Privacy policy

HAVOOP, a French SASU with share capital of €100, whose registered office is at 96 rue de Belleville, 75020 Paris, registered with the Paris Trade and Companies Register under number 883 172 835, represented by Claudel Ngueya as President.

For any question regarding the processing of your personal data: contact@havoop.com · +33 7 56 88 39 25.

HAVOOP only collects data strictly necessary for its services.

Via the website: identification data (first name, last name, email, phone, role, company) when you fill out a form or book a meeting; technical data (IP address, browser type, pages visited) for security and anonymized audience measurement.

During engagements: documents and information provided by the client during the AI diagnostic or agent deployment, always under a signed NDA, strictly limited to what's necessary for the engagement.

Your data is used to respond to contact and quote requests, schedule and conduct discovery calls, execute consulting and deployment engagements, issue invoices and comply with accounting and tax obligations, and improve site security and functioning.

In accordance with Article 6 of the GDPR, processing is based on your consent (contact form, booking), the performance of a contract (client engagements), a legal obligation (invoicing, 10-year retention of accounting documents), and our legitimate interest (site security, anonymized audience measurement).

HAVOOP applies a strict separation between website data and client data.

Website: hosted on Vercel Inc., deployed on the European Paris region (cdg1). Technical browsing data remains physically within the EU.

Client data: processed through tools mostly operated within the European Union. Processors: Calendly, Inc. (booking — US-hosted, under a Data Processing Agreement with the European Commission's Standard Contractual Clauses), Resend, Inc. (contact form delivery — EU region eu-west-1 selected), Pennylane (invoicing, French company), Qonto (business banking, French company), Google Workspace (professional email — to be confirmed if Proton Mail is used), Brevo (prospect CRM, French company, Paris-hosted).

Site editorial content: blog articles are stored and served via Sanity, Inc. (content management system, US-hosted, public dataset). No visitor personal data is processed by Sanity — only the public editorial content published by Havoop.

AI APIs: Anthropic (Claude), OpenAI (GPT), Mistral AI. Used via EU endpoints when available, under signed Data Processing Agreements (DPA). No client data is used to train AI models. For engagements involving particularly sensitive data, HAVOOP systematically prioritizes models hosted in France or the EU (Mistral AI) or open-source models on sovereign infrastructure.

In accordance with Articles 15 to 22 of the GDPR, you have the following rights regarding your personal data: access, rectification, erasure ("right to be forgotten"), restriction, portability, and objection.

To exercise these rights, contact us at contact@havoop.com. HAVOOP commits to responding within a maximum of one month.

You also have the right to lodge a complaint with the CNIL (French data protection authority: 3 Place de Fontenoy, TSA 80715, 75334 PARIS CEDEX 07, www.cnil.fr).

This site only uses cookies strictly necessary for its functioning and security. No advertising or third-party tracking cookies are placed without your explicit consent.

HAVOOP implements appropriate technical and organizational measures to protect your data: encryption in transit (HTTPS/TLS), restricted data access, GDPR-compliant subcontracting agreements, regular backups, application of the data minimization principle.

HAVOOP reserves the right to modify this privacy policy at any time. Any modification will be published on this page with a new update date.