Privacy Policy

Last updated: February 14, 2026

1. Data Controller

Artitex ("we", "us", "our") is the data controller responsible for your personal data. For contact details, see our Mentions Légales page.

2. Data We Collect

2.1 Account Information

When you sign up, we collect your email address and name through Google or GitHub OAuth. We do not store your password.

2.2 Documents & Content

We store the documents you create, including LaTeX, Markdown, and rich text content, to provide our editing service.

2.3 Usage Data

We collect anonymized usage metrics including page views, feature usage, and error logs to improve our service.

2.4 Payment Information

Payment is processed by Stripe. We do not store your credit card details. Stripe's privacy policy applies to payment data.

3. Legal Basis for Processing (GDPR Art. 6)

  • Contract performance: Processing your account and document data to provide the service you signed up for.
  • Legitimate interest: Usage analytics to improve service quality and security monitoring.
  • Consent: Marketing communications (only with your explicit opt-in).

4. How We Use Your Data

  • Provide and maintain the Artitex document editing service
  • Process AI-assisted writing requests via our AI providers
  • Send transactional emails (account confirmation, password reset)
  • Detect and prevent fraud and abuse
  • Improve our product based on aggregated, anonymized usage patterns

5. Data Sharing & Third Parties

We share data with the following processors, all of whom are GDPR-compliant:

  • Supabase (EU region) - Authentication and database hosting
  • Stripe - Payment processing
  • AI Providers (Google Gemini) - Document content sent for AI-assisted editing, processed per their data processing agreements
  • Resend - Transactional email delivery

We do not sell your personal data to third parties.

6. Data Retention

  • Account data: Retained while your account is active, deleted within 30 days of account deletion.
  • Documents: Retained while your account is active. You can delete individual documents at any time.
  • Usage logs: Anonymized and retained for up to 12 months.
  • Payment records: Retained for 10 years as required by French accounting law.

7. Your Rights (GDPR Art. 15-22)

As an EU/EEA resident, you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data ("right to be forgotten")
  • Restrict processing
  • Data portability - receive your data in a structured format
  • Object to processing based on legitimate interest
  • Withdraw consent at any time

To exercise these rights, contact us at privacy@artitex.click.

8. Cookies

We use strictly necessary cookies for authentication and session management. We do not use advertising or tracking cookies. See our cookie banner for details.

9. International Transfers

Some of our processors may process data outside the EU/EEA. In such cases, we ensure appropriate safeguards are in place (Standard Contractual Clauses or adequacy decisions).

10. Data Security

We implement appropriate technical and organizational measures including encryption in transit (TLS), access controls, and regular security audits.

11. Supervisory Authority

You have the right to lodge a complaint with the French data protection authority:

CNIL (Commission Nationale de l'Informatique et des Libertés)
3 Place de Fontenoy, TSA 80715, 75334 Paris Cedex 07
Website: www.cnil.fr

12. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes via email or in-app notification.

← Back to Artitex