Privacy Policy
Last update: 01/12/2024
Welcome to Pocket Trotter, a platform designed for roaming travel enthusiasts. This privacy policy aims to inform you about how we collect, use, and share your personal data, as well as your rights under the General Data Protection Regulation (GDPR) or any other data protection regulations.
We are a community built on trust.
A fundamental part of earning that trust is being clear about how we use your information and protecting your right to privacy.
Furthermore, the direction we want the platform to take is clear:
– No ads that spoil your browsing experience.
– Your data will be used for the sole purpose of giving you the best possible experience.
No data will be sold.
This privacy policy describes :
- the information we collect about you.
- how we use and share this information.
- the confidentiality options available to you.
From time to time, we may change the terms of this Privacy Policy. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy. If required by law, we will also notify you of changes in another manner that we believe is reasonably likely to reach you, such as by e-mail or otherwise via the Site. We encourage you to review the Privacy Policy regularly to stay informed about our practices and the ways in which you can help protect your privacy.
Contact details and responsible party
The person responsible for processing your personal data is: Quentin RUFFIER DES AIMES. If you have any questions or suggestions concerning the protection of your data, please do not hesitate to send us an e-mail to data@pocket-trotter.com.
Contact our Privacy Officer at: contact@pocket-trotter.com
Recording data
To use all Pocket Trotter functions, you must register. To do so, you must provide the following mandatory information:
- User name
- Name
- First name
- E-mail address
- Password
- Phone number
- Date of birth
- Gender
- Country
- Address
- Biography
After registration, you will receive a registration e-mail to activate your Pocket Trotter account.
Your registration data is necessary for Pocket Trotter to create a user account for you. It is also used to activate and manage your account and to enable you to use all Pocket Trotter features. In this way, you are entering into a (free) user agreement that allows us to store this data (in accordance with Article 6, paragraph 1, letter b of the GDPR).
In order to conclude the contract, you must provide us with this data. However, you are neither contractually nor legally obliged to conclude the contract and therefore provide your data.
In addition, you may voluntarily provide other information when registering, such as a profile photo, languages spoken or links to your social networks. This information is optional and is not required for registration. Please note, however, that this information may be visible to other Pocket Trotter users. We collect this data in order to be able to provide you with the corresponding functions of our website and to found a community of “involved” users and prevent “bots” Art. 6, al. 1 lit. b RGPD.
When you connect to Pocket Trotter, we also record your IP address for a limited period of time so that we can detect and prevent possible attacks and misuse of Pocket Trotter (for example, so-called brute force attacks) by temporarily accessing these IP addresses and block if necessary.
Each processing operation is carried out in such a way as to guarantee the security of the processing in accordance with Article 32 of the RGPD and based on our legitimate interest in protecting against any misuse of our service (Article 6, paragraph 1, lit.f, RGPD).
Data is stored for a maximum of 90 days before being made anonymous.
In short, the data provided is used solely for :
- Using Pocket Trotter
- Operating and maintaining Pocket Trotter.
- Enhance and personalize Pocket Trotter.
- Develop new products, services and functionalities.
- Communicate with you, directly or through one of our partners, including for customer service, to provide you with updates and other information relating to the platform, and for marketing and promotional purposes.
- Send you emails.
- Identify and prevent fraud.
- Ensuring platform safety
Data security
We use security measures to protect your personal data, but please remember that no method of transmission over the Internet or method of electronic storage is 100% secure. Although we strive to use appropriate means to protect your personal data, we cannot guarantee its absolute security.
Store
If you subscribe, we integrate payment service providers to process payments. In case of payment, we use the payment service provider Stripe (Stripe Payments Europe, Ltd, C/O A & L Goodbody, Ifsc, North Wall Quay, Dublin, D01 H104, Ireland – “Stripe”). You can view Stripe’s privacy policy at the following address: https: //stripe.com/en-fr/privacy
We transmit payment information to payment service providers in order to carry out payment processing for the respective services, Article 6 (1) (b) RGPD. Further processing of the payment information by the payment service provider is the sole responsibility of the payment service provider. The respective payment service provider is solely responsible for the processing of your payment data. We have no access to or influence over them.
Payment service providers only inform us when the payment has been duly processed. We process this information together with your first and last name in order to complete the transaction you have made. We will also process your e-mail address in order to send you an invoice. The legal basis for the processing is art. 6 (1) (b) RGPD. Your bank details will not be stored on Pocket Trotter.
In order to conclude the purchase contract, you must provide this data. However, you are neither contractually nor legally obliged to conclude the contract and therefore provide this data.
Webhoster
We operate our website on the servers of our hosting provider OVH, in France, which processes personal data on our behalf.
Processing takes place solely within the European Union.
Uses of your data
- To provide and maintain our service, including to our payment processing and hosting service providers.
- To comply with a legal obligation.
- To protect and defend the rights or property of Pocket Trotter.
- To prevent or investigate possible offences
- To protect users’ personal safety
- As part of our administrative processes and the organization of our operations, financial accounting and compliance with legal obligations (such as archiving), we pass on your data to administrations and financial consultants (e.g. accountants).
- This data is transmitted on the basis of our legitimate interest in maintaining our business activities, performing our tasks, asserting, exercising or defending claims (according to Art. 6 (1) lit. f RGPD) or on the basis of a legal obligation (according to Art. 6 Paragraph 1 lit. c RGPD).
- As part of the development of our business, the structure of our company may change due to a change in legal form, the creation, acquisition or sale of subsidiaries, parts of companies or components. In the context of such transactions, user information is shared with the transferring part of the company. Where personal data is passed on to third parties to the extent described above, we ensure that this is done in accordance with this data protection declaration and the relevant applicable laws.
The transfer of personal data is justified by the fact that we have a legitimate interest in adapting the form of our business to economic and legal circumstances, in accordance with Art. 6 Para. 1 lit. f RGPD
Automated individual decisions or actions for profiling
We do not use any automated processing and/or profiling.
Deleting your data
Unless otherwise specified, we will delete or anonymize your personal data as soon as it is no longer required for the purposes for which it was collected or used in accordance with the preceding paragraphs. As a general rule, we retain your personal data for the duration of the use or contractual relationship via the website, plus a period of 30 days during which we keep back-up copies after deletion. We also retain your data if we are obliged to do so for legal reasons or if the data is required for criminal prosecution or to secure, assert or enforce legal claims.
If you delete your user account, your profile will be completely and permanently deleted. However, we will keep back-up copies of your data for a period of 30 days before permanently deleting it, provided that this data is no longer required for legal reasons or criminal prosecution or to secure, assert or enforce rights.
Your rights as a data subject
With regard to the processing of your personal data, you have the rights described below. To assert your rights, you can submit a request by post or e-mail to the address indicated in section 1 above.
Right to information
You have the right to receive at any time, upon request, information about the personal data we process within the scope and conditions of Art. 15 RGPD. To do so, you can submit a request by mail via the Contact form
Right to correct incorrect data
You have the right to request that we immediately correct your personal data if it is incorrect. To do this, you can submit a request by post using the Contact form.
Right to cancel
You have the right, under the conditions described in Art. 17 RGPD, to ask us to delete your personal data. These conditions include a right to erasure if the personal data is no longer necessary for the purposes for which it was collected or otherwise processed, as well as in the event of unlawful processing, the existence of an objection or an obligation to erase it under EU law or the law of the Member State to which we are subject.
Right to restrict processing
You have the right to demand that we restrict processing in accordance with Art. 18 RGPD.
Right to data portability
You have the right to receive the personal data concerning you that you have provided to us in a structured, common and machine-readable format, in accordance with art. 20 RGPD. To do this, you can submit a request by post via the Contact form
Right to object
You have the right to object at any time to the processing of your personal data for reasons arising from your particular situation on the basis of Art. 6, paragraph 1. Your right to object exists for reasons that arise from your particular situation, unless we can establish compelling legitimate grounds for processing that outweigh your interests, rights and freedoms or if the processing is necessary to assert and exercise or defend against legal claims (Art. 21 (1), of the GDPR).
Unless otherwise stated in this data protection declaration, please use the contact addresses given above to assert your above-mentioned right.
Right to complain
You have the right to contact a supervisory authority of your choice in the event of a complaint.
Data processing when exercising your rights
Finally, we would like to point out that we process the personal data transmitted by you when you exercise your rights in accordance with Article 7 (3) sentence 1 of the GDPR and Articles 15 to 22 of the GDPR for the purpose of enforcing these rights and providing evidence thereof and, if necessary, defending legal positions. The processing of your data for the purpose of exercising your rights as a data subject is based on the legal basis of Art. 6 (1) (c) GDPR in conjunction with Art. 15 to 22 GDPR. Insofar as we process personal data for the purposes of legal defense, this also constitutes our legitimate interest, art. 6 Para. 1 lit. f RGPD.
The legal basis for storage is art. 6 (1) (f) of the RGPD. It is in our legitimate interest to provide and document the aforementioned evidence.
This personal data will be blocked and will not be processed for other purposes, unless the processing is necessary for the establishment, exercise or defense of legal claims. This is also in our legitimate interest, in accordance with art. 6 Para. 1 lit. f of the RGPD.
You are neither contractually nor legally obliged to provide your personal data, but we may refuse your request to exercise your rights as a data subject in accordance with art. 12 Para. 2 if you do not provide the required data.
Processing of personal data
Find out more:
| Purpose of processing | Personal data processed | Legal basis | Shelf life |
|---|---|---|---|
| Online account creation | Username, surname, first name, e-mail address, address, gender, country, biography, languages spoken (optional) | Contract performance | For the duration of the contractual relationship, and up to 2 years after the inactivity of the user’s account. |
| Subscription payment | Full name, ip address | Contract performance | Transaction time only |
| Subscription payment | Banking data | Contract performance | Transaction time only |
| Managing contact requests | Last name, first name, e-mail address | Legitimate interest | 3 years from last contact |
| Managing individual rights requests | Last name, first name, e-mail address | Legal obligation | 5 years from the date of the reply given to the person concerned |
| Marketing news communication (Newsletter) | E-mail address | Consent | Retention for the duration of the newsletter subscription until the user objects |
| Website activity and traffic management | IP address, user connection information | Legitimate interest | 25 months |
| Management of cookies | User choice | Consent | 13 months |
| Management of non-consented cookies | User choice | Legitimate interest | 6 months |
| User geolocation | Geographical position | Consent | User usage time. No storage. |
| Private messaging | Full name, message | Contract performance | For the duration of the contractual relationship, and up to 2 years after the inactivity of the user’s account. |
Data security
It is important to ensure that your data is properly protected and that technical and organizational security measures are in place to protect it and guarantee its availability, confidentiality and integrity. This includes data encryption. In addition, it is crucial to maintain the confidentiality of your login details to prevent any fraudulent use of your online account. Only authorized personnel who need access to information in the course of their duties will have access to your data.
Policy modification
We may occasionally modify this policy, in particular in order to comply with any regulatory, case law, editorial or technical developments. Where appropriate, we will change the date of the privacy policy update and indicate the date on which the changes were made. When necessary, in particular but not exclusively in the event of a substantial modification or a particular event requiring the modification of the present policy, we will inform you and/or request your agreement. We advise you to check this page regularly for any changes or updates to our policy.