article 1 — Data controller identity

NOTIFCAR — Simplified joint-stock company (SAS) Share capital: €500 Registered office: 78 Avenue des Champs-Élysées, 75008 Paris, France SIREN: 100 680 594

Email: contact@notifcar.fr

Article 2 — Scope of application

This policy applies to all processing carried out in the context of:

use of the Notifcar application and website

creating and managing user accounts

use of Notifcar QR codes

sending notifications or reports

authentication via Apple or Google

push notifications

payment or subscription services

Article 3 — Categories of data collected

3.1 Identification data

First and last name, possible username

Email address, phone number (if provided)

User identifier

3.2 Authentication data

Encrypted password (if classic account)

Apple Sign-In or Google Sign-In identifier

Data required to secure access

3.3 Service-related data

QR code identifier and associated vehicle information

Content of alerts or reports sent

Date and time of notifications

3.4 Technical data

IP address, connection logs

Device type, operating system, application version

Technical identifiers required for security

3.5 Notification data

Device notification identifier

Notification preferences, send or receive status

3.6 Payment data

Payments are processed by Stripe. Notifcar does not retain complete banking data when processed directly by this provider.

3.7 Audience measurement data

Notifcar uses Google Analytics to measure audience and improve the user experience.

Article 4 — Purposes of processing

Create and manage user accounts

Enable use of the Notifcar service

Associate a QR code with a vehicle

Transmit alerts and push notifications

Enable Apple or Google login

Secure the application and prevent fraud

Improve the application and ensure maintenance

Manage subscriptions and payments

Respond to user requests

Comply with legal and regulatory obligations

Article 5 — Legal bases for processing

Contract performance

Account creation, use of services, sending notifications, subscription management.

Legitimate interest

Platform security, fraud prevention, service improvement.

Consent

Certain trackers and marketing communications.

Legal obligation

Accounting, tax or regulatory obligations.

Article 6 — Mandatory data

Some data is required to create an account, use the service, receive notifications or secure the application. Without this data, certain Notifcar features may be unavailable.

Article 7 — Data recipients

Authorised Notifcar staff

Hosting provider IONOS

Payment provider Stripe

Analytics service Google Analytics

Apple and Google authentication services

Technical providers required for operation

Administrative or judicial authorities if required by law

Article 8 — Data retention periods

User account data3 years after end of relationship
Alerts and messages30 days maximum
Technical logs6 months to 1 year
Prospecting data3 years after last contact
Billing data10 years (accounting obligations)
Dispute-related dataUp to 5 years

Article 9 — Data hosting

Data is hosted by IONOS. Notifcar implements the necessary measures to ensure confidentiality, integrity and availability of data.

Article 10 — Data security

Notifcar implements technical and organisational measures to protect data:

Access control and secure authentication

Communications encryption

Technical event logging

Article 11 — Data transfers

Through the use of certain providers (Google Analytics, Stripe, Apple, Google), some data may be transferred outside the European Union. These transfers are governed by legal mechanisms compliant with the GDPR.

Article 12 — Cookies and trackers

The application or website may use cookies or SDKs to:

Ensure the service operates and connections are secure

Measure audience and improve the user experience

Where necessary, the user's consent is obtained.

Article 13 — Push notifications

Notifcar may send push notifications to inform you:

Of a report concerning your vehicle

Of an alert or event related to your account

You can disable these notifications at any time in your device settings.

Article 14 — Login via Apple or Google

You can create an account via Apple Sign-In or Google Sign-In. In this context, some data may be transmitted to Notifcar by these authentication services.

Article 15 — User rights

Under the GDPR, you have the following rights:

Right of access, rectification and erasure

Right to restriction of processing and objection

Right to data portability and withdrawal of consent

Right to define post-mortem directives

Any request can be sent to: contact@notifcar.fr

Article 16 — Complaints

You may lodge a complaint with the competent supervisory authority. In France: CNIL – Commission Nationale de l'Informatique et des Libertés www.cnil.fr

Article 17 — Policy changes

Notifcar reserves the right to modify this policy at any time. The applicable version is the one published in the application or on the website.