Last Updated: December 2024

Privacy Policy for Snowgraphs

Effective Date: December 2024

TL;DR: Your Privacy at a Glance

We believe in radical transparency. Here's what you need to know:

  • We collect minimal, essential data
  • We never sell your personal information
  • Your data is protected with industry-leading security
  • You're always in control of your information
  • We're fully compliant with GDPR, CCPA, and UK privacy laws

1. Data Collection and Transparency

In compliance with GDPR, CCPA, and UK GDPR, we collect minimal, essential information:

  • Anonymized website analytics (e.g., page views, time spent on site)
  • Optional contact form submissions (name, email, professional interests)
  • Publicly shared professional information from LinkedIn
  • IP address and basic device information (browser type, operating system)

Specific Examples:

  • When you visit our portfolio, Google Analytics collects anonymous usage data
  • Contact form submissions are stored securely for professional communication
  • LinkedIn API may provide public professional profile information

We do not sell or monetize your personal data to third parties.

2. Legal Basis for Data Processing

We process data under the following legal frameworks:

  • Explicit user consent (e.g., submitting contact form)
  • Legitimate business interests (improving website experience)
  • Contractual necessity (responding to professional inquiries)
  • Compliance with legal obligations

Real-World Example: If you submit a contact form, we use your email to respond to your inquiry, which is a legitimate business interest.

3. Third-Party Services We Use

We integrate carefully selected services to enhance your experience:

  • Google Analytics (website performance tracking)
  • LinkedIn API (professional profile integration)
  • Cloudflare (website security and performance)
  • Vercel (website hosting and deployment)

Each service has strict data protection agreements and operates under its own privacy guidelines.

4. Data Protection and Security

We implement robust security measures to protect your data:

  • Advanced encryption technologies
  • Strict access controls
  • Regular security audits
  • Compliance with international data protection standards
  • Secure data storage and transmission

5. International Data Transfers

We ensure lawful international data transfers through:

  • Standard Contractual Clauses (EU)
  • UK Adequacy Regulations
  • Privacy Shield principles
  • Explicit user consent for cross-border transfers

6. Cookies and Tracking

We use cookies and similar technologies in compliance with GDPR and ePrivacy regulations:

  • Strictly necessary cookies
  • Performance and analytics cookies
  • User consent management
  • Easy opt-out mechanisms

7. Children's Privacy

In alignment with COPPA, GDPR, and UK GDPR, we:

  • Do not knowingly collect data from children under 13
  • Immediately delete any accidentally collected children's data
  • Provide parental consent mechanisms

8. Regulatory Compliance

We are committed to compliance with:

  • General Data Protection Regulation (GDPR)
  • California Consumer Privacy Act (CCPA)
  • California Privacy Rights Act (CPRA)
  • UK General Data Protection Regulation
  • ePrivacy Directive

9. Contact and Complaints

For any privacy concerns or data requests:

  • Email: Contact Privacy Team
  • Postal Address: 40 rue du Colisée, Paris, 75008 France
  • You may also contact local data protection authorities

10. Policy Updates

We regularly review and update our privacy policy to ensure ongoing compliance with evolving regulations. Last updated: December 2024.