Privacy Policy & GDPR

How we protect your personal data

Last updated: January 2026

Maisonnez SASU, operating under the brand Junyr ("we", "our", or "Junyr") is committed to protecting your privacy and personal data. This privacy policy explains how we collect, use, store, and protect your information when you use our AI workforce platform. We comply with the General Data Protection Regulation (GDPR) and French data protection laws.

Data Controller

The data controller responsible for your personal data is:

Maisonnez SASU

RCS Draguignan 838 954 170

SIRET: 838 954 170 00019

LD FRIAOUD, 83440 MONTAUROUX, France

contact@junyr.app

Hosted by OVH SAS - 2 rue Kellermann, 59100 Roubaix, France

Data We Collect

We collect the following categories of personal data:

  • Account information: email address, full name, password (hashed), profile picture
  • Company information: company name, email domain, billing address
  • Usage data: interactions with AI agents, task history, chat messages
  • Technical data: IP address, browser type, device information, access logs
  • Payment data: billing information processed securely via Stripe
  • Documents and files: any content you upload for AI agent training

How We Use Your Data

We process your personal data for the following purposes:

  • Providing and operating the Junyr AI platform
  • Processing your subscription and payments
  • Training and customizing AI agents based on your instructions
  • Improving our services and developing new features
  • Sending service-related communications and notifications
  • Ensuring platform security and preventing fraud
  • Complying with legal obligations

Legal Basis for Processing

We process your data based on the following legal grounds:

Contract Performance

Processing necessary to provide our services under the subscription agreement.

Consent

When you explicitly agree to specific data processing, such as marketing communications.

Legitimate Interest

Processing for our legitimate business interests, such as fraud prevention and service improvement.

Legal Obligation

Processing required to comply with applicable laws and regulations.

Your Rights

Under GDPR, you have the following rights regarding your personal data:

Right of Access

Request a copy of all personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete personal data.

Right to Erasure

Request deletion of your personal data ("right to be forgotten").

Right to Restriction

Request limitation of processing of your personal data.

Right to Data Portability

Receive your data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests or for direct marketing.

Right to Withdraw Consent

Withdraw your consent at any time where processing is based on consent.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • Account data: Retained while your account is active, then deleted within 30 days of account closure
  • Billing records: Retained for 10 years to comply with French accounting regulations
  • Activity logs: Retained for 12 months for security and troubleshooting purposes
  • Backups: Retained for 90 days, then securely deleted

Third-Party Services

We share data with the following service providers who process data on our behalf:

ProviderPurpose
StripePayment processing and subscription management
OpenAI / Anthropic / GoogleAI model providers for agent functionality
OVHInfrastructure hosting in French data centers (Roubaix)
RedisReal-time messaging and caching

Data Security

We implement robust security measures to protect your data:

  • Data encrypted in transit (TLS 1.3). Credential vault encrypted at rest (AES-256 via Fernet). Database secured with PostgreSQL role-based access controls.
  • Strict access controls and authentication for all systems
  • Regular security audits and vulnerability assessments
  • Automated encrypted backups with secure storage

Cookies

We use cookies and similar technologies to enhance your experience:

Essential Cookies

Required for authentication and platform functionality. Cannot be disabled.

Preference Cookies

Remember your settings like language and theme preferences.

Analytics Cookies

Help us understand how you use the platform to improve our services.

International Data Transfers

Your data is primarily stored and processed in France at OVH data centers. When we transfer data outside the EU (e.g., to AI model providers), we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.

Contact Us

For any questions about this privacy policy or to exercise your rights, please contact our Data Protection Officer:

Data Protection Officer

Email: dpo@junyr.app

We will respond to your request within 30 days as required by GDPR.

Data Processing Agreement (DPA)

As required by GDPR Article 28, we provide a Data Processing Agreement for businesses that process personal data through our platform.

Our DPA covers: scope of processing, sub-processor list, data breach notification procedures, data subject rights handling, and security measures.

Request DPA

Contact our DPO to receive a signed copy of our Data Processing Agreement.

dpo@junyr.app

Complaints to the Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the French Data Protection Authority (CNIL).

File a complaint with CNIL
Back to Home