Privacy Policy

What is the purpose of our Privacy Policy?

KAINOTOM.IA, which operates the limova.ai platform, attaches great importance to the protection and confidentiality of your personal data, which represents for us a guarantee of seriousness and trust.

As such, our Personal Data Confidentiality Policy accurately reflects our commitment to enforcing, within KAINOTOM.IA, the applicable rules for the protection of personal data and, more particularly, those of the General Data Protection Regulation (“RGPD”).

In particular, our Privacy Policy aims to inform you about how we process your personal data and why we process it as part of the services we provide to you.

Who is our Privacy Policy for?

Our Privacy Policy is addressed to you, regardless of where you live, as long as you are at least 15 years old and you are a user of our limova.ai platform.

If you are not of the legal age detailed above, you are not allowed to use our services without the prior and explicit consent of one of your parents or guardians, which must be sent to us by email at rgpd@limova.ai.

If you believe that we hold personal data about your children without your consent, we invite you to contact us at the dedicated address detailed above.

Google API permissions

When you grant permissions for Google API services, we may access and use the following permissions. For complete details on each scope, please refer to the official Google OAuth 2.0 scope documentation.

Gmail API permissions

Documentation: Gmail API Scopes

• https://www.googleapis.com/auth/gmail.readonly : This permission allows us to read emails from your Gmail account to help you manage and analyze emails.
• https://www.googleapis.com/auth/gmail.compose : This authorization allows us to compose and send emails on your behalf via our AI support features.

Google Contacts API permissions

Documentation: Contacts API migration

• https://www.googleapis.com/auth/contacts.readonly : This permission allows us to access your Google Contacts to help with contact management and communication features.

Google Analytics API permissions

Documentation: OAuth 2.0 scopes

• https://www.googleapis.com/auth/analytics.readonly : This permission allows us to access your Google Analytics data to provide business insights and reporting assistance.

Google Drive API permissions

Documentation: Drive API Scopes

• https://www.googleapis.com/auth/drive : This permission allows us to access and manage files and folders in your Google Drive for document management and collaboration features.
• https://www.googleapis.com/auth/drive.file : This permission allows us to access and manage the files created by our application in your Google Drive.

Google Calendar API permissions

Documentation: Calendar API authentication

• https://www.googleapis.com/auth/calendar : This permission allows us to access and manage your Google Calendar for assistance in scheduling and managing appointments.

Google Docs API permissions

Documentation: Docs API authentication

• https://www.googleapis.com/auth/documents : This permission allows us to access and edit Google Docs documents to assist in creating and editing documents.

Google Sheets API permissions

Documentation: Sheets API Scopes

• https://www.googleapis.com/auth/spreadsheets : This permission allows us to access and manage Google Sheets for data analysis and spreadsheet support.

Google Slides API permissions

Documentation: Slides API Scopes

• https://www.googleapis.com/auth/presentations : This permission allows us to access and edit Google Slides presentations for assistance in creating and editing presentations.

Google Tasks API permissions

Documentation: Tasks API Authentication

• https://www.googleapis.com/auth/tasks : This permission allows us to access and manage your Google Tasks for task management and productivity features.

Why do we process your personal data and on what basis?

We process your personal data mainly for the following reasons:

• To use and benefit from our artificial intelligence virtual assistant service, specially designed to support you in your entrepreneurial missions (assistance in obtaining financing, legal consultation, marketing expertise, call management or email writing), based on our general conditions of use.
• To ensure the management of the user account (e.g. creating an account, accessing the service and deleting an account) on the basis of our general conditions of use.
• To manage the administrator account (e.g. creating an account, accessing the service and deleting an account) based on our general terms of use.
• To verify the accuracy of the information provided during registration based on our legal obligation. The validation of your account is done manually by our teams.
• To communicate with our support department via our chat/chatbot or our contact form based on our general terms of use.
• To pay online based on our general terms and conditions of sale.
• To benefit from our FAQ on the basis of our general conditions of use.
• To receive our technical emails (e.g. password changes, etc.) essential for the proper functioning of our service based on our general conditions of use.
• To be able to download and import documents on our platforms based on our general terms of use.
• Through the use of a generative artificial intelligence feature, to assist you in certain tasks (assistance in obtaining funding, legal consultation, marketing expertise, call management or email writing, recruitment assistance, etc.) on the basis of our general conditions of use.
• To guarantee and reinforce the security and quality of our services on a daily basis (e.g. statistics, data security, etc.) based on the legal obligations incumbent on us, our general conditions of use and our legitimate interest in ensuring the proper functioning of our services.

Your data is collected directly from you as soon as you are a user of our limova.ai platform and we are committed to processing your data only for the reasons described above.

What personal data do we process and for how long?

Below we have summarized the categories of personal data and their respective retention periods:

• For individuals, personal identification data (e.g. name, first name) and contact details (e.g. email address) retained for the duration of the provision of the service plus the legal limitation periods, which are generally 5 years.
• For professionals, professional identification data (e.g. name, first name, function, company, service, etc.) and contact details (e.g. professional email address and telephone, etc.) kept for the duration of the provision of the service plus the legal limitation periods, which are generally 5 years.
• For individuals, economic and financial data (e.g. bank account number, verification code, etc.) kept for the time necessary for the transaction and for the management of billing and payment plus the legal limitation periods, which are generally 5 to 10 years.
• For professionals, when there is confusion between the name of your structure and your personal name (e.g. auto-entrepreneur, small business, etc.), economic and financial data (e.g. bank account number, verification code, etc.) kept for the time necessary for the transaction and for the management of billing and payment plus the legal limitation periods which are generally 5 to 10 years.
• Email address to receive our technical messages kept until your account is deleted.
• Content of exchanges entered by the user (text, questions, questions, requests, documents) during the use of artificial intelligence retained throughout the duration of the service.
• Connection data (e.g. logs, IP address, etc.) stored for a period of 1 year.
• Financial and asset situation maintained until your account is deleted and then for a limitation period of 5 years.

At the expiration of the applicable retention periods, the deletion of your personal data is irreversible and we will no longer be able to communicate them to you after this period. At most, we will only be able to keep anonymous data for statistical purposes.

Please also note that in the event of a dispute, we are obliged to keep all data concerning you for the duration of the processing of the case even after the expiration of their retention periods described above.

What rights do you have to control the use of your personal data?

The applicable data protection regulations grant you specific rights that you can exercise, at any time and free of charge, in order to control our use of your data.

• Right to access and copy your personal data as long as this request is not in contradiction with business secrecy, confidentiality or the secrecy of correspondence.
• Right to rectify personal data that is erroneous, obsolete or incomplete.
• Right to request the deletion (“right to be forgotten”) of your personal data that is not essential for the proper functioning of our services.
• Right to the limitation of your personal data which allows the use of your data to be frozen in the event of a dispute over the legitimacy of the treatment.
• Right to the portability of your data that allows you to recover some of your personal data in order to store or transmit them easily from one information system to another.
• Right to give instructions on the fate of your data in the event of death, either by yourself, or by a trusted third party or a beneficiary.

For a request to be taken into account, it is imperative that it be made directly by you to the address rgpd@limova.ai. Any request that is not made in this manner cannot be processed.

Requests cannot come from anyone but you. We may therefore ask you to provide proof of identity in case of doubt about the identity of the applicant.

We will respond to your request as soon as possible with a maximum of three months from receipt in case the request is technically complex or if we receive numerous requests at the same time.

Please note that we may always refuse to respond to excessive or unfounded requests, especially with respect to their repetitive nature.

Who can have access to your personal data?

Your personal data is processed by our teams and by our technical service providers for the sole purpose of operating our service.

We specify that we check all our technical service providers before recruiting them to ensure that they scrupulously respect the applicable rules for the protection of personal data.

MOREOVER, WE GUARANTEE THAT WE NEVER TRANSFER OR SELL YOUR DATA TO THIRD PARTIES OR BUSINESS PARTNERS.

Can your personal data be transferred outside the European Union?

The personal data processed by our limova.ai platform is exclusively hosted on servers located within the European Union.

In addition, we make every effort to use only technical tools whose servers are also located within the European Union. If this is not the case, we carefully ensure that they implement the appropriate guarantees required to ensure the confidentiality and protection of your personal data.

How do we protect your personal data?

We implement the following technical and organizational means to guarantee the security of your personal data on a daily basis and, in particular, to combat any risk of destruction, loss, alteration or disclosure.

Technical security measures

• Password database separated from user identifiers (Front-end side)
• Complex user passwords (Front-end side) imposed upon login
• Complex passwords for KAINOTOM.IA team terminals
• HTTPS protocol
• Traceability of accesses
• VPN for KAINOTOM.IA teams
• Delegated to a third party (Google Firebase)

Organizational security measures

• Access badge
• Information systems charter
• Data breach management procedure
• Procedure for managing individual rights
• Rules of good conduct
• Awareness-raising and training of teams twice a year
• Video surveillance in the premises

Using Workspace API data

Limova.App respects the confidentiality of your data accessible via the Google Workspace APIs. We want to assure you that all user data obtained through these APIs is used only to provide and improve the specific functionalities of Limova.App in accordance with the intended use for you. More specifically, we do not use any user data obtained through the Google Workspace APIs to develop, improve, or train generalized artificial intelligence (AI) and/or machine learning (ML) models. Our aim is to provide a useful and secure experience in the context of Limova.App, without exploiting your Workspace data for broader AI/ML development purposes.

Do we use cookies when you browse our platforms?

WE GUARANTEE THAT WE DO NOT USE ANY ADVERTISING OR STATISTICAL COOKIES IN THE OPERATION OF OUR PLATFORMS.

We only use technical cookies that are necessary for the proper functioning of our platforms that we recommend not deleting and that do not require a cookie banner.

If you nevertheless wish to object to their use, you can use your browser settings by following the following instructions: Chrome, Microsoft Edge, Safari, Firefox and Opera

Who can you contact for more information about the use of your personal data?

To best guarantee the protection and integrity of your data, we have officially appointed an independent Data Protection Officer (“DPO”) to our supervisory authority.

You can contact our DPO at any time and free of charge at rgpd@limova.ai for more information or details about how we handle your data.

How can you contact the CNIL?

You can contact the Commission Nationale de l'Informatique et des Libertés or “CNIL” at any time at the following coordinates: CNIL Complaints Department, 3 place de Fontenoy — TSA 80751, 75334 Paris Cedex 07 or by phone at 01.53.73.22.22.

Can the Privacy Policy be changed?

We may change our Privacy Policy at any time to adapt it to new legal requirements as well as to new treatments that we may implement in the future.

Certified compliant by Dipeeo®