GDPR & data protection
Our commitment to Regulation (EU) 2016/679 and how to exercise your rights. This English version is a courtesy translation; the French version prevails.
Dernière mise à jour : 22 May 2026
Rémy Magne (sole trader) processes personal data in compliance with the GDPR and French Data Protection Act No. 78-17. This page complements our Privacy Policy.
1. Controller and contact
Controller: Rémy Magne (sole trader), Nevers (58000), France. Data contact: Rémy Magne — contact@orizen.cloud.
2. Your rights
- Access (Art. 15), rectification (Art. 16), erasure (Art. 17).
- Restriction (Art. 18), portability (Art. 20), objection (Art. 21).
- Withdraw consent at any time; post-mortem directives.
3. Exercising your rights
Request at contact@orizen.cloud; reply within one month (extendable). Identity verification may apply. Free of charge unless manifestly excessive.
4. Export and portability
Export your data as JSON from Settings → Data export.
5. Processing (Art. 28)
When you process third-party data via Orizen, you are the controller and the Publisher is the processor. See the DPA. Subprocessors: Clerk, Stripe, Supabase, Vercel, Resend, Groq, Mistral, Google/Gemini.
6. Transfers outside the EU
Governed by Standard Contractual Clauses and/or the Data Privacy Framework.
7. Security and breaches
Encryption, multi-tenant isolation, access control, logging. CNIL notification within 72h for high-risk breaches (Art. 33 and 34).
8. Complaint to the CNIL
3 place de Fontenoy, TSA 80715, 75334 Paris Cedex 07, France — www.cnil.fr.