Your data stays confidential. This policy explains how OperAi collects, uses and protects personal information, in compliance with the General Data Protection Regulation (GDPR).
Last update: 11 May 2026
OperAI considers the protection of personal data to be fundamental. This policy informs you, in full transparency, about the data collected on the operai-solutions.com website, the purposes of processing, retention periods and the rights you enjoy under Regulation (EU) 2016/679 of 27 April 2016 (GDPR) and the French amended "Informatique et Libertés" Act of 6 January 1978.
1. Data controller
Controller
OperAI (SASU) 17 rue Vasco de Gama, 75015 Paris, France Paris Trade Register 104 353 693
OperAI acts as data controller within the meaning of article 4 of the GDPR for all data collected via the operai-solutions.com website.
Given the size of the organisation and the nature of processing activities, OperAI has not appointed a Data Protection Officer (DPO). Questions related to data protection may be addressed directly to the data controller.
2. Data collected
OperAI only collects data strictly necessary for the purposes described below. No sensitive data (health, political or religious opinions, etc.) is collected.
2.1 — Data collected via the contact form
When you fill in the audit-request form on the site, we collect the following information:
First and last name
Company name
Function / role within the company
Work email address
The context information provided in the free-text field of the form
2.2 — Data collected automatically
During your visit, certain technical data may be collected automatically, in particular:
IP address (anonymised)
Browser type, operating system, screen resolution
Pages visited, time and duration of visits
Referring site, if any
This data is used for aggregated statistical purposes and does not directly identify you.
3. Purposes and legal bases
Data collected is processed for the following purposes:
Responding to contact requests and scheduling the free initial audit
Legal basis: performance of pre-contractual measures taken at your request (art. 6.1.b GDPR).
Commercial follow-up and sending information about our services
Legal basis: OperAI's legitimate interest in developing its activity (art. 6.1.f GDPR), with strict respect for the right to object.
Audience measurement and site improvement
Legal basis: legitimate interest in improving service quality (art. 6.1.f GDPR).
Compliance with legal and accounting obligations
Legal basis: legal obligation (art. 6.1.c GDPR).
4. Retention periods
Your data is retained for the following periods, in line with French CNIL recommendations:
Contact-form data: 3 years from the last exchange, unless an active commercial relationship is in place.
Data linked to a contractual engagement: duration of the engagement + 5 years after its end (statutory retention period for commercial contracts).
Accounting and tax data: 10 years (article L. 123-22 of the French Commercial Code).
Technical navigation data: 13 months maximum.
At the end of these periods, data is irreversibly deleted or anonymised.
5. Recipients and processors
Your data is strictly reserved for internal use by OperAI. It is in no case sold, rented or transferred to third parties for commercial purposes.
Technical providers may, however, process your data on our behalf as processors within the meaning of article 28 of the GDPR:
Tools for sending and managing professional emails
Anonymised audience-analysis tools
Automation and CRM solutions for commercial follow-up
Each processor is selected for its GDPR-compliance guarantees. When a transfer outside the European Union is necessary, it is framed by Standard Contractual Clauses approved by the European Commission or by any other mechanism compliant with article 46 of the GDPR.
6. Data security
OperAI implements appropriate technical and organisational measures to preserve the confidentiality, integrity and availability of your data:
Encryption of communications via the HTTPS (TLS) protocol
Access restricted to data strictly necessary (principle of least privilege)
Strict separation of client / staging / production environments
Use of enterprise versions of AI models, never trained on client data — Zero Data Retention option available
Full documentation of processing activities to support your GDPR obligations
Despite these measures, no transmission of data over the Internet is entirely secure. OperAI cannot guarantee absolute security, but commits to notifying any data breach in accordance with articles 33 and 34 of the GDPR.
7. Your rights
Under the GDPR and the French amended "Informatique et Libertés" Act, you have at any time the following rights over your personal data:
Right of access — to confirm whether your data is being processed and receive a copy of it.
Right to rectification — to correct inaccurate or incomplete data.
Right to erasure ("right to be forgotten") — to request deletion of your data in the cases provided by law.
Right to restriction of processing.
Right to object to processing, including for direct-marketing purposes.
Right to portability — to receive your data in a structured, commonly used, machine-readable format.
Right to set directives regarding the retention, deletion and communication of your data after your death.
To exercise these rights, send your request along with proof of identity to: contact@operai-solutions.com. A reply will be provided within a maximum of 30 days of receipt.
You also have the right to lodge a complaint with the French Data Protection Authority (CNIL) — 3 place de Fontenoy, TSA 80715, 75334 Paris Cedex 07, or online at www.cnil.fr.
8. Cookies and trackers
The operai-solutions.com site may use cookies and similar technologies for the following purposes:
Strictly necessary cookies — site functionality (session, security, preferences). These cookies do not require your consent.
Anonymised audience-measurement cookies — visitor counts, pages viewed, without individual identification. Exempt from consent under strict conditions (CNIL guidelines).
Third-party cookies (where applicable) — hosted videos, external integrations. Subject to your prior consent.
You can configure your browser at any time to refuse some or all cookies. Disabling strictly necessary cookies may impair the operation of the site.
9. Policy updates
OperAI reserves the right to modify this policy at any time to reflect legal, case-law or technical developments. The update date is indicated at the top of the page. We invite you to consult this policy regularly to stay informed of any changes.
10. Contact
For any question about this privacy policy or the exercise of your rights, you can reach us at:
