1. Legal information
Responsible entity:
- Legal name: OLIVIER DECROCK EURL
- Trade name: Smart Interactive Agency
- Paris Trade Register: B 533 680 575
- APE code: 6202 A
- Share capital: 5,000 euros
- EU VAT number: FR89533680575
- Registered office: 141, avenue de Wagram, 75017 Paris, France
- Phone: +33 6 47 75 05 54
- Email: contact@smartinteractive.fr
Data Protection Officer (DPO):
Email: dpo@smartinteractive.fr
2. Data controller
Smart Interactive Agency is the controller of personal data collected through its website, its consulting and development services, its commercial communications and its service contracts.
The Agency is committed to complying with the General Data Protection Regulation (GDPR) and French law on the protection of personal data.
3. Data collected
3.1 Data collected directly
When visiting the website: first and last name, email address, phone number, company and job title, message or contact request.
When entering into a contract: legal name, full address, SIRET/SIREN number, contact details, banking information.
During the performance of services: identification data of collaborators, system access data, geolocation data, content created or modified.
3.2 Data collected automatically
Through the website: IP address, browser type and version, operating system, pages visited, visit duration, geolocation data (approximate), cookie identifiers.
4. Legal bases for processing
Smart Interactive Agency processes personal data on the basis of:
- Consent: newsletter sign-up, acceptance of non-essential cookies, commercial communications.
- Performance of a contract: data required for entering into and performing the contract, invoicing and payment.
- Legal obligation: accounting and tax data, invoicing (retained for 6 years).
- Legitimate interest: fraud prevention, service improvement, statistical analysis, commercial prospecting.
5. Purposes of processing
Data is processed in order to:
- Perform service contracts and manage invoicing.
- Conduct commercial prospecting and marketing communications.
- Prevent fraud and secure systems.
- Ensure legal and regulatory compliance.
- Analyse performance and improve services.
- Use the name and logo as a commercial reference (with consent).
6. Data recipients
Internal recipients: management, sales, technical, support, accounting and administrative teams.
External recipients: hosting and cloud providers, payment service providers, tax and judicial authorities, lawyers and accountants.
No data sales: Smart Interactive Agency never sells personal data to third parties.
7. Retention period
| Data type | Retention |
|---|---|
| Client contact data | Contract duration + 3 years |
| Invoicing data | 6 years |
| Payment data | 13 months |
| Access and usage logs | 12 months |
| Prospect data | 3 years |
| Newsletter data | Until unsubscription |
8. Your GDPR rights
You have the following rights:
8.1 Right of access
You have the right to access your personal data and to know the purposes of processing.
8.2 Right to rectification
You have the right to correct inaccurate or incomplete data.
8.3 Right to erasure
You have the right to request the erasure of your data (right to be forgotten), unless a legal obligation requires otherwise.
8.4 Right to restriction of processing
You have the right to request the restriction of the processing of your data.
8.5 Right to data portability
You have the right to receive your data in a structured format and to transfer it to another controller.
8.6 Right to object
You have the right to object to the processing of your data for commercial prospecting purposes.
8.7 Right to withdraw consent
You may withdraw your consent at any time without justification or penalty.
8.8 Right to lodge a complaint
You have the right to lodge a complaint with the CNIL (the French data protection authority).
To exercise these rights: send a written request to dpo@smartinteractive.fr together with a copy of your ID. Response time: 30 days.
9. Data security
9.1 Technical measures
- TLS 1.2+ encryption for data in transit.
- AES-256 encryption for sensitive data.
- Multi-factor authentication (MFA).
- 24/7 system monitoring.
- Daily and off-site backups.
9.2 Organisational measures
- GDPR training for all staff.
- Incident response procedure.
- Annual security audit.
- Data processing agreements with suppliers.
10. Cookies and tracking technologies
Essential cookies (required): session, security and user preference cookies.
Analytics cookies (consent required): Google Analytics, Matomo, user behaviour data.
Marketing cookies (consent required): tracking pixels, remarketing, conversion.
Cookie management: a consent banner lets you choose by category. You can update your preferences at any time via the link in the footer.
11. International transfers
Data may be transferred to other EU/EEA countries to perform contracts and deliver services. For transfers to the United States, we use the Standard Contractual Clauses (SCCs).
12. Children's data
Smart Interactive Agency does not knowingly collect data from children under 16. If a child accesses the website, parental consent is required.
13. Contact and complaints
Smart Interactive Agency
Email: contact@smartinteractive.fr
Phone: +33 6 47 75 05 54
Address: 141 avenue de Wagram, 75017 Paris, France
Data Protection Officer (DPO)
Email: dpo@smartinteractive.fr
CNIL — French data protection authority
Address: 3 Place de Fontenoy, 75007 Paris
Phone: +33 1 53 73 22 22
Email: plaintes@cnil.fr
Website: www.cnil.fr