GDPR

Privacy Policy

Last updated:

ℹ️ This English translation is provided for convenience only. In case of any discrepancy, the French version prevails and remains the legally binding reference.
In short (human version)
  • We never sell your data to third parties.
  • The documents and texts you submit for analysis are not stored on our servers — they're processed in real time and then discarded.
  • We only use cookies for your authentication.
  • You can delete your account and all your data at any time from the Account page.

1. Data controller

WorkHive — Pèlerin, César Caraguel

SIREN: 104 875 687

DPO / personal data contact: contact@workhive.tools

2. Data collected

2.1 Account data

When you sign up, we collect:

EmailFirst name (optional)Last name (optional)Sign-up date

This data is necessary to provide the service and manage your subscription.

2.2 Usage data

We record:

Number of analyses / monthType of module usedAnalysis results (history)

The texts and documents you submit are sent to the Claude API (Anthropic) for real-time processing. They are not stored on our side, only the analysis result is.

2.3 Payment data

Payments are processed by Stripe Inc. We never store any banking data. Stripe is PCI DSS Level 1 certified.

3. Purposes and legal bases

Service deliveryContract execution

Authentication, access to tools, quota management.

Analysis historyLegitimate interest

Let you find your past analyses.

Billing & subscriptionLegal obligation + contract

Stripe payment management, issuance of receipts.

Service improvementLegitimate interest

Anonymous usage statistics (no individual tracking).

4. Sub-processors

SupabaseDatabase & authentication
EU (Frankfurt)
VercelHosting & deployment
EU / US
Anthropic (Claude API)AI text processing (no storage)
US — Standard Contractual Clauses
StripeOnline payments
US — PCI DSS L1 certified

5. Retention period

Account data3 years after last login
Analysis historyUntil account deletion
Payment data (Stripe)5 years (legal obligation)
Technical logs90 days

6. Your rights (GDPR)

Pursuant to Regulation (EU) 2016/679 (GDPR), you have the following rights:

AccessRectificationErasurePortabilityObjectionRestriction

To exercise your rights: contact@workhive.tools

You can also delete your account and all your data directly from the My Account → Delete my account page.

If you have a complaint, you can contact the French data protection authority CNIL: cnil.fr

7. Cookies

WorkHive only uses cookies strictly necessary for the service to function:

Session cookie (Supabase Auth)

Keeps your login session. Duration: until logout. No alternative — required to operate.

We do not use advertising cookies, third-party trackers or behavioral analytics tools.

8. Security

We implement the following technical and organizational measures:

  • TLS encryption (HTTPS) for all communications
  • Secure authentication via Supabase Auth (JWT)
  • Per-user data isolation (Row Level Security)
  • Limited and audited access to API keys

9. Changes

This policy may be updated. In case of substantial modification, we will notify you by email. The update date is always shown at the top of this document.

TermsLegal noticeHome