Privacy policy

Last updated: 12 May 2026

1. Data Controller

ADSDRO SAS, registered with the Paris Trade Register, with its registered office at 12 street de la Tech, 75002 Paris, France. Data Protection Officer: dpo@adsdro.com.

2. Data Collected

We collect the following data:

  • Account: first name, last name, email, password (hashed).
  • Billing: address, company name, payment data (processed by Stripe).
  • Usage: searches performed, collections, preferences, in-app browsing history.
  • Technical: IP address, user-agent, cookies, server logs.

3. Purposes

Your data is used to: (a) provide and improve the service, (b) manage your subscription and billing, (c) ensure the security of the platform, (d) send you transactional communications, (e) analyze usage for statistical purposes (anonymized data).

4. Legal Basis

Processing is based on the performance of the contract (Terms of Use), your consent (newsletter, non-essential cookies), and our legitimate interests (security, fraud prevention).

5. Data Retention Period

Account data: for the duration of the contract + 3 years. Billing data: 10 years (legal obligation). Technical logs: 12 months maximum.

6. Recipients

Your data is accessible to our authorized teams and our sub-processors: Stripe (payments), AWS / Cloudflare (hosting, EU), Postmark (emails). No data is sold to third parties.

7. Transfers outside the EU

Some sub-processors may process data in the United States. These transfers are governed by the European Commission's standard contractual clauses.

8. Your Rights

In accordance with the GDPR, you have the rights of access, rectification, erasure, restriction, portability, and objection. To exercise these rights: dpo@adsdro.com. You can also lodge a complaint with the CNIL (www.cnil.fr).

9. Cookies

We use essential cookies (session, security) and, subject to your consent, audience measurement cookies. You can manage your preferences at any time from the cookie banner.

10. Security

TLS encryption, hashed passwords (bcrypt), restricted access, regular audits, encrypted backups. In case of a data breach, we will notify the CNIL and affected users within 72 hours.

11. Contact

For any questions: dpo@adsdro.com.