Confidentialité et traitement des données
This page sets out our commitments on confidentiality and how we treat sensitive business and personal information in our product. Adapt every section to your contracts, hosting locations, and applicable law.
Scope
Clarify what is covered: merchant data, end-customer data processed on behalf of merchants, internal staff access, and any subprocessors.
Confidentiality obligations
Describe who may access data, under what conditions, and that staff or partners must keep information confidential except as required by law.
Security & access control
Summarise technical and organisational measures: authentication, least-privilege roles, encryption in transit, backups, incident response.
Subprocessors & transfers
List or link to hosting, email, analytics, or AI providers. If data leaves the user’s region, explain safeguards (e.g. standard contractual clauses).
Breach notification
Explain how you notify affected merchants or users if a breach occurs, and within what timeframe, in line with local rules.
Contact
Provide a dedicated email or form for confidentiality and security questions.