Privacy Policy

1. Introduction

This Privacy Policy explains how Reetain Consulting (“Reetain”, “we”, “our”, “us”) collects, uses, stores and protects personal data when you visit our website reetain.com, contact us, or interact with our services.

We are committed to protecting your privacy in accordance with the General Data Protection Regulation (GDPR – EU 2016/679) and the French Data Protection Act (“Loi Informatique et Libertés”).

2. Data Controller

The data controller responsible for processing your personal data is:

Reetain Consulting (SAS)
10 Rue de Penthievre, 75008 Paris, France
SIREN: 891 337 966
Email: akram.elfadil@reetain.com

3. Personal Data We Collect

We may collect and process the following categories of data:

3.1. Data you provide directly

• Name, surname
• Email address
• Company name
• Job title
• Phone number (optional)
• Content of your message (contact forms)

3.2. Data collected automatically

Through cookies and analytics tools:

• IP address
• Browser type and version
• Device information
• Pages viewed
• Navigation path
• Time spent on pages
• Referring websites

3.3. CRM & engagement data

If you interact with us (e.g., by downloading a file or requesting a meeting), we may store:

• CRM history
• Communication logs
• Notes related to your request or project

3.4. Professional interactions

If you are a client or partner:

• Contractual information
• Billing and payment details
• Project-related information

4. How We Use Your Data

We process personal data for the following purposes:

• Responding to contact requests
• Managing ongoing client relationships
• Preparing proposals and consulting engagements
• Sending business information or updates (if consent is provided)
• Improving website performance and user experience
• Ensuring website security
• Complying with legal obligations

We do not sell personal data.

5. Legal Bases for Processing

We process data on the following legal bases:

• Consent (e.g., when submitting a form or accepting cookies)
• Legitimate interest (e.g., improving services, ensuring website security, CRM follow-up)
• Contract performance (client relationships)
• Legal obligations (accounting, fraud prevention, compliance)

6. Data Retention

Your data is retained only for the time necessary to fulfil the purposes described above:

• Contact form submissions: up to 24 months
• CRM interactions: duration of relationship + 3 years
• Analytics data: 13 months
• Contractual/financial data: 10 years (legal requirement)

7. Data Sharing

We may share data with third parties only when necessary:

7.1 Service providers (sub-processors)

• Webflow (website hosting)
• Google Analytics / Plausible / other analytics tools
• Salesforce (CRM system)
• Email providers
• Security tools

These providers may store data outside the EU. In such cases, we ensure adequate safeguards (e.g., Standard Contractual Clauses).

7.2 Legal compliance

We may disclose data if required by law or authorized authorities.

We do not sell or rent personal data to third parties.

8. Cookies and Tracking Technologies

We use cookies for:

• Site functionality
• Performance analytics
• User experience optimization
• Security

You can manage cookie preferences at any time through the cookie consent banner.

For more information, refer to your browser’s cookie management settings.

9. Your Rights (GDPR)

You have the right to:

• Access your personal data
• Rectify inaccurate or incomplete data
• Erase your data (“right to be forgotten”)
• Object to processing
• Restrict processing
• Port your data to another provider
• Withdraw consent at any time

To exercise these rights, contact:

📧 akram.elfadil@reetain.com

We may request proof of identity to ensure security.

10. Security Measures

We implement appropriate technical and organizational measures to protect your data, including:

• Encrypted connections (HTTPS)
• Access control and authentication
• Regular platform updates
• Secure CRM practices
• Limiting access to authorized personnel only

Despite our efforts, no system is entirely immune from risks.

11. International Transfers

Some service providers (e.g., Webflow, Salesforce) may process data outside the EU.

We ensure adequate protection through:

• Standard Contractual Clauses (SCCs)
• Provider compliance with GDPR-equivalent frameworks
• Minimum necessary data exposure

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in laws, services, or internal processes.

The updated version will be posted on this page with a revised “Last updated” date.

13. Contact

For any questions regarding this Privacy Policy or personal data protection:

📧 akram.elfadil@reetain.com
📍 Reetain Consulting, 10 Rue de Penthievre, 75008 Paris, France

‍