Privacy Policy – Epsilon Research

Last updated: November 2025

Epsilon Research is committed to protecting the privacy of its users and ensuring the security of their personal data in accordance with the EU General Data Protection Regulation (GDPR – Regulation 2016/679) and the French Data Protection Act.

This Privacy Policy describes how personal data is collected and processed when using the Epsilon SaaS application, available at https://app.epsilon-research.com.

1. Data Controller

Epsilon Research
42 rue Étienne Marcel, 75002 Paris, France
RCS Paris n°499 085 124
Email: privacy@epsilon-research.com
Phone: +33 (0)1 83 62 90 36
Legal representative: Grégoire Buisson

2. Data Collected

The following categories of data are collected and processed when using the platform:

Company Data

• Company name
• Department / team
• Address
• Business activity
• Website

User Data

• Title
• First and last name
• Email address
• Phone number
• Role within the company
• Password (stored as a hashed value, never in plain text)
• IP address and technical connection details (browser, device, date and time of access)

No sensitive data (racial origin, health, religion, political opinions, etc.) is collected.

3. Purposes of Processing

Collected data is used to:

• Manage user accounts and platform access
• Handle billing and subscription management
• Ensure account security (anti-fraud, account sharing prevention, login logs)
• Improve service quality and performance
• Send informational communications or newsletters (with prior consent)
• Ensure account security and fraud prevention, including the analysis of IP addresses and unusual login attempts.

4. Legal Basis for Processing

Data is processed on the following legal bases:

• Contract performance: account management and subscription billing
• Legitimate interest: service improvement, analytics, and security
• Consent: for optional communications (newsletter)

5. Hosting and Third Parties

All data is hosted in France by Naitways.
Epsilon Research does not transfer any personal data outside the European Union.

Payments by credit card are processed through Monetico (monetico-services.com).
Epsilon Research does not collect or store any banking or payment data.

No other third-party provider is involved in personal data processing.

6. Cookies and Trackers

The application only uses technical cookies required for authentication, session management, language preferences, and security.

No analytics, advertising, or tracking cookies are used.

7. Data Retention

• User accounts: kept as long as the account remains active or until deletion is requested
• Security logs: kept indefinitely for traceability purposes
• Billing data: retained for 10 years in accordance with legal accounting obligations

8. Security

Epsilon Research implements technical and organizational measures to ensure data protection, including:

• Encrypted communications (HTTPS / TLS)
• Regular data backups
• Strict access and password management

9. User Rights

Under the GDPR, users have the following rights:

• Right of access
• Right to rectification
• Right to erasure (“right to be forgotten”)
• Right to restrict or object to processing
• Right to data portability

Requests may be sent by email to:
📧 privacy@epsilon-research.com

10. Policy Updates

Epsilon Research may update this policy at any time.
The date of the latest revision appears at the top of the document.
Users will be notified of any significant changes via the application.

11. Contact

For any questions regarding this Privacy Policy or your personal data:
Epsilon Research – 42 rue Étienne Marcel, 75002 Paris, France
📧 privacy@epsilon-research.com
📞 +33 (0)1 83 62 90 36