Assetlr
Log in

Privacy policy

Last updated: June 10, 2026

Clickeasy places particular importance on the protection of your personal data. This policy describes how Assetlr collects, uses and protects users’ information, in accordance with the General Data Protection Regulation (GDPR) and the French Data Protection Act.

1. Data controller

The data controller is Clickeasy (SIREN 928 935 782), represented by Audric Lima, whose registered office is located at 40 Chemin de Lizieu, 01300 Chazey-Bons. For any question regarding your data: contact@clickeasy.fr

2. Data collected

Assetlr collects the following categories of data:

  • Agency account data: last name, first name, email address, password (hashed), agency name.
  • Project data: project name, end client name and email, summary, status.
  • Content submitted by clients: text, files, technical credentials, photos, etc. entered in the client portal.
  • Technical data: IP address (server logs), browser, preferences (theme, cookies).
  • Billing data (paid plans): information handled by Stripe (we never store credit card numbers).

3. Purposes of processing

  • Provision of the Assetlr service (account creation, project management, agency-client communication)
  • Email notifications (invitations, submissions, messages, reminders)
  • Automatic AI checking of submissions (only on submitted content)
  • Billing and subscription management (paid plans)
  • Service improvement (anonymised usage statistics)
  • Compliance with legal obligations

4. Legal basis

The processing of your data is based on the performance of the contract (use of the service), your consent (non-essential cookies, communications), and our legal obligations (retention of invoices).

5. Hosting and subprocessors

Your data is stored with the following subprocessors:

  • Supabase (database, authentication, file storage) — Europe region (Paris, France). Supabase policy
  • Netlify (web application hosting) — hosting with a Data Processing Agreement (DPA). Netlify policy
  • OVH (sending transactional emails via SMTP) — France. OVH policy
  • OpenAI (optional AI checking of long text content) — only if enabled, data not used to train the models under the API terms. OpenAI policy
  • Stripe (payments) — end-to-end encryption, PCI-DSS certified. Stripe policy

6. Retention period

  • Active accounts: kept as long as the user is registered.
  • Projects on the Free plan: automatically deleted 30 days after creation (3 reminder emails sent to the agency: D-7, D-2 and D0).
  • Projects on paid plans: kept as long as the subscription is active.
  • Technical logs: 12 months maximum.
  • Invoices: 10 years (legal accounting obligation).

7. Your rights

In accordance with the GDPR, you have the following rights:

  • Right to access and rectify your data
  • Right to erasure (“right to be forgotten”)
  • Right to restriction of and objection to processing
  • Right to portability of your data
  • Right to withdraw your consent at any time
  • Right to lodge a complaint with the CNIL

To exercise these rights, contact us at contact@clickeasy.fr. Deleting your account is also accessible directly from your agency space (Settings → My profile → Danger zone).

8. Cookies

Assetlr uses only essential cookies for the operation of the service: managing your login session (Supabase Auth), remembering your theme preference (light/dark), remembering your cookie consent choice.

No marketing, advertising or third-party tracking cookie is set without your explicit consent. You can change your preferences at any time via the floating “Cookies” button at the bottom left of the page.

9. Security

Communications with the service are encrypted via HTTPS (TLS). Passwords are stored as bcrypt hashes. Access to data is protected by Row-Level Security policies at the database level. Submitted files are stored in a private bucket with access via short-lived signed URLs.

10. Policy amendments

This policy may evolve to reflect legal or technical changes. Any substantial change will be notified to you by email or via a banner on the site.