Confidentiality policy

Mise à jour le
June 11 2025

At Fundora, the protection of your personal data is a priority. When you use the site www.fundora.fr (the “Site”), we are required to collect personal data about you.The purpose of this policy is to inform you about the methods by which we process this data in accordance with Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data personal data and the free movement of this data (the “RGPD”) and Law No. 78-17 of January 6, 1978 relating to information technology, files and freedoms (together the “Applicable Regulations”).

1. Who is the data controller?

When you browse our Site, as part of the management of our contractual relationships with our customers (“You”), the data controller is Fundora, a simplified joint stock company, registered with the Orléans Trade and Companies Register under number 929 017 119 and whose head office is located at 23 rue Antigna, 45000 Orléans (“We”).

2. What data do we collect?

Personal data is data that makes it possible to identify an individual directly or by cross-checking with other data.We collect personal data that falls under the following categories: Identification data (name, first name, email address, telephone number, nationality, nationality, postal address, postal address, postal address, postal address, city of birth, nationality); Data relating to the financial situation (city of birth, nationality); Data relating to financial situation (country of taxation); Data relating to financial situation (country of taxation) Identification documents (passport, residence permit, national identity card or driver's license) in order to be able to validate your profile investor; - Authentication data; - Connection data (connection logs, encrypted passwords); - Navigation data (IP address, pages viewed, date and time of connection, browser used, operating system, user ID, MAID); - Data related to the products and services subscribed (type of product, payment method, deadline, amount, etc.); - Economic and financial data (RIB, relative data); - Data related to the products and services subscribed (type of product, method of payment, date and time of connection, amount, etc.); - Economic and financial data (RIB, relative data); to your bank cards); Other data (LinkedIn URL link) Any information you want to send us in the as part of your contact request. Mandatory data is indicated when you provide us with your data. They are reported by all means.

3. On what legal bases, for what purposes and for how long do we keep your personal data?

Objectifs Bases légales Durées de conservation
Pour gérer votre inscription sur le Site Exécution du contrat que Vous avez souscrit avec Nous.

– Vos données de compte : pendant toute la durée de votre compte.

– Logs de connexion : 1 an.

– Inactivité : suppression après 5 ans sans réactivation.

– Archivage probatoire : 5 ans.
Pour vous fournir les services disponibles sur notre Site via votre compte Exécution du contrat que Vous avez souscrit avec Nous. 5 ans à compter de la fin du contrat.
Pour répondre à vos demandes d’information (formulaires, chatbot) Notre intérêt légitime à répondre à vos demandes. 3 ans après le dernier contact ou l’utilisation des services.
Constituer un fichier de prospects Notre intérêt légitime à développer et promouvoir notre activité.

Clients : 5 ans après fin de la relation commerciale.

Prospects : 3 ans après dernier contact.
Adresser des newsletters et messages promotionnels

Prospects : votre consentement.

Clients : intérêt légitime à vous fidéliser et informer.

 3 ans après dernier contact ou retrait du consentement.
Se conformer aux obligations légales marchés financiers Obligations légales et réglementaires. Pendant la relation + 5 ans après.
Lutter contre la fraude (KYC, sanctions) Obligations légales et réglementaires.

Vérif. identité : 2 ans.

Alerte non pertinente : jusqu’à 6 mois.

Alerte pertinente : 5 ans après clôture.
Lutter contre le blanchiment et financement du terrorisme (LCB/FT) Obligations légales et réglementaires
Durée légale de prescription 		Conformément à la durée légale de prescription applicable.
Gérer les demandes d’exercice de droits Intérêt légitime à répondre et suivre.

Justificatif d’identité : durant la vérification puis suppression.

Droit d’opposition : 3 ans.

4. Who are the recipients of your data?

Will have access to your personal data: (i) Our company's staff; (ii) Our subcontractors: hosting provider, newsletter sending provider, audience measurement and analysis provider, electronic messaging service provider, cookie management tool, cookie management tool, data processing tools, data processing tools, data processing tools, data processing tools, data processing tools, data processing tools, tool for scheduling appointments and agenda management; (iii) If applicable: public and private organizations, exclusively to meet our legal obligations.

5. Is your data likely to be transferred outside the European Union?

Your data is retained and stored for the duration of processing on the servers of Amazon Web Services Inc. Delaware limited liability company 410 Terry Avenue North, Seattle, WA 98109-5210, USA, Tel 001 206 266 7010, http://aws.amazon.comDans the framework of the tools we use (see article on recipients concerning our subcontractors), your data may be subject to transfers outside the European Union. The transfer of your data in this context is secured using the following tools: either the data is transferred to a country that has been the subject of an adequacy decision by the European Commission, in accordance with article 45 of the RGPD: in this case, this country ensures a level of protection considered sufficient and adequate to the provisions of the RGPD; or the data is transferred to a country whose level of data protection has not been recognized as adequate to the RGPD: in this case, this country ensures a level of protection considered sufficient and adequate to the provisions of the RGPD; or the data is transferred to a country whose level of data protection has not been recognized as adequate to the RGPD: in this case these transfers are based on appropriate guarantees set out in the Article 46 of the RGPD, adapted to each service provider, including but not limited to the conclusion of standard contractual clauses approved by the European Commission, the application of binding corporate rules or under an approved certification mechanism; either the data is transferred on the basis of one of the appropriate guarantees described in one of the appropriate guarantees described in Chapter V of the RGPD.You can obtain a copy of the tools allowing the transfers of your data outside the European Union by contacting us at the contact details indicated in article 9 “Point of contact to exercise your rights” below.

6. What are your rights to your data?

You have the following rights with respect to your personal data:Right to information: this is exactly why we wrote this policy. This right is provided for in articles 13 and 14 of the RGPD.Right of access: you have the right to access all of your personal data at any time.Right to rectification: you have the right to rectify your inaccurate, incomplete or obsolete personal data at any time in accordance with article 16 of the RGPD.Right to limitation: you have the right to obtain the limitation of the processing of your personal data in certain cases defined in article 18 of the RGPD.Right to erasure: you have the right to demand that your personal data be deleted, and to prohibit any future collection for the reasons set out in article 17 of the RGPD.Right to file a complaint with a competent supervisory authority (in France, the CNIL), if you consider that the processing of your personal data constitutes a violation of applicable texts, in accordance with article 77 of the RGPD.Right to define guidelines relating to the storage, deletion and communication of your personal data after your death.Right to withdraw your consent to any moment: for purposes based on consent, Article 7 of the GDPR states that you can withdraw your consent at any time. This withdrawal will not call into question the legality of the processing carried out before the withdrawal.Right to portability: under certain conditions specified in article 20 of the GDPR, you have the right to receive the personal data you have provided to us in a standard machine-readable format and to require their transfer to the recipient of your choice.Right to object: under article 21 of the GDPR, you have the right to object to the processing of your personal data. However, note that we may maintain their processing despite this opposition, for legitimate reasons or the defense of legal rights. You can exercise these rights by writing to us at the contact details below. On this occasion, we may ask you to provide us with additional information or documents to justify your identity.6.2. For any question or request that has remained unsuccessful, You are entitled to file a complaint with the competent supervisory authority, in France, the Commission Nationale de l'Informatique et des Libertés (“CNIL”), located at 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 0

7. What security measures do We implement?

We are committed to implementing technical and organizational measures to ensure the security, integrity, authenticity and confidentiality of your personal data, in particular the implementation of appropriate physical, logical, organizational security measures, encryption, anonymization to guarantee the confidentiality and integrity of your data to guarantee the confidentiality and integrity of your data and to avoid any unauthorized access. We ensure that our subcontractors also maintain a level of protection similar to ours when it comes to the processing of your data. personal.

8. What cookies do we use?

To find out more about the management of cookies, we invite you to consult our Cookies Policy.We ensure that our subcontractors also maintain a level of protection similar to ours when it comes to the processing of your personal data.

9. Point of contact to exercise your rights

Contact email: alan@fundora.frAdresse contact: Fundora, 23 Antigna Street, 45000 Orleans

10. Changes

We may modify this policy at any time, in particular in order to comply with any regulatory, jurisprudential, editorial or technical changes. These changes will apply as of the effective date of the amended version. You are therefore invited to regularly consult the latest version of this policy. However, we will keep you informed of any significant changes to this privacy policy.