top of page

Privacy Policy

PRIVACY POLICY

​

Last Updated: October 2, 2025

 

Introduction

Welcome to bimimi.io. This Privacy Policy outlines how Safercy SAS, operating through its brand "bimimi.io" ("we," "us," or "our"), collects, uses, protects, and handles your personal data when you use our website and services.

We are committed to protecting your privacy and processing your data in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable French data protection laws.

 

Article 1: Data Controller (Responsable du traitement)

The entity responsible for processing your personal data is:

  • Company Name: Safercy SAS

  • Company Registration Number (RCS): 939 033 379 R.C.S. Lille Métropole

  • Registered Address: 207 Avenue Willy Brandt, 59777 Lille, France

  • Legal Contact Email: legal@safercy.com

 

Article 2: Personal Data We Collect

We collect and process personal data in several ways:

  • 2.1. Data You Provide Directly to Us: When you create an account, purchase a service, or contact us for support, you may provide us with:

    • Identity and Contact Data: Full name, email address, telephone number.

    • Professional Data: Company name, job title, company address.

    • Financial Data: Payment information (processed securely by our third-party payment processors), billing address, and transaction details.

    • Account Data: Username, password, and purchase history.

  • 2.2. Data Collected Automatically: When you browse our website, we may automatically collect:

    • Technical Data: IP address, browser type and version, time zone setting, operating system, and device information.

    • Usage Data: Information about how you use our website, including pages visited, time spent on pages, and links clicked. This data is collected through cookies and similar technologies.

 

Article 3: Legal Basis and Purposes of Data Processing

We process your personal data only when we have a valid legal basis to do so. The purposes and legal bases for our processing activities are as follows:

Purpose of ProcessingLegal Basis for Processing

To create and manage your account.Performance of a contract

To process your orders, provide our services, and manage payments.Performance of a contract

To communicate with you regarding your order or our services.Performance of a contract

To provide customer support and respond to your inquiries.Legitimate interest; Consent

To comply with our legal and accounting obligations (e.g., invoicing).Legal obligation

To improve our website, services, and user experience.Legitimate interest

To send you marketing communications and newsletters (if you have opted-in).Consent

To ensure the security of our website and prevent fraud.Legitimate interest

Exporter vers Sheets

 

Article 4: Data Recipients and Third-Party Sharing

We do not sell your personal data. We may share your data with trusted third parties only when necessary to provide our services, including:

  • Certificate Authorities (CAs): To provide our core service, we must share your identity and professional data with the Certificate Authority (e.g., DigiCert) for the purpose of validating and issuing your VMC or CMC.

  • Payment Processors: To securely process your payments (e.g., Stripe, PayPal).

  • Service Providers: To host our website, manage our IT infrastructure, and provide analytics or marketing services.

  • Legal and Regulatory Authorities: If required by law or in response to a valid legal process.

 

Article 5: Data Transfers Outside the European Union

Some of our service providers may be located outside the European Union. In such cases, we ensure that the transfer of your personal data is protected by appropriate legal safeguards, such as the European Commission's Standard Contractual Clauses (SCCs), to guarantee a level of data protection equivalent to that required by the GDPR.

 

Article 6: Data Retention Period

We will retain your personal data only for as long as is necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. For example, data related to invoices must be kept for a period of 10 years in accordance with French commercial law.

 

Article 7: Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Right of Access: The right to request a copy of the personal data we hold about you.

  • Right to Rectification: The right to request the correction of inaccurate or incomplete data.

  • Right to Erasure ("Right to be Forgotten"): The right to request the deletion of your personal data, under certain conditions.

  • Right to Restrict Processing: The right to request the limitation of how we process your data, under certain conditions.

  • Right to Data Portability: The right to receive your data in a structured, commonly used, and machine-readable format.

  • Right to Object: The right to object to the processing of your data, particularly for marketing purposes.

 

Article 8: How to Exercise Your Rights

To exercise any of your rights, please send a formal request to our legal contact email: legal@safercy.com. We may ask you to verify your identity before responding to your request.

 

Article 9: Right to Lodge a Complaint

If you believe that your data protection rights have been violated, you have the right to lodge a complaint with the competent supervisory authority. In France, this is the Commission Nationale de l'Informatique et des Libertés (CNIL). You can find more information on their website: https://www.cnil.fr.

 

Article 10: Cookies

Our website uses cookies to enhance user experience, perform analytics, and ensure proper functionality.

 

Article 11: Security of Your Data

We implement appropriate technical and organizational security measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.

 

Article 12: Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any significant changes by posting the new policy on our website.

 

Article 13: Contact Us

If you have any questions or concerns about this Privacy Policy or our data protection practices, please do not hesitate to contact us at legal@safercy.com.

bottom of page