Privacy Policy

1. Data controller

The data controller for personal data collected on the website https://weasper.com (hereinafter "the Website") is Weasper Digital, operating under the trade name "Weasper" (hereinafter "the Controller"). For any questions regarding the protection of your data, you may contact us at: support@weasper.com.

2. Data collected

In the course of providing our services, we collect the following data:

• Client email address: used for communication related to orders and support.
• Client LinkedIn email address: used exclusively for the execution of the activation service. This data is deleted upon completion of activation, and no later than forty-eight (48) hours following the order.
• Payment data: processed exclusively by our payment provider Stripe. The Controller does not store, collect, or access bank card numbers or Client payment data.
• Browsing data: IP address, browser type, pages visited, visit duration — collected for audience measurement purposes, under the exemption provided by CNIL guidelines.

We never collect passwords, login credentials, or any other data that would allow access to the Client's LinkedIn account.

3. Purposes of processing

Personal data is collected and processed for the following purposes:

• Performance of the service contract (LinkedIn subscription activation).
• Customer relationship management (support, order tracking).
• Payment processing and invoice issuance.
• Compliance with legal and regulatory obligations.
• Improvement of the Website and services (anonymized statistical analysis).

4. Legal basis for processing

The processing of personal data is based on the following legal grounds:

• Performance of the contract (Article 6.1.b GDPR): processing is necessary for the performance of the service ordered by the Client.
• Legal obligation (Article 6.1.c GDPR): processing is necessary for compliance with tax and accounting obligations.
• Legitimate interest (Article 6.1.f GDPR): processing is necessary for securing the Website and preventing fraud.

5. Data retention period

Personal data is retained for the following periods:

• LinkedIn email address: deleted upon completion of the service activation, and no later than forty-eight (48) hours following the order.
• Order-related data (client email, amount, date): retained for a period of five (5) years from the end of the contractual relationship, in accordance with accounting and tax obligations.
• Browsing data: retained for a maximum period of thirteen (13) months in accordance with CNIL recommendations.

6. Data recipients

Personal data is accessible only to the following persons and entities:

• Authorized personnel of the Controller, strictly limited to what is necessary for the performance of their duties.
• Stripe, Inc. (payment provider): for the secure processing of transactions. Stripe is PCI DSS Level 1 certified and processes data in accordance with its own privacy policy.
• Hosting provider (Vercel / AWS): data is hosted on infrastructure provided by Vercel and its cloud partners, with appropriate security and contractual safeguards.

No personal data is sold, rented, or transferred to third parties for commercial or advertising purposes.

7. Transfers outside the EU

Personal data is hosted and processed exclusively within the European Union (Frankfurt, Germany). In the exceptional case where a transfer outside the EU is necessary (notably via Stripe, Inc., a US company), such transfer is governed by the standard contractual clauses adopted by the European Commission (Implementing Decision 2021/914) and the EU-US Data Privacy Framework, ensuring an adequate level of data protection.

8. Data security

The Controller implements appropriate technical and organizational measures to ensure the security and confidentiality of personal data:

• Encryption of communications via the HTTPS/TLS protocol.
• Hosting on ISO 27001 certified infrastructure.
• Complete absence of password or login credential collection.
• Automatic deletion of LinkedIn email address after activation.
• Strict access control to internal systems.
• Continuous monitoring and regular security updates.

9. Rights of data subjects

In accordance with the GDPR and the French Data Protection Act, you have the following rights regarding your personal data:

• Right of access (Article 15 GDPR): obtain confirmation that your data is being processed and receive a copy thereof.
• Right to rectification (Article 16 GDPR): have inaccurate or incomplete data corrected.
• Right to erasure (Article 17 GDPR): request the deletion of your data, subject to legal retention obligations.
• Right to restriction (Article 18 GDPR): request the suspension of processing in certain cases.
• Right to data portability (Article 20 GDPR): receive your data in a structured, machine-readable format.
• Right to object (Article 21 GDPR): object to the processing of your data on legitimate grounds.

To exercise these rights, send your request accompanied by proof of identity to: support@weasper.com. We undertake to respond within one (1) month. You also have the right to file a complaint with the Commission Nationale de l'Informatique et des Libertés (CNIL) — www.cnil.fr.

10. Cookies

The Website uses strictly necessary technical cookies for the proper functioning of the service (session management, language preferences), as well as audience measurement cookies exempt from consent in accordance with CNIL guidelines (deliberation no. 2020-091). The latter are used strictly for anonymized statistical purposes, without cross-site tracking. No advertising, tracking, or profiling cookies are used on the Website.

11. Policy changes

The Controller reserves the right to modify this privacy policy at any time. Any substantial modification will be brought to the attention of users by updating the last revision date at the top of this document. Continued use of the Website after publication of the modified version constitutes acceptance of the updated policy.

12. Contact

For any questions regarding this privacy policy or the exercise of your rights:

• Data Protection Contact: support@weasper.com
• Customer support: support@weasper.com