Protection of personal data
Last updated: 07/16/2025
CodeNekt considers the protection of Users’ personal data important. It is therefore committed to protecting your privacy during your visit to its website and its application and will do everything in its power to ensure that your personal data is processed in a manner that respects your fundamental rights and freedoms.
CodeNekt undertakes to implement appropriate measures to protect, maintain confidentiality, and secure Users’ personal data, in accordance with current European regulations, such as Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (the « GDPR »).
This policy (the « Policy ») aims to inform you of the reasons why we process your personal data, the manner in which we do so, and your rights in this regard.
Users are therefore encouraged to read the Policy carefully, print it, and keep a copy.
DEFINITION
User
Means any person using or who has used the Application and/or Services, including, in particular, visitors to the Application.
1. Identity of the persons whose data is collected and processed by CodeNekt
As part of its operations, CodeNekt collects and processes data from Users using or who have used the website or application.
These Users are the ones affected by the collection and processing of personal data specified below.
2. Categories of personal data collected
The User data that CodeNekt may collect and process may include (without limitation) the following data:
a) Users’ identity and data relating to their family, social, and professional situation: title, surname, first name, company name, address, telephone number (landline and/or mobile), email address, age, and photograph.
b) Data relating to copies of official documents uploaded to the application by Users. The collection of this information is justified to identify potential car scams.
c) Payment method data: name of the banking institution, type of bank card, but not including the bank card number and/or security code, billing email address, billing address, postal or bank account details, partial bank card numbers, and bank card expiry date.
d) Application browsing, usage, and login data: Confirmation of registration and creation of User account(s). Ensure visitor navigation within the application, allow users to log in, and identify any computer errors. Improving user navigation within the application and the operation of the service.
e) Data necessary for carrying out so-called loyalty-building actions: Identifying improvements that can be made to the service and application through responses to surveys, canvassing, studies, product testing, and promotions.
f) Data relating to the improvement of our advertising through the processing of identity data that users provide in the application;
3. Principles applicable to the collection and processing of personal data
Legal basis for the collection and processing of personal data
The legal basis for our collection of your personal data is as follows:
This collection is necessary to perform the contract entered into when you use our services on our Website and our Application;
Legitimate interest when you voluntarily provide us with personal data during your visit to our Website, the data being collected to enable us to better respond to your requests for information about our services.
Your personal data is collected for one or more of the following purposes:
Manage your access to and use of certain services accessible on the Website,
Carry out operations related to User management and monitoring of User relations,
Create a file of users, customers, and prospects,
Send newsletters, solicitations, and promotional messages. If you do not wish to do so, we give you the option to express your refusal when your data is collected,
To compile commercial and traffic statistics for our services,
To organize contests, lotteries, and all promotional activities excluding online gambling and games of chance subject to approval by the Online Gaming Regulatory Authority
To manage customer reviews of products, services, or content,
To manage unpaid invoices and any disputes regarding the use of our products and services,
To personalize responses to your requests for information,
To comply with our legal and regulatory obligations. We inform you, when collecting your personal data, whether certain data must be provided or whether it is optional (by asterisks visible on the Site).
Why do we collect your personal data? | What categories of personal data do we collect for this purpose? | What is the legal basis that allows us to collect your personal data for such a purpose? |
We collect your personal data in order to identify you when you use our site and in order to send you messages related to the proper administration of our site (e.g.: confirmation of registration, modification of the site or conditions of use, etc.) | Identification Data Login Data | The legal basis for this processing is the execution of the contract binding us upon your acceptance of our general conditions at the time of creating your account. |
We collect your personal data in order to deliver your service to you. | Identification Data | The legal basis for this processing is the execution of the contract binding us upon your acceptance of our general conditions at the time of creating your account. |
We collect your personal data in order to improve and optimize our site, for example by studying your behavior during your visit and drawing conclusions in order to make changes in terms of ergonomics and user experience. | Usage and Consumption Data Connection Data | The legal basis for this processing is our legitimate interest in providing and improving the user experience of our visitors and members of our site. |
We collect your personal data in order to understand your preferences and offer you commercial offers corresponding to services/products similar to those already ordered. | Usage and Consumption Data Identification Data | The legal basis for this processing is our legitimate interest in providing and improving the user experience of our visitors and members of our site. |
When collecting your personal data, we inform you whether certain data must be provided or whether it is optional.
User browsing information applicable to the collection and processing of personal data
When using CodeNekt services or certain related services, certain data is automatically collected, such as the User’s geolocation, IP address, or operating system references.
Among the technologies used to collect Users’ personal data, in order to improve the quality of its service and better meet their expectations, CodeNekt may use cookies and trackers that store data using a unique session identifier. These sessions store said data for the duration of Users’ browsing.
Purposes of the collection and processing of personal data
CodeNekt collects and processes User data for the following purposes:
To perform the features offered by the CodeNekt application, namely to support drivers from the purchase of their used car to its resale.
For the purposes of usage, user account management, new user registration, maintenance, development, and improvement of CodeNekt services.
For the purposes of invoicing that customers must pay to access the premium version of the application and additional services from CodeNekt.
For CodeNekt’s communication and marketing purposes, including, more specifically, the dissemination of CodeNekt commercial offers related to the promotion of the service offered by the said company, and the sending and communication of newsletters and news plans, as well as informative or commercial alerts to interested Users. to respond to requests and inquiries (contact forms), particularly in the context of surveys, polls, and other invitations, including those to discover CodeNekt services and legally download the CodeNekt Application.
to disseminate User comments and/or opinions via the solutions and innovations offered by the CodeNekt Application and/or any social and communication networks and/or any other CodeNekt media and materials, regardless of the form or nature, existing or future.
for the purpose of analyzing the performance of the CodeNekt Application.- to meet regulatory requirements in force or in the process of being adopted.
Duration of retention of personal data
The retention period for Users’ personal data depends on the purpose.
Regarding data relating to customer and prospect management:
Your personal data will not be retained beyond the period strictly necessary to manage our business relationship with you.
However, data used to establish proof of a right or contract, which must be retained to comply with a legal obligation, will be retained for the period stipulated by applicable law.
Regarding potential prospecting operations aimed at customers, their data may be retained for a period of three (3) years from the end of the business relationship.
Personal data relating to a prospect, who is not a customer, may be retained for a period of three (3) years from the date of collection or the last contact from the prospect.
At the end of this three (3) year period, we may contact you again to see if you wish to continue receiving commercial solicitations.
If you exercise your right of access or rectification, data relating to identity documents may be retained for the period provided for in Article 9 of the French Code of Criminal Procedure, i.e., one (1) year. If you exercise your right to object, this data may be archived for the limitation period provided for in Article 8 of the French Code of Criminal Procedure, i.e., three (3) years.
Regarding the management of lists of opposition to receive prospecting:
The information enabling your right to object to be taken into account is kept for a minimum of three (3) years from the exercise of the right to object.
Regarding audience measurement statistics:
Information stored in the users’ terminal or any other element used to identify users and allowing their traceability or attendance will not be kept beyond thirteen (13) months.
4. Recipients of the personal data collected
Your personal data may be processed by authorized personnel of CodeNekt, partners, service providers, or government agencies with whom CodeNekt has a relationship. The use of these partners, service providers, or government agencies is necessary for the proper performance of the contract between you and CodeNekt.
Only authorized CodeNekt personnel and its service providers, for the purposes explained in Article 3 above: « Purposes of the Collection and Processing of Personal Data, » may have access to the personal data collected and process it, without prejudice to its possible transmission to bodies responsible for monitoring or inspection in accordance with applicable laws and/or regulations, or for the purpose of responding to a judicial or administrative decision.
Subject to complete anonymization, CodeNekt is entitled, in compliance with applicable legal provisions, to use Users’ personal data, in particular for statistical purposes, measurement, transfer, and/or exchange with third parties.
The following will have access to your personal data:
Our company’s staff;
The departments responsible for oversight (particularly lawyers and accountants);
Our subcontractors (communications providers, productivity software providers, data hosting providers, payment service providers, billing providers, analytics and audience measurement providers, customer relationship management providers);
Your personal data may also be shared with public bodies, exclusively to meet our legal obligations, court officials, ministerial officers, and organizations responsible for debt collection.
5. Transfer of personal data
Your personal data may be transferred to other countries within the European Union where CodeNekt’s offices or servers, or any of its suppliers, are located.
If your personal data is processed outside the European Union, the transfers will be carried out in compliance with applicable regulations.
6. Protective measures implemented by CodeNekt
CodeNekt collects and processes Users’ personal data in compliance with applicable regulations.
When the disclosure of a User’s personal data to third parties is necessary and authorized, CodeNekt ensures that these third parties guarantee the same level of protection for said personal data as that implemented by CodeNekt.
CodeNekt implements technical and organizational measures to ensure that the storage of Users’ personal data is secure and for the duration necessary to fulfill the intended purposes.
CodeNekt draws Users’ attention to the fact that no transmission or storage technology is completely infallible.
Furthermore, in the event of a proven breach of Users’ personal data, likely to pose a significant risk to their rights and freedoms, CodeNekt will inform the competent supervisory authority of this breach in accordance with the procedures provided for by applicable regulations.
Users must: exercise caution to prevent any unauthorized access to their personal data and in particular to their computer and digital terminals (computer, smartphone, tablet in particular).
7. User Rights
In accordance with current regulations, Users have the following rights, subject to legal and regulatory limitations.
User browsing information applicable to the collection and processing of personal data
CodeNekt undertakes to make its best efforts to ensure that the information communicated to Users is accessible, precise and transparent regarding the conditions of the collection and processing of their personal data.
Right of access / right to erasure (“right to be forgotten”) / right to rectification / right to object / right to limit processing
Any User may, at any time, access their personal information held by CodeNekt. They have the right to receive an electronic copy (for any additional copy, CodeNekt may charge a fee based on the administrative costs incurred).
Each User has the right to request the deletion and/or rectification of their personal data when it is incorrect or outdated. CodeNekt may retain certain personal data when required to do so by law or for legitimate reasons.
Users may object at any time, for legitimate reasons:
to the use of their personal data for direct marketing purposes, or
to the reuse of their personal data for processing purposes other than those listed in Article 2 above, except when CodeNekt is fulfilling one of its legal and/or regulatory obligations.
Users have the right to request that the processing of their personal data be limited to what is strictly necessary. This right is only applicable:
if the User concerned contests the accuracy of their personal data;
if the User concerned justifies that the processing of their personal data is unlawful and requests a restriction of their use rather than erasure;
if CodeNekt no longer needs the User’s personal data and it is still necessary for the User to establish, exercise, or defend legal claims;
if the User concerned objects to the processing of their personal data based on the legitimate interest of the data controller, by justifying an overriding legitimate interest.
Right to lodge a complaint with a supervisory authority
Any User who considers that the efforts implemented by CodeNekt to preserve the protection of their personal data do not guarantee respect for their rights has the possibility of filing a complaint with the competent supervisory authority (CNIL or any other authority mentioned on the list available from the European Commission).
Right to the portability of their personal data
Users have the right to data portability, authorizing them to obtain their personal data from CodeNekt in a structured, commonly used, and readable format.
Users may request that their personal data be transferred to another data controller.
Right to decide the fate of personal data following death
Users also have the right to manage the fate of their personal data after their death by adopting general or specific directives, which CodeNekt undertakes to respect.
In the absence of such directives, CodeNekt recognizes the right of heirs to exercise certain rights, in particular the right of access if necessary for the settlement of the deceased’s estate and the right to object.
Exercise of their rights by Users
In order to exercise their rights, any User can contact CodeNekt by providing their email address here.
To help them exercise their rights, CodeNekt informs Users that the CNIL has established and made available to them, on its website accessible at the address www.cnil.fr, letter templates.
Before processing User requests, CodeNekt will be entitled to verify their identity by requesting any necessary supporting documentation.
CodeNekt will respond to each User’s requests as quickly as possible and in any event within one (1) month of the User providing proof of their identity.
In the event of complexity and/or excessive numbers of requests, this deadline may be extended by an additional two (2) months. CodeNekt undertakes in any event to inform the User concerned of the extension and the reasons for the delay.
8. Amendment of the Charter
CodeNekt reserves the right to make changes to the Policy at any time in order to comply with legislative and regulatory developments and/or to improve its personal data processing and protection policy.
In the event of a change, a new version will be updated and posted online with the « Last Updated » date.
Any new version of the Policy must be subject to prior acceptance by Users.
COOKIE POLICY
WHAT IS A COOKIE?
When you browse our Website, cookies, pixels, and other trackers (hereinafter collectively referred to as « Cookies ») are placed on your browser.
A Cookie is a small file, often encrypted, stored in your browser or device and identified by a name. It is placed when you visit a website or application. Each time you return to the website or application in question, the Cookie is retrieved from your browser or device. Thus, each time you visit the website or application, the browser is recognized.
The placement of these Cookies may allow us to access your browsing data and/or personal data about you.
This page allows you to better understand how cookies work and how to use current tools to configure them.
IDENTIFICATION OF COOKIES
Analytical cookies
These cookies allow us to measure the number of visits, the number of page views, and user activity. They may, if necessary, collect your IP address to determine the city from which you are connecting. Analytical cookies allow us to generate statistics on the traffic and navigation of our Site in order to improve our performance.
The cookies used also allow us to identify navigation problems and, ultimately, resolve them.
We use the following analytical cookies:
Cookie name | Cookie Function | Retention period |
__hssc | Measure the audience | Valid for 1 year |
YOUR COOKIE PREFERENCES
Cookies that can be placed without consent
Some cookies do not require your consent, such as:
Technical and functional cookies that are necessary for the Site to function; and
Certain audience measurement cookies or cookies that allow us to test different versions of the Site for the purpose of optimizing editorial choices.
Acceptance or refusal of Cookies subject to your express consent
All other cookies require your consent. These include advertising cookies, social media cookies, content personalization cookies, and certain audience analysis cookies.
You can freely choose to accept or refuse the use of these cookies.
You can accept or refuse these cookies when you first browse the Site.
Your choice to accept or refuse cookies will be retained for a period of six (6) months.
You are free to withdraw your consent and, more generally, to change your preferences at any time, via the following link [Note: a link to the cookie banner should be included].
Your browser settings
Most browsers accept cookies by default. However, you can choose to block these cookies or ask your browser to notify you when a website attempts to place a cookie on your device.
Please note that some features of the Website may no longer work.
You can also configure your browser to accept or reject certain cookies.
The configuration of each browser is different. It is described in your browser’s help menu, which will tell you how to change your cookie preferences.
Each browser offers different configuration options:
For Internet Explorer: go to the « Settings » menu, then « Internet Options. » Click on « Privacy » then « Advanced Privacy Settings »;
For Chrome: go to the « Settings » menu then click on « Privacy and Security. » Click on « Permission » and « Cookies and Site Data »;
For Safari: Go to the « Settings » app and then go to Safari. Click on the « Privacy and Security » tab. You can now choose to block all cookies.
Advertising identifiers
Personal data about you may be collected in connection with your advertising identifier.
Each mobile phone has its own unique advertising identifier that allows advertisers to deliver targeted advertising.
Android and Apple allow mobile users to control their privacy in their settings, making it impossible to link their advertising history to their subsequent browsing activity.
You can deactivate and reset your advertising identifier at any time if you no longer wish to receive targeted advertising:
On iOS: Go to « Settings, » then « Privacy, » then « Advertising, » then « Reset Advertising Identifier »;
On Android: Go to « Google Settings » (or « Settings » then « Google »), then « Ads. »
You will likely receive the same number of ads, but they will be less relevant.
LEARN MORE ABOUT COOKIES
For more information on cookies, you can visit the CNIL website at this address: http://www.cnil.fr/vos-droits/vos-traces/les-cookies
Nos partenaires
