Privacy Policy
Last updated: March 8, 2026
1. Data controller
The personal data controller is Dogan Sezer, publisher of FichePro AI. For any question about your data, contact us at: contact@fichepro.ai
2. Data collected
We collect the following data:
- Account data: email address, hashed password, registration date
- Usage data: number of generated listings, subscription plan, generation history
- Payment data: processed directly by Stripe — we do not store any banking information
- Technical data: IP address, browser type, pages visited (via analytics cookies if consented)
3. Processing purposes
Your data is used to:
- Create and manage your user account
- Provide the product listing generation service
- Process payments and manage subscriptions
- Send service-related communications (confirmations, invoices)
- Improve the service via anonymized usage analysis
4. Legal basis
Processing of your data is based on the performance of the service contract (art. 6.1.b GDPR) for data necessary for the operation of the service, and on your consent for marketing communications.
5. Sub-processors
We use the following sub-processors for the operation of the service:
| Sub-processor | Purpose | Location |
|---|---|---|
| Supabase | Database and authentication | EU / United States (DPA signed) |
| Stripe | Payment processing | United States (DPA signed, PCI-DSS certified) |
| OpenAI | AI content generation | United States (DPA signed) |
| Vercel | Hosting and CDN | United States / EU (DPA signed) |
| Resend | Transactional and marketing email delivery | United States (DPA signed) |
| Upstash | Rate limiting | EU / United States (DPA signed) |
Regarding OpenAI: we use the OpenAI API with the option to opt out of data being used for training enabled. Your generation data is not used to train AI models. Only data strictly necessary for generation is transmitted (product description, features, target marketplace).
6. Data retention
Your data is kept for the entire duration of your account, then deleted within 30 days after closure of your account, except for legal retention obligations (billing data: 10 years).
7. Your rights
In accordance with the GDPR, you have the following rights:
- Right of access — obtain a copy of your data
- Right of rectification — correct inaccurate data
- Right to erasure — request deletion of your data
- Right to portability — receive your data in a structured format
- Right to object — object to processing for marketing purposes
You can exercise your portability and erasure rights directly from your account dashboard (« Export my data » and « Delete my account » buttons).
For any other request, contact us at contact@fichepro.ai. You also have the right to lodge a complaint with the French data protection authority (CNIL).
8. Cookies and analytics
We use cookies strictly necessary for the operation of the service (authentication, session). No advertising cookies are used.
On your first visit, a consent banner allows you to accept or refuse analytics cookies. Your choice is recorded in a cookie_consent cookie (duration: 365 days).
If you consent, we activate Vercel Analytics and Vercel Speed Insights. These tools measure visited pages and technical performance (Core Web Vitals). Data is aggregated and anonymous. No advertising cookies are placed.
9. Marketing emails and right to object
We may send marketing emails (activation reminders, monthly reactivation) to users who have not exercised their right to object. Each marketing email includes a one-click unsubscribe link. You can also unsubscribe from your account dashboard.
10. Security
We implement appropriate technical measures to protect your data: encrypted communications (HTTPS), secure authentication, restricted data access for authorized personnel only.
11. Modifications
This policy may be updated. Any significant change will be notified by email or via a banner on the site.