PRIVACY POLICY (RGPD)

IronFrame Labs
Last updated: February 15, 2026

1. Data Controller

The website https://www.ironframelabs.com is operated by:

Jonathan Lavanant
Business name: IronFrame Labs
Auto-Entrepreneur – Registered in France
Address: 741 Guirhoel – 29410 France
VAT: FR15903886547
Email: contact@ironframelabs.com

Jonathan Lavanant is the data controller within the meaning of the General Data Protection Regulation (GDPR – EU 2016/679).

2. Personal Data Collected

We may collect the following personal data:

Account & Purchase Information

  • First name

  • Last name

  • Email address

  • Billing address

  • VAT number (if applicable)

  • Purchase history

Payment Information

Payments are processed securely via:

  • WooPayments (Stripe)

  • PayPal

We do not store full credit card details on our servers.

Communication Data

  • Email address (newsletter subscription)

  • Customer support communications

Technical Data

  • IP address

  • Browser type

  • Device information

  • Pages visited

  • Usage data

3. Purpose of Data Processing

Your personal data is collected for the following purposes:

  • Creating and managing user accounts

  • Processing payments

  • Granting access to digital content

  • Managing subscriptions

  • Customer support

  • Sending newsletters (if consented)

  • Improving website performance

  • Legal and tax compliance

4. Legal Basis for Processing

Processing is based on:

  • Contractual necessity (purchase of digital products)

  • Legal obligations (tax compliance)

  • Legitimate interest (website security, fraud prevention)

  • Consent (newsletter, cookies)

5. Data Retention Period

Personal data is retained:

  • For the duration of the contractual relationship

  • For up to 10 years for accounting and tax purposes (French law)

  • Until newsletter unsubscription (for marketing emails)

6. Data Sharing

Your data may be shared with:

  • Stripe (WooPayments)

  • PayPal

  • O2Switch (hosting provider)

  • Email marketing service providers (if used)

  • Legal authorities if required by law

We do not sell or rent your personal data.

7. Cookies

The website uses cookies for:

  • Essential website functionality

  • Payment processing

  • Analytics

  • User experience improvement

A cookie banner allows users to:

  • Accept cookies

  • Decline non-essential cookies

  • Manage preferences

Users can also configure cookies via browser settings.

8. International Data Transfers

Some service providers (e.g., Stripe, PayPal) may process data outside the European Union.

These providers comply with GDPR requirements through:

  • Standard Contractual Clauses

  • Adequacy decisions

  • Equivalent safeguards

9. Your Rights (Under GDPR)

You have the right to:

  • Access your personal data

  • Rectify inaccurate data

  • Request deletion (“right to be forgotten”)

  • Restrict processing

  • Object to processing

  • Data portability

  • Withdraw consent at any time

To exercise your rights, contact:

📧 contact@ironframelabs.com

You also have the right to file a complaint with the CNIL (France).

10. Data Security

We implement appropriate technical and organizational measures to protect personal data against:

  • Unauthorized access

  • Loss

  • Alteration

  • Disclosure

However, no method of transmission over the Internet is completely secure.

11. Updates to This Policy

This Privacy Policy may be updated at any time.

Users are encouraged to review it periodically.