Data controller
- Name: Aziz Christian Herve Wend-Yam OUIMINGA
- Trade name: Tondnso
- Contact: [email protected]
Data Protection Officer (DPO)
- Aziz Ouiminga
- [email protected]
Data collected
- Pre-registration: email, first name, language, referral code
- Stripe payments: email, payment details processed by Stripe (never stored by Tondnso)
- CinetPay payments: email, phone number, Mobile Money payment method
- Nextcloud service: account identifiers, stored files
- Technical cookies: currency, language and theme preferences
Processing purposes
- service delivery;
- billing;
- service communications;
- anonymous statistics (no Google Analytics).
GDPR legal bases
- contract performance;
- legal obligation (billing/accounting);
- legitimate interest (security);
- consent (non-essential cookies, marketing).
Recipients / processors
- Stripe: https://stripe.com/privacy
- CinetPay: https://cinetpay.com/privacy
- Cloudflare: https://cloudflare.com/privacy
- Supabase (hosted in Europe): https://supabase.com/privacy
- Zoho Mail: https://zoho.com/privacy
Transfers outside the EU
Transfers may occur outside the EU, notably through Cloudflare and Stripe, under appropriate safeguards (including Standard Contractual Clauses). CinetPay may involve processing in Cote d'Ivoire with adequate safeguards (adequacy level or SCC depending on context).
Retention periods
- Active account: duration of the contract
- Cancelled account: 30 days after cancellation
- Billing data: 10 years
- Unconverted pre-registrations: 12 months
Your rights
Under GDPR you have rights to:
- access;
- rectification;
- erasure;
- restriction;
- portability;
- objection;
- withdraw consent;
- lodge a complaint with CNIL.
Exercising your rights
Send your request to: [email protected].
Security
Tondnso implements appropriate security measures: HTTPS encryption, authentication/access control and regular backups.
Supervisory authority
- CNIL: https://www.cnil.fr
- 3 Place de Fontenoy, TSA 80715, 75334 PARIS CEDEX 07, France