Legal & Trust Center
Your data.
Our responsibility.
Everything you need to know about how we collect, process, and protect your data — and how we meet our legal obligations as a European B2B SaaS.
GDPR Compliant
CCPA Compliant
Made in France
CNIL Registered
Privacy Policy
How we collect, use, and protect your personal data — what we keep, for how long, and your rights under GDPR.
ReadTerms of Service
The rules governing your use of Enrich-CRM — acceptable use, subscriptions, SLA, and limitations of liability.
ReadData Processing Agreement
Our GDPR-compliant DPA covers how we act as data processor for your organization, including sub-processors and SCCs.
ReadCookie Policy
What cookies and trackers we use on our website, why, and how to manage your preferences.
ReadEnrichment Policy
Fair use rules for free and premium enrichment — volume limits, prohibited uses, API rate limits, and suspension conditions.
ReadSub-processors
The list of third-party services we use to operate the platform and that may process personal data on our behalf.
Security
How we protect your data — encryption at rest and in transit, access controls, and incident response.
- TLS 1.3 in transit
- AES-256 at rest
- API keys hashed
- No data sold or resold
- EU data residency
A legal or privacy question?
Our DPO (Data Protection Officer) is reachable directly. We typically respond within 48 business hours.
Contact DPO
Built for GDPR from day one.
As a French company, GDPR is not an afterthought — it’s built into every enrichment pipeline we run.
EU Data Residency
All personal data is stored and processed within the European Union.
No Profile Selling
We never sell, share, or license the data we process on your behalf.
Right to Erasure
Submit a deletion request and we remove your data within 30 days.
Data Portability
Request a full export of your data at any time, in machine-readable format.