General Data Protection Regulation (GDPR)

General Data Protection Regulation (GDPR) Compliance
Effective Date: 02/19/2025
Last Updated: 02/19/2025

1. Introduction
At Clover (“Clover,” “we,” “our,” “us”), we are committed to protecting the privacy and security of our users. In compliance with the General Data Protection Regulation (GDPR), we ensure that personal data is collected, processed, and stored responsibly. This page outlines our GDPR compliance practices and how we handle user data within the European Economic Area (EEA).

2. What is GDPR?
The General Data Protection Regulation (GDPR) is a European Union (EU) regulation designed to enhance data protection and privacy for individuals within the EU and EEA. It governs how businesses collect, store, process, and share personal data while providing users with greater control over their information.

3. Personal Data We Collect
We collect and process the following types of personal data:

Identifiers: Name, email address, phone number, organization details.
Account Information: Login credentials and authentication details.
Usage Data: IP address, device information, browser type, and user interactions.
Billing Information: Managed through Microsoft Marketplace as per their policies.

4. Legal Basis for Processing Personal Data
Under GDPR, we process personal data based on the following legal grounds:

Consent: When users explicitly provide consent for data collection and processing.
Contractual Necessity: When processing is required to deliver our services.
Legal Obligation: When compliance with legal regulations is required.
Legitimate Interests: When processing is necessary for business operations and security, without overriding user rights.

5. How We Use Personal Data
We use personal data for:

Providing and improving our services.
Managing user accounts and authentication.
Processing payments and subscriptions through Microsoft Marketplace.
Complying with legal and regulatory requirements.
Enhancing security and preventing fraud.

6. User Rights Under GDPR
If you are located within the EU or EEA, you have the following rights:

Right to Access: Request access to your personal data.
Right to Rectification: Request corrections to inaccurate or incomplete data.
Right to Erasure (Right to Be Forgotten): Request deletion of your data under certain conditions.
Right to Restrict Processing: Limit how your data is processed in specific circumstances.
Right to Data Portability: Request transfer of your data to another service provider.
Right to Object: Object to certain data processing activities.
Right to Withdraw Consent: Withdraw consent for data processing at any time.

7. Data Security & Retention
We implement robust security measures to protect personal data from unauthorized access, loss, or disclosure. Personal data is retained only for as long as necessary to fulfill the stated purposes or to comply with legal obligations. Once data is no longer required, it is securely deleted or anonymized.

8. Data Transfers Outside the EU/EEA
As a global service, personal data may be transferred outside the EU/EEA. When such transfers occur, we implement safeguards such as:

Standard Contractual Clauses (SCCs) approved by the European Commission.
Data Processing Agreements (DPAs) with service providers.
Adequacy decisions for countries with recognized data protection standards.

9. Microsoft Marketplace Compliance
Since Clover is provided through Microsoft Marketplace, subscription and payment data is managed by Microsoft. Users should refer to Microsoft’s Privacy Statement for details on how Microsoft processes data.

10. Contact & Data Protection Officer (DPO)
For questions or concerns regarding these Terms, you can contact us at: Email: contact@clover-vtl.com
Address: 24 rue Louis Blanc, Paris, France

You may also file a complaint with your local Data Protection Authority (DPA) if you believe your data protection rights have been violated.

By using our services, you acknowledge that you have read and understood this GDPR Compliance Policy.