Kewos attaches the utmost importance to the protection of personal data, in accordance with the General Data Protection Regulation (GDPR).
1. Data controller
The data controller is [COMPANY NAME TO BE COMPLETED], [ADDRESS TO BE COMPLETED]. Contact: [EMAIL TO BE COMPLETED]. Data Protection Officer (DPO): [DPO CONTACT TO BE COMPLETED].
2. Data collected and purposes
- Lead / contact: work email and message, to answer your requests and prepare a quote.
- Account and SaaS service: data necessary to provide the service.
- Technical logs: strictly necessary for security and proper operation.
3. Legal bases
Depending on the case, processing relies on your consent, the performance of a contract or pre-contractual measures, or the legitimate interest of Kewos (security, service improvement).
4. Hosting and location
Data is hosted in Europe. No transfer outside the EU is made without an appropriate legal basis and prior notice. In SaaS mode, each customer has an isolated database.
5. Recipients
Data is not sold to third parties for commercial purposes. It may be processed by technical sub-processors (hosting) under contractual safeguards (art. 28 GDPR): [SUB-PROCESSOR LIST TO BE COMPLETED].
6. Retention
Lead data is kept for [DURATION TO BE COMPLETED, e.g. 3 years] from the last contact. Account data is kept for the duration of the contractual relationship, then archived according to legal obligations.
7. Your rights
You have the rights of access, rectification, erasure, restriction, objection and portability. To exercise them: [EMAIL TO BE COMPLETED]. You may lodge a complaint with your supervisory authority.
8. Cookies
The site uses no tracking or advertising cookies by default. Only strictly necessary cookies may be set; where applicable, a consent banner will be shown: [ADJUST IF ANALYTICS ADDED].
9. Security
Kewos implements appropriate technical and organisational measures: secret encryption, application-level access control, audit log, backups.