Privacy policy
Last updated: December 18th, 2024
Introduction
Rebind SAS ("Rebind," "we," "our," or "us") is dedicated to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, share, and safeguard your personal data when you interact with us via our website (the "Site") or mobile app (the "App") (collectively referred to as "Services"). It also outlines your rights under applicable data protection laws, including the General Data Protection Regulation (GDPR).
For all inquiries regarding your personal data, please contact us at: privacy@rebind.co.
Data Controller
Rebind SAS, registered in Paris, France, is the data controller responsible for processing your personal data in compliance with GDPR and other applicable laws when you use our Services (including both the Site and the App).
Personal Data We Collect
We may collect and process the following types of personal data:
- Identification Data: Name, email address, or other details provided through contact forms or during app registration.
- Technical Data: IP address, device information, browser type, operating system, app usage data, and cookies.
- Usage Data: Information about your interactions with the Site and App, such as pages visited, links clicked, app interactions, and other engagement data, collected via tools like Segment.
How We Collect Your Data
We collect personal data through the following methods:
- Direct Input: When you provide data through forms (e.g., Tally.so), sign up in the app, or communicate with us.
- Automated Technologies: Cookies, analytics tools (e.g., Segment, Google Analytics), and tracking pixels (e.g., Facebook Pixel, TikTok Pixel).
- App-Specific Data: Interaction logs, device details, and push notification tokens.
- Third-Party Integrations: Tools like Intercom for customer support
Purpose and Legal Basis for Processing
We process your personal data for the following purposes:
| Purpose | Legal Basis |
|---|---|
| To operate, improve, and optimize the Site and App | Legitimate interest to improve user experience |
| To provide customer support | Legitimate interest to respond to inquiries |
| To process app transactions (e.g., KYC verification) | Legitimate interest and/or legal obligation |
| To send marketing communications | Your consent |
| To comply with legal obligations | Legal obligation |
Data Sharing with Third Parties
To provide our services, we may share your personal data with trusted third parties, including:
- Analytics and Marketing: Segment, Google Analytics, Google Ads, Facebook Pixel, TikTok Pixel, Mixpanel.
- Customer Support: Intercom
- Email (Marketing): SendGrid, Resend
- Hosting and Infrastructure: Fly.io, Google Cloud
- Form Submissions: Tally.so
- Biometric Wallet Provider: Connect by Cometh.io
Each third-party service provider processes personal data under strict contractual obligations that comply with GDPR.
Cookies and Tracking Technologies
Our Site uses cookies and tracking technologies to:
- Enable essential Site functionality.
- Monitor and analyze user activity.
- Deliver targeted advertisements and measure campaign performance.
You can manage your cookie preferences through our consent banner and your browser or app settings.
International Data Transfers
While we strive to process your data within the European Economic Area (EEA), some third-party services may transfer data outside the EEA. In such cases, we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses approved by the European Commission.
- Compliance with other GDPR-approved mechanisms.
Data Retention
We retain personal data only for as long as necessary to fulfill its processing purposes or as required by law:
- Marketing Data: Retained until you withdraw consent.
- Technical and Usage Data: Retained for up to 26 months, unless a longer period is required for legal compliance.
Data Security
We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, or disclosure. This includes:
- Secure third-party hosting solutions.
- Access controls and encryption measures.
However, no method of data transmission or storage is completely secure, and we cannot guarantee absolute security.
Your GDPR Rights
You have the following rights regarding your personal data:
- Right of Access: Request access to your personal data.
- Right to Rectification: Correct inaccurate or incomplete data.
- Right to Erasure: Request the deletion of your data.
- Right to Restrict Processing: Limit how we process your data.
- Right to Data Portability: Request a copy of your data in a portable format.
- Right to Object: Object to processing for direct marketing or legitimate interests.
- Right to Withdraw Consent: Withdraw consent for data processing where consent is the legal basis.
To exercise any of these rights, please contact us at privacy@rebind.co. If you believe we have not addressed your concerns, you may lodge a complaint with the Commission Nationale de l'Informatique et des Libertés (CNIL), the French data protection authority.
Marketing Communications
We send marketing communications only if you have provided explicit consent. You can opt out at any time by:
- Clicking the "unsubscribe" link in our emails.
- Contacting us at privacy@rebind.co.
Children's Data
Our Site is not directed to individuals under 18 years old. We do not knowingly collect personal data from minors. If you believe a child has provided us with data, please contact us, and we will delete it promptly.
Updates to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Updates will be posted on this page, and we will notify you via email if the changes are significant.
Contact Us
If you have any questions or concerns about this Privacy Policy or your personal data, please contact us at:
Rebind SAS
Email: privacy@rebind.co
Address: 1 Rue de Stockholm, 75008 Paris, France
This Privacy Policy has been drafted in accordance with GDPR and reflects our ongoing commitment to data protection and transparency.