Privacy Policy

Last updated: July 29, 2024

1. Introduction

Welcome to Redsmite. We are a company specializing in consulting and developing custom software and artificial intelligence solutions. The trust our clients and partners place in us is our greatest asset.

This privacy policy is intended to inform you clearly and transparently about how we collect, use, protect, and manage your personal data, in compliance with the General Data Protection Regulation (GDPR) and best practices.

2. What data do we collect?

In the course of our business, we may collect and process various categories of data:

• Identification and Contact Data: First name, last name, email address, phone number, job title, company name.
• Professional Data: Information related to your project, business needs, work documents, specifications, and any information you provide to us as part of a collaboration.
• Contextual Information: For the purpose of continuously improving our services and personalizing our support, we may document contextual information about your professional environment (stakeholders, projects, relationships between entities), based on our discussions and the documents you entrust to us.
• Connection and Usage Data: (To be completed if you have a website or application) IP addresses, logs, browsing data.
• Financial Data: Basic transaction information (invoicing, payments), excluding sensitive banking data, which is handled by our secure payment providers.

3. How do we collect your data?

We collect your data primarily in two ways:

• Directly from you: When you contact us, during our meetings, email exchanges, or when you provide us with documents for a project.
• Automatically through analysis: As part of our consulting mission, we use internal tools to analyze the documents and information you provide to structure knowledge, identify needs, and manage projects. This processing is carried out internally and securely.

4. Why do we use your data?

We use your data exclusively for the following purposes:

• To provide our services: To manage our projects, meet your needs, communicate with you, and monitor our business relationship.
• To improve our expertise: To build a knowledge base (anonymized whenever possible) to enhance the relevance of our advice and the effectiveness of our solutions.
• To comply with our legal obligations: To handle invoicing, accounting, and meet any legal or regulatory requirements.

5. On what legal basis do we process your data?

We process your data based on the following legal grounds:

• The performance of a contract: Most of our processing is necessary for the performance of the service agreement between us.
• Our legitimate interest: We have a legitimate interest in processing certain information to improve our services, manage our internal operations, and ensure the security of our services, always in respect of your rights and freedoms.
• Compliance with a legal obligation: For processing related to invoicing or accounting.
• Your consent: (To be specified if applicable, e.g., for a newsletter) For certain specific purposes, we will request your explicit consent.

6. Who do we share your data with?

We do not sell, rent, or transfer your personal data to third parties.

Your data is processed internally by our authorized collaborators who are subject to a strict confidentiality obligation.

7. How do we secure your data?

Security is at the heart of our concerns. In accordance with our General Company Policy, we implement robust technical and organizational measures to protect your data against unauthorized access, loss, destruction, or alteration.

This includes a controlled work environment, strict contracts, and internal security protocols.

8. How long do we keep your data?

We retain your data only for the time necessary to fulfill the purposes for which it was collected.

• Project data: Kept for the duration of our collaboration, then archived for a period of five (5) years, corresponding to our contractual and legal obligations.
• Prospect data: Kept for a period of three (3) years after our last contact.

9. What are your rights?

In accordance with the GDPR, you have the following rights over your data:

• Right of access: The right to know if we hold data about you and to obtain a copy.
• Right to rectification: The right to have inaccurate or incomplete information corrected.
• Right to erasure ("right to be forgotten"): The right to request the deletion of your data, under certain conditions.
• Right to restriction of processing: The right to request a pause in the use of your data.
• Right to data portability: The right to receive your data in a structured format and to transmit it to another controller.
• Right to object: The right to object to certain processing, particularly for marketing purposes.

10. How to exercise your rights?

For any questions or to exercise your rights, you can contact us at the following address:

Redsmite
Email: contact@redsmite.com

We commit to responding to you within one month. In case of no response or an unsatisfactory response, you have the right to lodge a complaint with the competent supervisory authority.