Stack and Relax believes that trust is the crucial element of fruitful and lasting relationships. Protecting the personal data and privacy of its users is no exception.
The Company pays particular attention to collecting and processing personal data with the utmost care and in strict compliance with applicable law, in particular the General Data Protection Regulation (GDPR).
This policy aims to explain in detail why and how Users' data is processed when they use the website stackandrelax.com or the Stack & Relax mobile application.
Stack and Relax, a simplified joint-stock company with a single shareholder (SASU under French law), registered at 58 rue de Monceau, 75008 Paris, France.
Publication Director: CΓ©dric Renault
Contact: hello@stackandrelax.com
Hosting: Netlify, Inc. β 512 2nd Street, San Francisco, CA 94107, USA
Registered trademark with the French National Institute of Industrial Property (INPI).
This privacy policy aims to inform Users about how the Company, acting as data controller, processes information that directly or indirectly identifies them ("Personal Data").
This policy, accessible at all times on the Platform, is the only applicable policy and supersedes all previous versions.
4.1 Waitlist Registration
When you register on stackandrelax.com, the Company collects your email address to inform you of the application launch. The legal basis is your explicit consent.
4.2 Browsing Information
The Company may analyse browsing information collected via cookies to improve its services. The legal basis is the Company's legitimate interest.
4.3 Account Management (mobile application)
To access the Services, Users create an account involving the collection of the following data: first and last name, email address, date of birth, username and password. The legal basis is the performance of the contract.
4.4 Banking Connection (PSD2)
As part of the automatic savings service, the Company accesses banking transaction data in read-only mode via a PSD2-licensed aggregator. No banking credentials are stored by the Company. The legal basis is the performance of the contract and explicit consent.
4.5 Automatic Transfers
Automatic transfers to your savings account are carried out via a licensed payment service provider. The Company collects the IBAN of the destination account for this purpose. The legal basis is the performance of the contract and explicit consent (SCA).
4.6 Sport Data (Active Stack)
As part of the Active Stack feature, the Company may access workout session data via Apple HealthKit or Google Health Connect. This data is used solely for calculating sport-linked savings. The legal basis is your explicit consent.
The Company shares Personal Data with third-party service providers in the context of delivering the Services:
The Company never sells Users' Personal Data to third parties.
Some of the Company's service providers may process Personal Data outside the European Union. The Company ensures that appropriate safeguards are in place, in particular through standard contractual clauses adopted by the European Commission.
In accordance with the GDPR, you have the following rights:
To exercise your rights: hello@stackandrelax.com or by post to Stack and Relax SASU, 58 rue de Monceau, 75008 Paris, France.
The Company undertakes to respond within a maximum period of one (1) month.
The Company implements appropriate technical and organisational measures to ensure the security of Personal Data: