GDPR (General Data Protection Regulation)

Carbone is GDPR-compliant, and strictly enforces the regulation as to protect the user data we store. According to GDPR, you, as the data subject, have the right to access, modify and delete your personal data, as well as the right to ask for the portability of your data and the right to object to the processing of your personal data.

Types of Data Collected

In order to provide the Services, Carbone is collecting the below data from their users. This section is also listing the security measures used to protect the data as well as the purpose of the collection.

Email address: Used only for authentication
Password: Encrypted and used only for authentication
First name and last name
Usage Data: Carbone Render API usage
IP address: for metrics purpose, it is deleted automatically after 7 days
Payment details and invoicing information: Address, ZIP/Postal code, City, Country and Payment methods are stored and managed exclusively by Stripe. Carbone does not store any bank details.

Use of Your Personal Data

To identify users and provide support
To provide our Service
To notify users about new product or service updates
To provide analysis to improve the service
To monitor, prevent and detect technical issues

Individuals rights

The right to be informed: we informe our customers of what we do with their data
The right of data access: from Carbone Account our customers can access to their data
The right to rectification: from Carbone Account our customers can update their data
The right to erasure: from Carbone Account our customers can delete their account and data
The right to restrict processing: we don't process the data of our customers.
The right of data portability: our customers can contact us (privacy@carbone.io) anytime they wish to get an export of their data
The right to object: our customers can contact us (privacy@carbone.io) and we will handle their request.
The right not to be subject to automated decision-making and profiling: We don't do that.

Carbone replies to all request under 1 week (3 weeks maximum).

Security

Read our Security Policy for more details.

Cookies

Read our Cookies Policy for more details.

Children's Privacy

Our Service does not address anyone under the age of 18, due to the nature of the service provided (business-to-business). We do not knowingly collect personally identifiable information from anyone under the age of 18.

Data Processing Agreement

If your company needs to ensure it is GDPR-compliant, it also needs to ensure its providers (ie. Carbone) are also GDPR compliant. The list of our providers (ie. Data Processors) is available, and kept up to date, in our Data Processing Agreement (DPA). Contact us (privacy@carbone.io) to get the DPA.

Data protection Officers

David Grelaud
Mail: privacy@carbone.io
Address: 130 la Sauvagère, 85170, Bellevigny, France
Was this article helpful?
Cancel
Thank you!