Privacy policy

Last updated: 2026-04-28

This policy describes how Navarrete Fernandez Jose (the "Controller") collects and uses personal data through navarretedev.com. The Controller complies with the EU GDPR (Regulation 2016/679) and the French Loi Informatique et Libertes.

1. Data collected

• Contact form: name, email, the service of interest, and the message you send. Used solely to reply to your enquiry.
• Payment: when you pay an invoice via Viva Wallet, Viva (the PSP) processes your card data — the Controller never sees full card numbers. The Controller stores transaction id, amount, currency, payment status, and your email/name as required for accounting.
• Server logs: the cPanel host stores standard access logs (IP, user agent, request URL, timestamp) for security and uptime, retained per the host's policy.

2. Legal basis

Contact-form data: legitimate interest (responding to a request you initiated) and your consent (by submitting the form). Payment data: contract performance and legal obligation (French invoicing law, 10-year accounting retention). Server logs: legitimate interest in site security.

3. Sharing

The Controller does not sell your data. Data is shared only with sub-processors used to operate the service: Viva Wallet (payments), the cPanel host (hosting), and the contact-form service if used. All are GDPR-compliant.

4. Retention

Contact-form messages: up to 12 months unless an engagement begins. Invoicing records: 10 years (legal requirement). Server logs: per host's policy, typically up to 12 months.

5. Your rights

Under GDPR you have rights of access, rectification, erasure, restriction, portability, and objection. To exercise them, email info@navarretedev.com. You can also lodge a complaint with the CNIL (cnil.fr).

6. Cookies

This site uses no analytics or advertising cookies. The contact form may set a session cookie strictly necessary for spam protection. No consent banner is required for strictly-necessary cookies under French regulations.