Privacy

Privacy policy

This policy explains which personal data may be processed, why it is processed, how long it is retained and which rights you can exercise.

Last updated: 2026-06-27

Publisher
Kadryn
Email
contact@kadryn.com
Personal data contact
privacy@kadryn.com
Support
support@kadryn.com
Applicable law
France

Controller

The data controller is the publisher identified in the legal notice. For any personal data question, use the personal data contact listed on this page.

When Kadryn processes data on behalf of a customer organization, controller and processor roles may be specified in a dedicated contractual agreement.

Data processed

Kadryn may process identification data, account data, login data, audit logs, billing information, AI usage metadata and messages voluntarily submitted through forms.

Kadryn is designed to limit exposure of sensitive content. Customer organizations should avoid sending unnecessary personal data in prompts, payloads or technical metadata.

Purposes and legal bases

Data is processed to provide the service, secure accounts, manage billing, respond to requests, produce audit logs, improve the product and comply with applicable legal obligations.

Depending on the context, legal bases may include contract performance, legitimate interests in securing and improving the service, compliance with a legal obligation or consent where required.

Recipients and transfers

Data is accessible to authorized Kadryn personnel and to selected providers strictly necessary for hosting, authentication, billing, support, security and technical analytics.

Where data is transferred outside the European Economic Area, Kadryn implements appropriate contractual and organizational safeguards when required by applicable rules.

Retention periods

Account data is retained for the duration of service use and then archived or deleted according to applicable obligations. Technical and audit logs are retained for a period proportionate to security, compliance and evidentiary needs.

Prospecting and contact data is retained for a period limited to the commercial relationship or applicable legal obligations.

Your rights

You may request access, rectification, erasure, restriction, objection to processing or portability of your data where these rights apply.

You may also lodge a complaint with the CNIL if you believe your rights are not respected.