Privacy Policy

Last updated: 6/19/2025

1. Data Controller

The data controller for personal data processing is:

  • Company: PRISMIA
  • Director: MIKOREY--NILSSON GABRIEL
  • Legal form: Individual entrepreneur (Micro-enterprise)
  • SIRET: 987 841 335 00019
  • VAT: FR96987841335
  • Address: 5 RUE CELS, 75014 PARIS
  • Email: isidore@prismia.be
  • Phone: +33 7 44 98 73 14

2. Personal Data Collected

As part of providing our AI chatbot creation services, we collect the following data:

  • Identification data: name, first name, email address, phone number
  • Technical data: IP address, browsing data, browser information
  • Service data: chatbot conversation content, website URL to analyze
  • Analytics data: visit and usage statistics via Vercel Analytics

3. Purposes and Legal Basis for Processing

Your personal data is processed for the following purposes:

  • Service provision: creation and deployment of your AI chatbot (legal basis: contract performance)
  • Service improvement: optimization of our algorithms and features (legal basis: legitimate interest)
  • Customer support: technical assistance and answering your questions (legal basis: contract performance)
  • Marketing: sending information about our services with your consent (legal basis: consent)

4. Data Retention

  • Chatbot conversations: maximum 7 days after their creation
  • Customer data: throughout the contractual relationship + 3 years (accounting obligations)
  • Prospect data: 3 years from last contact
  • Analytics data: maximum 24 months

5. Data Sharing and Subprocessors

We do not sell, rent, or share your personal data for commercial purposes. However, we use the following subprocessors for our service provision:

  • Vercel: website hosting (United States - standard contractual clauses)
  • Supabase: database (United States - standard contractual clauses)
  • Google Cloud: AI/LLM processing (United States - standard contractual clauses)
  • Firecrawl: website scraping (United States - standard contractual clauses)

These subprocessors are contractually bound to respect the confidentiality of your data and process it only according to our instructions.

6. Data Security

We implement appropriate security measures to protect your personal data:

  • SSL/TLS encryption for all communications
  • Application of OWASP best practices
  • Strict data access controls
  • Continuous security monitoring
  • No security incidents recorded to date

7. Cookies and Similar Technologies

We use cookies and similar technologies for:

  • Functional cookies: necessary for proper website operation
  • Analytics cookies: audience measurement via Vercel Analytics (anonymized data)

You can configure your browser to refuse cookies, but this may limit certain features of our service.

8. Your Rights

In accordance with GDPR, you have the following rights regarding your personal data:

  • Right of access: obtain a copy of your personal data
  • Right of rectification: correct inaccurate data
  • Right to erasure: delete your data under certain conditions
  • Right to restriction: restrict the processing of your data
  • Right to portability: retrieve your data in a structured format
  • Right to object: object to processing for legitimate reasons
  • Right to withdraw consent: at any time for processing based on consent

To exercise your rights:
Send an email to: isidore@prismia.be
Response time: Maximum 1 month from receipt of your request.

9. Complaints

If you believe your rights are not being respected, you can file a complaint with the Commission Nationale de l'Informatique et des Libertés (CNIL):

  • Website: www.cnil.fr
  • Address: 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07
  • Phone: 01 53 73 22 22

10. Modifications

This privacy policy may be modified at any time. Important changes will be notified to you by email at the address you provided to us. The last update date is indicated at the top of this page.

11. Contact

For any questions regarding this privacy policy or the processing of your personal data, you can contact us: