MetaDevProfile logoMetaDevProfile

Privacy Policy

Last updated: January 2025

Introduction

This privacy policy explains how SENSOTED (publisher of MetaDevProfile) collects, uses, shares and protects your personal data in accordance with the General Data Protection Regulation (GDPR) and applicable French legislation.

Data Controller

The data controller of personal data is:

SENSOTED

2275 CHEMIN DE LA DOUDONNE, 13100 AIX-EN-PROVENCE, France

SIREN: 980 343 933

Email: legal@metadevprofile.com

Data Protection Officer: legal@metadevprofile.com

Data Collected

For professionals:

• First and last name
• Email address
• Phone number
• Complete billing information (address, SIRET, company)
• Connection and usage data

For patient files:

• First and last name
• Email address and contact phone number
• Gender
• Medical data necessary for evaluation (encrypted)

Technical data:

• IP address
• Browser information
• Navigation data
• Connection logs

Legal Basis for Processing

The processing of your personal data is based on:

• Contract execution for providing MetaDevProfile services
• Consent for certain specific treatments
• Legitimate interest for security and service improvement
• Legal obligation for billing data retention

Data Usage

Your data is used to:

• Provide and maintain MetaDevProfile services
• Manage your account and billing
• Improve our services
• Ensure platform security
• Comply with our legal obligations
• Communicate with you regarding our services

Data Sharing

We do not sell your personal data. Your data may be shared with:

• Supabase (secure hosting in Europe)
• RevenueCat (subscription management)
• Stripe, Apple, Google (payment processing)
• Competent authorities if required by law

All our partners are bound by confidentiality and data protection agreements.

Storage and Security

Data location:

Your data is stored on Supabase servers hosted in Europe, compliant with European regulations.

Security:

All data is encrypted. Sensitive information (patient files) is encrypted with AES-256-CBC.

Retention:

Your data is retained until your deletion request or for a maximum of 1 year for billing data.

Cookie Policy

We only use cookies strictly necessary for the proper functioning of the application (authentication, security).

Types of cookies used:

• Session cookies (authentication)
• Security cookies (CSRF protection)
• Preference cookies (language, theme)

We do not sell your browsing data and do not use advertising cookies.

Your Rights

In accordance with GDPR, you have the following rights:

• Right of access: view your personal data
• Right of rectification: correct your data
• Right of erasure: delete your data
• Right to portability: retrieve your data
• Right of objection: object to processing
• Right to limitation: limit processing

Exercise your rights:

To exercise your rights, contact us at contact@metadevprofile.com or from your personal space.

We commit to responding to your requests within one month.

Right to complaint:

You have the right to file a complaint with the CNIL (www.cnil.fr) if you believe your rights are not being respected.

Data Transfers

Your data may be transferred outside the European Union only to countries offering an adequate level of protection or with appropriate safeguards.

Applied safeguards:

• Standard contractual clauses approved by the European Commission
• Recognized security certifications
• Data protection agreements

Minor Protection

MetaDevProfile is intended for adult professionals with business registration. We do not knowingly collect data from minors.

Policy Changes

This policy may be modified to reflect changes in our practices or legislation.

You will be informed of any significant changes by email or notification in the application.

Changes take effect upon publication on this page.

Contact

For any questions regarding this privacy policy:

Email: legal@metadevprofile.com

Address: 2275 CHEMIN DE LA DOUDONNE, 13100 AIX-EN-PROVENCE, France

Data Protection Officer: legal@metadevprofile.com