Privacy Policy | Primsy

Privacy Policy

Last update : 09-2024

1. Introduction

Prismy offers an innovative platform that allows businesses to collect their digital assets, translate them into multiple languages, and return them to various platforms such as GitHub for code or Intercom for help center articles.

At Prismy, we place great importance on protecting your personal data. This privacy policy aims to inform you about how we collect, use, share, and protect your personal data when you use our services. We are committed to complying with applicable data protection laws and regulations, including the European Union's General Data Protection Regulation (GDPR).

By using our services, you accept the practices described in this privacy policy. We encourage you to read this policy carefully to understand how we handle your personal data.

2. Data Collection

Types of data collected

At Prismy, we collect various types of personal and non-personal data to provide and improve our services. The types of data we may collect include, but are not limited to:
- Contact Information: Name and email address.
- Service Information: Digital assets you submit for translation, such as:
For GitHub: Language files present in the codebase if GitHub integration is enabled, as well as data related to Pull-Requests.
For Intercom: Everything related to help centers (articles and their versions).
For other integrations: Relevant information related to digital assets specific to each integration.
- Navigation Information: IP address, browser type, pages visited, duration of visit, etc.
- Communication Information: Correspondence exchanged with our customer service or via our contact forms.

Methods of collection

We collect data in several ways, including:
- Directly from you: When you fill out forms, submit digital assets for translation, or communicate with our customer service.
- Automatically via our website and services: Particularly by enabling integrations (Intercom, Slack, GitHub, or others).

Purpose of collection

The collected data is used for:
- Allowing the centralization of businesses' digital assets.
- Improving translations through context on the business (via existing content).
- Enabling the translation of digital assets.
- Simplifying the translation workflow with integrations like Slack to notify when there are changes.

3. Use of Data

Purposes of use

At Prismy, we use the collected data to provide and improve our services. Here are the main purposes for which we use your data:
- Service Provision: Using the submitted digital assets to translate them into multiple languages and return them to integrated platforms such as GitHub and Intercom.
- Translation Improvement: Analyzing existing content to improve the accuracy and consistency of automatic translations.
- Digital Asset Management: Centralizing and organizing businesses' digital assets to facilitate their management and translation.
- Notifications and Alerts: Using integrations like Slack to notify users of changes or updates regarding translations.
- Service Analysis and Improvement: Analyzing the use of our website and services to identify possible improvements and optimize the user experience.

Legal Basis

We rely on several legal bases to process your personal data, including:
- Consent: When you create an account on Prismy, you consent by default to the collection and use of your personal data in accordance with this privacy policy. You can withdraw this consent at any time by contacting our customer service or using the preference management options available in your account.
- Contract Performance: The processing of your data is necessary to provide the services you have requested, including the translation and management of digital assets.
- Legitimate Interest: The processing of your data is necessary for our legitimate interests, such as improving our services, managing our relationship with you, and data security.

4. Data Sharing

Parties with whom data is shared

At Prismy, we may share your personal data with certain third parties in the context of providing our services. Here are the main categories of parties with whom we may share your data:
Business Partners: We may share your data with business partners who help us provide our services, such as translation service providers like OpenAI, integration platforms (like GitHub, Intercom, Slack), and other technology partners.

Service Providers: We may share your data with third-party service providers who help us manage and improve our services, such as cloud computing service providers, analytics services, and customer support services.

Legal Authorities: We may be required to share your data with legal authorities or regulatory bodies if we are legally obligated to do so, for example, to comply with a court order or government request.

Conditions for sharing

We share your personal data only under the following circumstances:
- To provide our services: When sharing your data is necessary to provide the services you have requested, for example, to translate and manage your digital assets.
- For legal reasons: When we are legally obligated to share your data, for example, to comply with a court order or government request.
- For security reasons: When sharing your data is necessary to ensure the security of our services, prevent fraud, or protect our rights and those of our users.
- To improve our service: When sharing your data is necessary to improve our services, for example, for monitoring, analysis, and optimization of our services.
- With your consent: When you have given your explicit consent to share your data with third parties.

Protective Measures

We take measures to ensure that your personal data is protected when shared with third parties. This includes:
- Strict partner selection: We carefully select our partners and service providers to ensure they comply with data protection standards.
- Security measures: We implement technical and organizational security measures to protect your data from unauthorized access, loss, or destruction. We encrypt all communications allowing access to our clients' accounts on third-party platforms (like GitHub, Intercom, etc.).

5. Data Security

Security Measures

At Prismy, we take the security of your personal data very seriously. We implement various technical and organizational security measures to protect your data from unauthorized access, loss, or destruction. Here are some of the measures we take:

- Encryption: We use encryption technologies to protect data in transit and at rest. This includes encrypting communications allowing access to our clients' accounts on third-party platforms (like GitHub, Intercom, etc.).
- Access Controls: We limit access to your personal data to only those who need it to provide our services. Access is strictly controlled and monitored.
- Continuous Monitoring: We continuously monitor our systems to detect and prevent any suspicious or unauthorized activity.
- Regular Updates: We keep our systems and software up to date with the latest security patches and improvements.

Commitment to security

We are committed to maintaining a high level of security to protect your personal data. We regularly review our security policies and procedures to ensure they remain effective and compliant with best practices and legal requirements.

6. Data Retention

Retention Period

At Prismy, we retain your personal data only for the duration necessary to achieve the purposes for which it was collected, unless a longer retention period is required or permitted by law. The criteria used to determine the retention period include:

- Duration of our relationship with you: We retain your data as long as you are an active user of our services.
- Legal and regulatory requirements: We retain your data as long as necessary to comply with our legal and regulatory obligations.
- Operational needs: We retain your data as long as necessary to provide our services and improve our offering.

Data Deletion

You have the right to request the deletion of your personal data at any time. We are committed to deleting your data securely and promptly, unless we are legally required to retain certain information for a longer period.

Commitment to Transparency

We are committed to being transparent about how we retain and process your personal data. If you have any questions regarding the retention of your data, please do not hesitate to contact us.

7. User Rights

User Rights

At Prismy, we respect your data protection rights. In accordance with applicable regulations, including the European Union's General Data Protection Regulation (GDPR), you have the following rights regarding your personal data:
- Right of Access: You have the right to request access to your personal data and receive a copy of this data.
- Right of Rectification: You have the right to request the correction of any inaccurate or incomplete personal information.
- Right of Deletion: You have the right to request the deletion of your personal data, subject to legal retention obligations.
- Right to Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another data controller.
- Right to Object: You have the right to object to the processing of your personal data for reasons relating to your particular situation, unless we have legitimate and compelling reasons for the processing that override your interests, rights, and freedoms.
- Right to Restrict Processing: You have the right to request the restriction of the processing of your personal data in certain circumstances, for example, if you contest the accuracy of the data.

Procedure for Exercising

These Rights To exercise your rights, you can contact us using the contact details provided in the "Contact" section of this privacy policy. We will respond to your request promptly and in accordance with legal requirements.

8. Changes to the Privacy Policy

Notification of Changes

We reserve the right to modify this privacy policy at any time to reflect changes in our data processing practices or to comply with new legal requirements. Any changes to this privacy policy will be posted on our website.

Date of Last Update

The date of the last update of this privacy policy is indicated at the bottom of this page. We encourage you to regularly review this policy to ensure you are informed of any changes made.

9. Contact

For any questions or concerns regarding this privacy policy or the processing of your personal data, you can contact us at the following details:

Cyril Codron
33 rue Saint Michel, 62000 Arras
cyril@prismy.io

We are committed to responding to your requests promptly and in accordance with legal requirements.