Privacy policy.

The data controller for information collected through the gettiaconsulting.com :

• GETTIA SAS
• 78 rue La Fayette, 75009 Paris, France
• SIRET 939 989 919 00013

For any question related to data protection: anthony@gettiaconsulting.com

We only collect the data strictly necessary for the purposes described below.

• Identity & contact: first and last name, email address, job title, company name.
• Message content: the content of the messages you send us (email, contact form) or provide during a booking.
• Booking data: collected via Calendly at the time of booking (time slot, timezone, any custom questions).
• Technical data: IP address, browser type, pages visited, visit duration, solely for security and proper site operation.

No sensitive data (in the meaning of GDPR article 9) is collected by GettIA.

Data is processed for the following purposes, on the corresponding legal bases:

• Respond to your requests (questions, quotes, bookings): legal basis performance of pre-contractual measures at your request.
• Manage the commercial relationship and contractual relationship with our clients: legal basis performance of the contract.
• Prospect identified professional B2B contacts (business email addresses): legal basis legitimate interest, with the option to opt out at any time.
• Secure the site and ensure its proper operation: legal basis legitimate interest.

Your data is accessible only to authorized personnel within GettIA as well as to the following technical processors, strictly within the purposes above:

• Vercel Inc. (United States): website hosting. Transfers governed by the European Commission's Standard Contractual Clauses.
• Calendly LLC (United States): online booking. Transfers governed by SCCs.
• Google Workspace (Gmail): hosting of our professional inboxes.

No data is sold, rented, or transferred to third parties for commercial purposes.

• B2B prospects (people who contacted us without a contract): 3 years from the last active contact.
• Clients: duration of the commercial relationship, then 10 years to meet accounting and tax obligations.
• Technical logs: 12 months maximum.

After these periods, data is deleted or anonymized.

In accordance with the General Data Protection Regulation and the French Data Protection Act, you have the following rights:

• Right of access and information
• Right of rectification
• Right to erasure ("right to be forgotten")
• Right to restriction of processing
• Right to data portability
• Right to object, notably to commercial prospecting
• Right to withdraw consent at any time when consent is the basis of processing

To exercise any of these rights, write to us at: anthony@gettiaconsulting.com. We respond within a maximum of one month.

If, after contacting us, you believe your rights are not being respected, you can file a complaint with the CNIL: cnil.fr/fr/plaintes (3 Place de Fontenoy, 75007 Paris).

Cookies: this site currently only uses strictly necessary cookies for its operation (no third-party analytics or advertising tracking). If this changes, a consent banner will be implemented in line with CNIL recommendations.

Security: we implement appropriate technical and organizational measures to protect your data against accidental or unlawful destruction, loss, alteration, or unauthorized disclosure. Hosting is provided by Vercel (SOC 2 Type II certified and GDPR-compliant).

Updates: this policy may evolve. Any significant change will be communicated on this page.