EdenPersona.com Privacy Policy
Last updated: 10 July 2025
Data Controller: Digital Nomad Family LP
DPO Contact: dpo@edenpersona.com
At EdenPersona.com, we respect your privacy and are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR). This policy explains how we collect, use and protect your data.
1. Data Controller
The controller of your personal data is:
Digital Nomad Family LP
5 South Charlotte Street
Edinburgh, EH2 4AN
Scotland, United Kingdom
Registration number: SL034590
Email: legal@edenpersona.com
2. Data Collected and Legal Bases
2.1 Account Data
- Data collected: Email, username, password (hashed), language preferences
- Legal basis: Contract performance (Article 6.1.b GDPR)
- Purpose: Account creation and management, authentication
- Retention: Contract duration + 3 years (limitation)
2.2 Persona Data
- Data collected: Product/service information, generated personas, customizations
- Legal basis: Contract performance (Article 6.1.b GDPR)
- Purpose: Provision of persona generation service
- Retention: Contract duration + 1 year
2.3 Integration Data
- Data collected: Access tokens, synchronized data (HubSpot, WooCommerce)
- Legal basis: Explicit consent (Article 6.1.a GDPR)
- Purpose: Enriching personas with your data
- Retention: Until consent withdrawal
2.4 Usage Data
- Data collected: Connection logs, feature usage, performance
- Legal basis: Legitimate interest (Article 6.1.f GDPR)
- Purpose: Service improvement, security, technical support
- Retention: 12 months maximum
3. Sharing and Transfers
3.1 Processors
We share your data with the following processors:
- OpenAI - AI content generation (United States, standard contractual clauses)
- Stripe - Payment processing (Ireland, adequacy decision)
- Google Analytics - Audience analysis (United States, with your consent)
- PythonAnywhere - Hosting (EU, servers in Germany)
3.2 International Transfers
Transfers to the United States are governed by standard contractual clauses approved by the European Commission. You can obtain a copy by contacting us.
4. Your GDPR Rights
In accordance with GDPR, you have the following rights:
Access and Rectification Rights
- Right of access (Art. 15) - Obtain a copy of your data
- Right of rectification (Art. 16) - Correct your data
- Right to portability (Art. 20) - Retrieve your data
Deletion and Opposition Rights
- Right to erasure (Art. 17) - Delete your data
- Right to object (Art. 21) - Object to processing
- Right to restriction (Art. 18) - Restrict processing
4.1 How to Exercise Your Rights
📧 By Email
Send your request to dpo@edenpersona.com
Response time: maximum 1 month
🔗 Automatic GDPR Export
Log in to your account → GDPR Data Export
🗑️ Complete Deletion
Log in to your account → Settings → Delete my data
Immediate and irreversible deletion
5. Data Security
We implement appropriate technical and organizational measures:
- Data encryption in transit (HTTPS/TLS)
- Encryption of sensitive data in database
- Secure authentication (hashed passwords)
- Restricted data access (principle of least privilege)
- Encrypted automatic backups
- Complete audit trail of data access
6. Cookies and Trackers
We use the following cookies:
Type |
Purpose |
Duration |
Legal basis |
Strictly necessary cookies |
Authentication, session |
Session |
Legitimate interest |
Analytical cookies |
Google Analytics |
24 months |
Consent |
Functional cookies |
Language preferences |
12 months |
Legitimate interest |
Manage my cookies
7. Data Breaches
In case of a personal data breach likely to pose a risk to your rights and freedoms, we will notify you within 72 hours in accordance with Article 34 of GDPR.
8. Complaint Rights
You have the right to lodge a complaint with the competent supervisory authority:
- United Kingdom: Information Commissioner's Office (ICO)
- France: Commission Nationale de l'Informatique et des Libertés (CNIL)
- Or your national authority
9. Changes
This policy may be modified. Important changes will be notified by email and on the site. Last modification date indicated at the top of this page.
10. Contact
EdenPersona is committed to protecting your personal data with the highest level of security and transparency.