Looply
Looply · Privacy

Privacy Policy

In force as of April 20, 2026≈ 3 min summary
Binding version
The French version is the binding one. View binding French Privacy Policy →

Notice

Looply complies with Regulation (EU) 2016/679 (GDPR) and the French Data Protection Act. Data is hosted in the EU; US sub-processors are covered by Standard Contractual Clauses and, where applicable, the EU-US Data Privacy Framework.

Summary

  • Controller: Looply SAS — DPO dpo@looply.app.
  • Data hosting: AWS Ireland. Applicative layer: Vercel (US, SCCs + EU-US DPF).
  • Sub-processors: Vercel, AWS EMEA, Stripe, Resend, Sentry. All bound by Art. 28 DPAs.
  • Retention: 10 y. for invoicing, 6 m. for review-request emails, 30 d. after cancellation.
  • Rights (Art. 15-22 GDPR): access, rectification, erasure, restriction, objection, portability. Reply within 30 days.
  • Complaint to CNIL possible at any time.
Politique de Confidentialité · Looply · Looply