Privacy Policy – PROOVIT

1. Purpose

At PROOVIT, respecting your privacy is a priority. The purpose of this document is to define how PROOVIT SAS and its subcontractors (« we, » « us, » or « our ») collect, use, retain, or otherwise process the personal data of consumers and others (collectively « you ») who access or use our websites, including proovit.eu and proovit.io, our mobile applications, our web or business client, or other websites, products, or services related to this Privacy Policy (the « Services »). By using our Services, you understand that we will collect and use your personal data as described in this Privacy Policy.

In some cases, we may process your personal data in accordance with an agreement with a third-party organization. In these cases, the terms of that agreement may govern how we process your personal data. If you believe a third-party organization has requested us to process your personal data on their behalf, please contact that organization first, as they will be responsible for how your information is handled.

This Privacy Policy (the « Policy ») does not apply to any third-party websites or applications you may use, including those linked from our Services. You should review the terms and policies of third-party websites and applications before clicking on any links.

Proovit’s core products and Services help users anchor in the blockchain and digitally sign any scanned or natively electronic document. As part of our Services, users want us to collect and record information to provide proof of a fact or situation.

We recommend reading this Policy in full to understand how we collect, use, retain, or process your personal data and your privacy rights.

2. Collection of Personal Data

You can freely visit our websites, install our apps, or provide us with your personal data. However, if you do not provide certain personal data, you may not be able to use certain parts of our Services (e.g., electronic signature). See Sections 5 and 8 of this Policy for information about your choices and rights.

Personal data you provide:

• When registering or logging into your account.

• Starting, attaching, signing, or verifying an electronic document.

• Creating or modifying your user profile.

• Contacting customer support.

• Commenting on blogs or community forums.

• Participating in surveys, sponsored events, sweepstakes, or signing up for newsletters.

You may also provide personal data when:

• Initiating or participating in a blockchain anchoring or digital signature transaction.

• Sharing information with our customer support.

• Adding others as members to an existing account.

• Writing comments or referring friends.

Examples of personal data categories provided:

• Identifiers and contact details (e.g., name, email, address, phone number, digital signature).

• Commercial information (e.g., billing and payment details).

• Geolocation.

Personal data we collect automatically:

• IP address.

• Geolocation.

• Device and browser type.

• Usage data: clicks, visited pages, timestamps, etc.

• Transaction data: names, email addresses, IP addresses, digital actions (e.g., verify, sign).

• Cookies and related technologies. See our Cookie Policy.

Data from other sources:

• Marketing partners, affiliates, researchers, authorized providers.

• Other clients.

• We may combine data from different sources for the purposes described in this Policy.

Personal data processed on behalf of clients: When clients use our Services, we act as data processors on their behalf. Clients are responsible for managing these data. Contact them directly for questions or rights related to such data.

3. Use of Personal Data

We use your personal data to:

• Provide and collect payment for Services.

• Create your account and manage our relationship.

• Send transaction or relationship information.

• Market our and third-party services (if consented).

• Record transaction details (signing, timestamps, IPs).

• Run contests or referral programs.

• Personalize content and advertising.

• Analyze service use and improve Services.

• Provide support and resolve disputes.

• Ensure platform security and manage systems.

• Prevent fraud and unauthorized use.

• Comply with legal obligations.

• Maintain legal retention requirements.

• Defend legal claims.

• Aggregate and anonymize data for research and marketing.

Legal basis for processing (EU):

• Consent.

• Contract performance.

• Legitimate interests.

• Legal obligation.

• Vital interests.

If Proovit acts as a data processor, the client defines the applicable legal basis.

4. Sharing of Personal Data

We may share your data with:

• Service providers: technology, authentication, AI, billing, fraud detection, customer support.

• Affiliates: companies under shared control with PROOVIT.

• Marketing partners: event sponsors or collaborators.

• Public authorities: legal, regulatory, court, or security obligations.

• Business transactions: mergers, acquisitions, reorganizations.

• With your consent.

Additional sharing:

• Third parties: e.g., payment providers.

• Public content: blog/forum comments.

• Profile info: viewable by other users (subject to settings).

• Employers/organizations: if you register with a professional email.

5. Retention of Personal Data

We keep data as long as necessary to fulfill the intended purposes or comply with legal obligations. Data retention may vary depending on the legal basis or contractual necessity. In case of technical limitations, data are secured and limited in use.

6. Your Choices

• Profile editing.

• Marketing messages: unsubscribe via links or notify us.

• Cookies: manage through browser settings or cookie preferences.

• Device settings: disable location sharing.

• Account closure: modify in your account.

• Complaints: contact dpo@proovit.io.

7. Children’s Privacy

Our Services are not intended for individuals under 18. We do not knowingly collect personal data from minors. If such data is discovered, it will be deleted.

8. Your Privacy Rights

You have the right to:

• Access your data.

• Correct inaccurate information.

• Delete or restrict data use.

• Withdraw consent at any time.

• Object to marketing use.

• Complain to a data protection authority.

• Authorize a representative to act on your behalf.

Some data may be exempt from deletion due to legal obligations. Requests may require identity verification.

9. How We Protect Your Data

We use technical, physical, and organizational safeguards to protect personal data. Access is restricted based on business needs and confidentiality agreements. Our security management system supports compliance and data protection.

10. Changes to This Policy

We may update this Policy. Changes will be posted on this page. The current version applies at the time of data use.

11. Contact Us

For questions or concerns: Email: contact@proovit.io
Mail: PROOVIT, DPO – 3 lot. Les Gémeaux, 84120 Pertuis, France