Title Image

Privacy policy

Privacy Policy

Effective date: October 2025

1. Introduction

We are committed to safeguarding the privacy and security of your personal data.

This policy explains how we lawfully, fairly, and transparently collect, use, and protect your personal data – whether you are a customer, business contact, supplier, or website visitor.

This policy applies where Embrace SAS acts as a data controller, meaning we determine the purpose and means of processing your personal data in accordance with the EU General Data Protection Regulation (GDPR) and applicable French law.

We may ask for your consent to use cookies when you first visit our website.

You may unsubscribe from marketing messages or request the deletion of your personal data (“right to be forgotten”) by emailing contact@embrace.fr.

 

2. Personal Data We Process

We may collect and process the following types of personal data:

  • Website usage data – such as IP address, browser type, geographic location, referral source, and pages visited.
  • Contact and inquiry data – information you submit via forms or email (e.g., name, job title, company, email address, phone number, message content).
  • Transactional and account data – contact, company, and billing information required to provide services or respond to commercial requests.
  • Support data – technical documents or communications you share with our support team.
  • Recruitment data – information you provide when applying for a job with us.

We do not intentionally collect or process sensitive data (special categories under Article 9 GDPR).

 

3. Purposes and Lawful Bases for Processing

We process personal data only when there is a lawful basis under Article 6 GDPR:

Purpose

Lawful Basis

To deliver our software, support, and professional services

Performance of a contract

To manage customer relationships and communications

Legitimate interest

To respond to website or contact form inquiries

Legitimate interest

To send business-to-business news and product updates

Legitimate interest (soft opt-in)

To comply with accounting, tax, and legal obligations

Legal obligation

To protect our systems and prevent misuse or fraud

Legitimate interest

We do not engage in automated decision-making or profiling that produces legal effects.

 

4. Sharing Your Personal Data

We do not sell or rent personal data.

We may share data only with:

  • Service providers (data processors) supporting our operations such as hosting, IT, analytics, CRM, support, accounting, or HR management.
  • Professional advisers (auditors, accountants, legal counsel).
  • Public authorities when required by law or regulation.

All third parties operate under a Data Processing Agreement (DPA) ensuring GDPR compliance.

 

5. International Data Transfers

Some service providers may process data outside the European Economic Area (EEA).

When such transfers occur, we rely on Standard Contractual Clauses (SCCs) or equivalent safeguards approved by the European Commission to ensure adequate protection of your data.

 

6. Retention of Personal Data

We retain personal data only for as long as necessary to fulfill the purposes described in this policy, taking into account contractual and legal obligations, business needs, and applicable statutory requirements.

When data is no longer required, it is securely deleted or anonymized.

 

7. Your Rights

Under GDPR, you have the right to:

  • Access your personal data (Art. 15)
  • Rectify inaccurate or incomplete data (Art. 16)
  • Erase your data (“right to be forgotten”) (Art. 17)
  • Restrict processing (Art. 18)
  • Data portability (Art. 20)
  • Object to processing based on legitimate interest (Art. 21)
  • Withdraw consent at any time (Art. 7)

To exercise these rights, contact contact@embrace.fr or write to our registered address below.

We respond within 30 days of receipt of your request.

 

8. Cookies and Analytics

We use cookies and analytics tools to understand website usage and improve our content.

Analytics cookies are used only with your consent, which you can manage through our cookie banner.

For more information, see Google Privacy Policy

 

9. Security of Your Data

We apply appropriate technical and organizational measures to protect personal data, including encryption, access controls, regular backups, and periodic security reviews.

Access to personal data is limited to authorized personnel who are bound by confidentiality obligations.

 

10. Updates to This Policy

We may update this privacy policy periodically.

The latest version will always be available at https://embrace.fr/privacy-policy, with the effective date shown above.

 

11. Contact Details

Data Controller:

Embrace SAS

3 rue Casteja, 92100 Boulogne-Billancourt, France

SIRET 813 443 231 00028

Email: contact@embrace.fr

Phone: +33 1 46 21 46 05

Website: https://embrace.fr

Data Protection Officer (DPO): Julien Gachot

Address

86-88 rue Thiers
92100 Boulogne-Billancourt
France

Phone

+33 1 46 05 46 21

Email

contact@embrace.fr