Last updated: October 10, 2025
Version: 1.1
GDPR Compliance: This policy complies with the General Data Protection Regulation (GDPR) and French Data Protection Act (Informatique et Libertés).
This policy applies to the use of the NoPaperManuals™ platform.
1. DATA CONTROLLER
Company: LTA Smarttech Solutions
Address: 60 rue françois premier, 75008 Paris
Email: [email protected]
DPO: Non applicable
2. DATA COLLECTED
2.1 B2B Customer Data
- Identification data: First name, last name, email, company name
- Billing data: Address, VAT number, Stripe information
- Technical data: IP address, connection logs, preferences
- Usage data: Usage statistics, anonymized analytics
2.2 End User Data (QR codes)
- Email: Voluntarily provided to receive manuals
- Browsing data: IP, device, language, pages viewed
- Technical cookies: Sessions, language preferences
2.3 Manual Data
- PDF files: Manuals uploaded by customers
- Metadata: Filename, size, language, version
- Statistics: Downloads, views (anonymized)
3. YOUR GDPR RIGHTS
🔍 Right of Access
Know what data we hold about you
✏️ Right to Rectification
Correct inaccurate or incomplete data
🗑️ Right to Erasure
Delete your data under certain conditions
📦 Right to Data Portability
Retrieve your data in a readable format
How to exercise your rights: Contact us at [email protected] with proof of identity. Response within 1 month maximum.
4. PURPOSE OF PROCESSING
- Service provision: Platform access, manual hosting, QR code generation
- Billing management: Invoices, subscriptions, payment processing
- Customer support: Technical assistance, request management
- Statistics: Usage analytics to improve the service (anonymized)
- Communication: Product updates, important notifications
Legal basis: Contract execution, legitimate interest, legal obligation, consent (cookies).
5. DATA SECURITY
- TLS 1.3 encryption for all communications
- AES-256 encryption for data at rest
- Daily encrypted backups
- Data access limited to authorized personnel
- Continuous monitoring of intrusion attempts
6. RETENTION PERIOD
- Active accounts: Subscription duration + 1 year
- Billing data: 10 years (French legal obligation)
- Security logs: 1 year maximum
- Terminated accounts: Progressive deletion according to legal obligations
- Right to erasure: Request possible at any time (subject to legal obligations)
7. DATA SHARING
We share your data only with trusted partners essential for service operation:
- Stripe: Payment processing (PCI DSS certified)
- Mailjet: Email sending (GDPR certified)
- Hosting: Servers in France/EU (ISO 27001)
- CDN: Cloudflare R2 for file storage (GDPR compliant)
- Guarantee: No sale of data to third parties
International transfers: Some partners (Stripe, Mailjet) may transfer data to the USA under EU-US Data Privacy Framework standard contractual clauses.
8. COOKIES
We use the following types of cookies:
- Essential cookies: Authentication, security, sessions (no consent required)
- Preference cookies: Language, display preferences (no consent required)
- Analytics cookies: Usage statistics (consent required)
You can manage your preferences via our cookie banner or your browser settings.
9. CHILDREN'S PRIVACY
Our service is intended for businesses (B2B). We do not knowingly collect data from children under 16. If you believe we have collected such data, please contact us immediately.
10. POLICY UPDATES
This privacy policy may be updated. Significant changes will be notified by email with 30 days' notice. The current version is always available on our website.
11. CONTACT & COMPLAINTS
For any questions about this privacy policy or to exercise your rights:
- 📧 Data Protection Officer: [email protected]
- 🛠️ Support: [email protected]
- ⚖️ Lodge a complaint: If you believe your rights have not been respected, you can lodge a complaint with the French data protection authority (CNIL): www.cnil.fr
Privacy policy last updated: October 10, 2025
