Privacy Policy
Last updated: May 3, 2024.
How we protect your privacy on Genuka when you use our services
Genuka provides you with a tool to help you manage your business. In the course of operating these services, we collect data about you and your business. This data is essential not only for the functioning of our services but also for the security of our services and all our users. This policy explains what information is collected, why it is collected, and how we use it.
Information We Collect
Most of the personal data we collect is directly provided by our users when they sign up and use our tool. Other data is collected by recording interactions with our services.
Account Data & Contact Information
When you sign up on our website to use one of our products or to subscribe to one of our services (Subscription, free trial, invoice payment, etc.) or complete one of our contact forms, you voluntarily provide us with certain information. This typically includes your name, your company name, your email address, and sometimes your phone number, postal address (when an invoice or delivery is required), and a personal password. We never record or store our customers' credit card information. We always use trusted third-party PCI-DSS compliant payment processors for credit card processing, including for recurring payments.Application Data
When you apply for a job on our website or by directly sending your application (email, phone, etc.), we generally collect your contact details (name, email, phone number) and any information you choose to share with us in your cover letter and resume. If we decide to make you a job offer, we will ask you to provide additional personal information to comply with our legal obligations and personnel management requirements. We will not ask you to provide information that is not necessary for the recruitment process. In particular, we will never collect information about your racial or ethnic origin, political opinions, beliefs, union membership, or sexual life.Browser Data
When you visit our website and access our online services, we detect and store the language and geolocation of your browser to personalize your experience based on your country and preferred language. Our servers also passively record a summary of the information sent by your browser for statistical, security, and legal purposes: your IP address, the date and time of your visit, the version and platform of your browser, and the web page that directed you to our website. Your browser may also be used to store and retrieve your current session data using a session cookie (see the Cookies section for more details).Customer Databases
When you subscribe to Genuka, for a LIGHT or PRO plan, you have a shared storage space with other subscribers, but partitioned. For the ENTERPRISE plan, you have the option to opt for your own database. Any information or content you submit or upload to these databases belongs to you. This often includes personal information, such as your employee list, customers, photos, videos, etc. We only collect this information on your behalf, and you always retain full ownership and control of this data.Session Recording
Browsing sessions are recorded on Genuka to help us understand client behavior, assist you in case of difficulties, and improve our product to provide you with a better overall customer experience. These data are consolidated into a video that our user experience experts can watch for a limited time (one month). These recordings will likely include some personal data, such as names, emails, phone numbers, images, depending on the actual information you enter into your database during the recording period. Password fields and other sensitive fields are automatically excluded from the recording, but we cannot entirely rule out the possibility that some sensitive information may be recorded, depending on where you enter it.
Other sections of this policy explain: * how we process this data, * how long we store it, * and how you can access or request the deletion of this data * and which third-party service providers are involved.
How We Use This Information
Account Data & Contact Information:
We use your contact information to provide our services, respond to your questions, and for billing and account management purposes. We may also use this information for marketing and communication purposes (our marketing messages are always accompanied by an option to unsubscribe at any time). We also use this data in an aggregated/anonymized form to analyze service trends. If you have registered for an event published on our website, we may share your name, email address, phone number, and company name with our co-organizer or partner (if applicable) and the event sponsors for direct marketing purposes and to facilitate event preparations and reservations.Application Data
We will only process this information as part of our recruitment process, to evaluate and track your application, and in preparation for your contract if we decide to make you a job offer. You can contact us at any time to request the deletion of your data.Browser Data
This automatically recorded data is analyzed anonymously to maintain and improve our services. We only correlate this data with your personal data when required by law or for security purposes if you have violated one of our usage policies.Customer Databases
We only collect and process this data on your behalf to perform the services you have subscribed to and based on the instructions you have explicitly given during the registration or setup of your Genuka service and database. Our support teams and engineers may access this information in a limited and reasonable manner to resolve any issues related to our services or to assist you at your explicit request or if required by law, or to ensure the security of our services in case of violation of our terms of use.Session Recording
These recordings are used to improve our products: they will only be viewed and analyzed by our R&D team responsible for ergonomics, who will treat your data as strictly confidential information. By viewing the recordings, the team will be able to see a tangible representation of a user's first steps in Genuka and improve the user experience accordingly. These recordings are processed and stored by Posthog (see our list of service providers), under strict confidentiality conditions.
Other sections of this Policy explain:
* what is recorded,
* how we process this data,
* how long we store it
* and which third-party service providers are involved.
* what is recorded,
* how we process this data,
* how long we store it
* and which third-party service providers are involved.
Access, Update, or Delete Your Personal Data
Account Data & Contact Information
You have the right to access and update the personal data you previously provided to us. You can do this at any time by logging into your personal account on genuka.com. If you wish to permanently delete your account or personal data for legitimate reasons, please contact our Support (Email: [email protected] or Whatsapp: +33 7 80 80 63 21) to make the request. We will take all reasonable steps to permanently delete your personal data, unless we are required to retain it for legal reasons (generally for administrative, billing, and tax reporting purposes).Application Data
You can contact us at any time to request access to, update, or delete the data related to your application. The easiest way is to reply to the last message you exchanged with our Human Resources department.Databases
You can manage all the data collected in your databases hosted on genuka.com at any time using your admin credentials, including modifying or deleting any stored personal data. You can request an export of a complete backup of your database at any time by emailing [email protected] or via Whatsapp at +237 6 95 76 25 95, to transfer or manage your own backups/archives. You are responsible for processing this data in accordance with all privacy regulations. You can also request the deletion of your entire database at any time via the same communication methods mentioned above.Session Recording
You can contact us at any time to access or delete the recordings of your sessions (see contact information below). Please include information about your account to help us retrieve your specific recording(s). The recordings are automatically deleted after one month, so if your trial is older than that, the data no longer exists.
Other sections of this Policy explain:
* what is recorded,
* how we process this data,
* how long we store it
* and which third-party service providers are involved.
* what is recorded,
* how we process this data,
* how long we store it
* and which third-party service providers are involved.
Retention Period:
We keep a copy of your data in our backups for security reasons, even after it has been deleted from our live systems. See Data Retention for more details.Security
We are aware of the importance and sensitivity of your personal data, and we implement numerous measures to ensure that this data is processed, stored, and preserved securely against data loss and unauthorized access. Our technical, administrative, and organizational security measures are detailed in our Security Policy.Third-Party Service Providers / Subcontractors
We use several service providers to support our operations. They help us with various services, such as payment processing, web audience analysis, cloud hosting, marketing, and communication, etc. Whenever we share data with these service providers, we ensure that they use it in accordance with data protection laws, that the processing they perform for us is limited to our specific purpose, and that it is covered by a specific data processing contract. Below is a list of the service providers we currently use, why we use them, and what type of data we share with them.
A. Subcontractors
These third-party service providers process data for which Genuka is the data controller or processor, on behalf of Genuka. Important: Due to the significant variability of resources and services provided by these subcontractors, Genuka customers cannot choose the subcontractor that will be used to process their data.| Subcontractors | Purpose | Shared Data |
|---|---|---|
| OVHCloud SAS | Confidentiality & Security | Infrastructure and hosting of genuka.com (production + backups and analytical data), Currently hosted by OVHCloud: Genuka.com production data, including Genuka customer databases; also found (on different servers) are data backups and analytical data (cookies) related to client activity. Data center certifications: ISO 27001, SOC 1 TYPE II, SOC 2 TYPE II, PCI-DSS, CISPE, SecNumCloud, CSA STAR. |
| Amazon Web Services, Inc. | Confidentiality & Security | Infrastructure (storage) The data stored at AWS includes media data (product images, PDF documents, company logos, etc.). Data center certifications: ISO 9001, ISO 27001, ISO 27017, ISO 27018, SOC 1, SOC 2, SOC 3, PCI-DSS, HIPAA, CISPE, CSA STAR. |
| PostHog | Security & Confidentiality | GDPR information, Cookie policy, Temporary recordings of user sessions. Shared with PostHog: video recording of your screen during the use of Genuka. |
| Cloudflare | Infrastructure (storage) | Genuka customer data backups are made on Cloudflare. |
B. Data Controllers and Temporary Processors
These third-party service providers process data for which Genuka is the data controller, as processors on behalf of Genuka, or receive such data as data controllers for the specific purpose of performing the services for which they were engaged.| Service Providers | Purpose | Shared Data |
|---|---|---|
| Flutterwave | PCI • Confidentiality & Security | Payment processing on Genuka.com. Shared with Flutterwave: Order details (amount, description, reference), customer name and email. Only stored by Flutterwave: credit card information. |
| NotchPay LTD | PCI • Confidentiality | Payment processing on Genuka.com. Shared with NotchPay: Order details (amount, description, reference), customer name and email. Only stored by NotchPay: credit card information. |
| Stripe | PCI • Confidentiality & Security | Payment processing on Genuka.com. Shared with Stripe: Order details (amount, description, reference), customer name and email. Only stored by Stripe: credit card information. |
| CloudFlare | Security & Confidentiality • Cookie Policy | Distributed caching of static resources and images on Genuka.com. Used by CloudFlare: browser and device characteristics, CloudFlare cookies. |
Data Retention
Account Data & Contact Information
We only retain this data for as long as necessary to fulfill the purpose for which it was collected, as stated in this policy, including any legal retention period or the time necessary to carry out legitimate and reasonable promotion of our products and services.Application Data
If we do not hire you, we may retain the information you provided for up to 3 years to contact you for any new job offer that may arise, unless you ask us not to. If we hire you, your personal data will be retained for the duration of your employment contract and then for the applicable legal retention period in the country where we employed you.Browser Data
We may retain this data for up to 12 months unless we need to keep it in connection with a legitimate security concern or service performance issue, or as required by law. Any server-side session information is retained only for 3 months when actively used, otherwise, it is deleted after 7 days.Customer Databases
We only retain this data for as long as necessary to provide the services you have subscribed to. For private databases and those uploaded to the website by ENTERPRISE plan accounts, your database remains active for 4 months after the last use but may be deleted earlier upon request.Session Recording
The recordings are automatically deleted after one month and can be deleted earlier upon request or once they have been processed or deemed irrelevant.Security Retention Period
In accordance with our Security Policy, we strive to protect your data against accidental or malicious deletion. Therefore, after we have deleted your personal data (Account Data & Contact Information) from our database at your request or after you have deleted personal data from your database (Customer Databases), or if you delete the entire database, the data is not immediately deleted from our backup systems, which are secure and immuTable. Personal data may be retained for up to 12 months in these backups until they are automatically destroyed.
Location of Physical Data / Data Transfers
Hosting Services
Hosting locations: customer databases are hosted in Europe.Backup locations: Backups are replicated across multiple countries to meet our disaster recovery objectives and are located in the following countries, regardless of the original hosting region:
* France
* USA
Note: It is not possible to choose or restrict backup locations, backups are replicated to all these locations. Data hosting only within the EU is not supported.
International Personnel
In some cases, the personal data mentioned in this privacy policy may be accessed by Genuka staff members in other countries. This access will always be done for the same purposes and with the same confidentiality and security precautions as if it were done by our local staff, so all the guarantees we provide remain applicable.Disclosure to Third Parties
Unless explicitly stated otherwise, we do not sell, trade, or transfer your personal data to third parties. However, we may share or disclose aggregated or anonymized information for research purposes or to discuss trends or statistics with third parties.Policy Updates
We may update this privacy policy to clarify, reflect any changes on our website, or comply with legal obligations. The "Last Updated" note at the top of the policy indicates the latest revision, which is also the effective date of these changes.Contact Us
If you have any questions about this Privacy Policy or your personal data, please feel free to contact us by email at [email protected] or via Whatsapp at +33 7 80 80 63 21.
Create and manage your store with Genuka. We provide you with the tools to create and manage your store. We handle the technical stuff, so you can focus on your business.