Vynvexora

Privacy Policy

Last updated: 15 January 2026

Vynvexora SAS (hereinafter "Vynvexora", "we", "our") is committed to protecting the privacy of its users. This privacy policy describes how we collect, use, store and protect your personal data when you use our website vynvexora.com and our financial and social advisory services.

1. Data controller

The data controller is Vynvexora SAS, registered with the Paris Trade and Companies Register under number B 912 457 836, with its registered office at 47 Rue du Faubourg Saint-Honore, 75008 Paris, France. For any questions regarding the protection of your data, you can contact us at dpo@vynvexora.com.

2. Data collected

In the course of our activities, we collect the following categories of data: identification data (surname, first name, email address) provided through our contact form; browsing data (IP address, browser type, pages viewed, visit duration) collected automatically when you browse our site; data relating to your financial and social situation, only when you choose to share it with us as part of a consultation request.

3. Purposes of processing

Your personal data is processed for the following purposes: responding to your requests for information and advice submitted via the contact form; assessing your eligibility for various social, tax and European aid schemes; improving the quality of our services and the ergonomics of our site; meeting our legal and regulatory obligations, particularly in tax and accounting matters; sending you communications relating to our services, subject to your prior consent.

4. Legal basis for processing

The processing of your data is based on the following legal grounds: your express consent (Article 6(1)(a) GDPR), particularly for sending commercial communications; the performance of pre-contractual or contractual measures (Article 6(1)(b) GDPR) when you request our advisory services; our legitimate interest (Article 6(1)(f) GDPR) in improving our services and ensuring the security of our platform; compliance with legal obligations (Article 6(1)(c) GDPR).

5. Data retention period

Your personal data is retained for a period proportionate to the purpose for which it was collected. Data from the contact form is retained for a maximum of 3 years from your last interaction with our services. Browsing data is retained for 13 months in accordance with CNIL recommendations. Data relating to your advisory files is retained for the duration of the contractual relationship, then archived for the applicable legal limitation period.

6. Data recipients

Your personal data is intended exclusively for authorised personnel of Vynvexora SAS. It is not transferred to third parties for commercial purposes. However, in the course of performing our services, certain data may be shared with our technical subcontractors (hosting, maintenance) who are bound by contractual obligations of confidentiality and security equivalent to ours. In the event of a legal obligation, your data may be transmitted to the competent administrative or judicial authorities.

7. Transfers outside the European Union

Vynvexora undertakes not to transfer your personal data outside the European Economic Area. Should such a transfer become necessary, it would be governed by the appropriate safeguards provided for by the GDPR, such as the standard contractual clauses adopted by the European Commission.

8. Your rights

In accordance with the General Data Protection Regulation (GDPR) and the French Data Protection Act, you have the following rights: right of access to your personal data; right to rectification of inaccurate or incomplete data; right to erasure of your data ("right to be forgotten"); right to restriction of processing; right to data portability; right to object to the processing of your data; right to withdraw your consent at any time. To exercise these rights, send your request to dpo@vynvexora.com with a copy of an identity document. You also have the right to lodge a complaint with the French Data Protection Authority (CNIL).

9. Data security

Vynvexora implements appropriate technical and organisational measures to ensure a level of security commensurate with the risk, in accordance with Article 32 of the GDPR. These measures include encryption of data in transit and at rest, strict access controls, operation logging and regular security audits.

10. Policy amendments

Vynvexora reserves the right to amend this privacy policy at any time. Any substantial change will be brought to your attention by publishing an updated version on our site. We encourage you to check this page regularly to stay informed of our data protection practices.

We use cookies to improve your browsing experience and analyse our site traffic. By continuing to use this site, you accept our use of cookies in accordance with our cookie policy.