Privacy Policy
Last updated: May 18, 2026
1. Data Controller
ULMove — Contact: see form at bottom of page
This policy describes how ULMove collects, uses and protects your personal data, in compliance with GDPR (EU 2016/679).
This policy describes how ULMove collects, uses and protects your personal data, in compliance with GDPR (EU 2016/679).
2. Data Collected
Registration: email, hashed password, name, language. Usage: profile, license, logbook, aircraft, bookings, messages. Technical: IP, user agent, cookies, error logs. Payment: handled exclusively by Stripe.
3. Purposes
Account management, service delivery, notifications, legal compliance, security, anonymized analytics.
4. Retention
Account: while active + 1 year. Logbooks: 10 years (legal). Accounting: 10 years. Logs: 6 months max.
5. Recipients
Subprocessors: Supabase (database), Vercel (hosting), Stripe (payments), SendGrid (emails). Other users for matching. No commercial sale.
6. International Transfers
Some subprocessors are based outside the EU (USA, Singapore). Transfers are framed by EU Standard Contractual Clauses + SOC 2 certifications.
7. Your Rights
Under GDPR: access, rectification, erasure, restriction, portability, objection, withdrawal of consent. Use the contact form at the bottom of this page. Right to lodge a complaint with the CNIL.
8. Cookies
Essential cookies (always active) and analytics (with consent). Manage your preferences via the banner.
9. Security
TLS encryption, hashed passwords (bcrypt), Row Level Security, regular audits, 72h breach notification.
10. Contact
Use the contact form at the bottom of this page.
Une question ?
Pour toute question concernant ce document ou pour exercer vos droits, utilisez notre formulaire de contact sécurisé.