Privacy Policy

Last updated: May 12, 2026

1. Introduction

CompliChef ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our platform at kitchen.complichef.fr. This policy complies with the European Union's General Data Protection Regulation (GDPR) and French Commission Nationale de l'Informatique et des Libertés (CNIL) guidelines.

2. Information We Collect

We collect the following information:

• Account Information: Name, email address, phone number, password
• Professional Information: Business name, address, industry
• Compliance Data: Temperature logs, HACCP documentation, food safety records
• Payment Data: Billing information (via Stripe - we do not store credit card data)
• Cookies and Usage Data: Pages visited, time spent, site interactions

3. Legal Basis for Processing

We process your personal data on the following legal bases:

• Contract: Performance of our service agreement with you
• Consent: Your consent for analytical cookies
• Legal Obligation: Compliance with food safety and regulatory laws
• Legitimate Interest: Improving our services and preventing fraud

4. Data Hosting

Server Location: All your data is hosted on secure servers located in the United Kingdom. This location was chosen to ensure optimal compliance and enhanced security. Data Transfers: We use Standard Contractual Clauses (SCCs) approved by the European Commission to govern data transfers outside the EU, in compliance with the July 4, 2023 decision regarding France.

5. Data Retention

Your data is retained as long as your account remains active. After account deletion:

• Personal data is deleted within 30 days
• Compliance records are retained for 3 years for archival purposes (if required by law)
• Payment data is deleted immediately by Stripe

6. Your Rights

Under the GDPR, you have the following rights:

• Right to Access: View your personal data
• Right to Rectification: Correct inaccurate data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a structured format
• Right to Object: Object to data processing

To exercise these rights, contact us at: support@complichef.co.uk

7. Data Security

We implement technical and organizational security measures:

• SSL/TLS encryption for all connections
• Secure storage with multi-factor authentication
• Regular backups and disaster recovery testing
• Regular security audits

8. Cookies

Our site uses cookies:

• Essential Cookies: Required for site functionality (always enabled)
• Analytical Cookies: Help us improve your experience (with your consent)

You can manage your cookie preferences via the consent banner at the bottom of the page.

9. Data Sharing

We do not sell your data. We only share it with:

• Stripe: For payment processing
• Service Providers: Hosting, customer support (under confidentiality agreements)
• Legal Authorities: If required by law

10. Contact & Complaints

For any questions about this policy: Email: support@complichef.co.uk If you believe your rights have been violated, you can file a complaint with the CNIL at: www.cnil.fr

11. Policy Changes

We may update this policy. Significant changes will be notified by email or site notification.