fullstackchris.dev

Privacy policy

Last updated: 2026-06-13

This privacy policy explains what personal data is collected through fullstackchris.dev, why it is collected, who processes it, and the rights you have over your data. It is written to be clear and practical rather than exhaustive — if anything is unclear, please email [email protected].

Who is responsible

Christophe Crognier (auto-entrepreneur, SIREN 851 494 641) is the data controller for personal data collected through the Website.

What data may be collected

  • Email address — when you subscribe to the AI Clarity Newsletter, send a contact request, or purchase a service.
  • Name and company — if provided through contact or booking forms.
  • Postal address and phone number — only if required for a paid service, invoice, or customer record.
  • Message content — anything you write in a contact form or email.
  • Payment metadata — handled by Stripe (last four digits, country, transaction ID). Full card details are never received or stored by the Website.
  • Analytics data — aggregated, anonymous usage data from Cloudflare Web Analytics (no cookies, no personal identifiers).
  • Technical logs — standard request logs (IP, user agent, timestamp) generated by hosting and security providers for diagnostics and abuse prevention.

Why data is collected

  • To respond to contact and quote requests.
  • To manage newsletter subscriptions and send issues.
  • To deliver and follow up on coaching, development, and workshop services.
  • To process payments and issue invoices where required.
  • To improve the Website and the relevance of its content.
  • To prevent abuse, fraud, and unauthorized access.

The legal bases are: performance of a contract (services and payments), consent (newsletter), and legitimate interest (security, analytics, improving the Website).

Third-party processors

Some data is processed by trusted third parties acting on behalf of the publisher:

  • beehiiv — newsletter delivery and subscriber management.
  • Stripe — payment processing for services and digital products.
  • Cloudflare Web Analytics — privacy-friendly, cookieless analytics.
  • GitHub Pages — current Website hosting.
  • Cloudflare — DNS, security, and future hosting.

No third-party tracking pixels (Google Analytics, Meta Pixel, LinkedIn Insight, advertising remarketing) are used at this time. Tally or Formspree are not currently in use; they would be listed here if enabled.

International transfers

Some processors (notably Stripe, beehiiv, GitHub, Cloudflare) may process data outside the European Economic Area. They rely on appropriate safeguards such as Standard Contractual Clauses and equivalent certifications under EU–US Data Privacy Framework rules where applicable.

Data retention

Personal data is kept only for as long as necessary for the purposes described in this Privacy Policy.

Invoices, payment records and accounting documents may be kept for 10 years from the end of the relevant financial year to comply with French accounting obligations.

Contact requests and business inquiries may be kept for up to 3 years after the last meaningful contact, unless a longer retention period is required to manage a contract, legal obligation or dispute.

Newsletter subscription data is kept until the subscriber unsubscribes or requests deletion. Pending or unconfirmed newsletter subscribers may be reviewed or deleted periodically.

Project and client data is kept for the duration of the business relationship, then archived only as long as necessary for contractual, legal, accounting or dispute-related purposes.

Analytics data is retained according to the analytics provider's settings, minimized and anonymized where possible.

Your rights

Under the GDPR and applicable French law, you may request:

  • Access to your personal data.
  • Correction of inaccurate or incomplete data.
  • Deletion ("right to be forgotten") within legal limits.
  • Objection to processing based on legitimate interest.
  • Portability of data you have provided.
  • Withdrawal of consent at any time (for newsletter and other consent-based processing).
  • Unsubscription from the newsletter — every issue includes a one-click unsubscribe link.

To exercise any of these rights, write to [email protected]. You also have the right to lodge a complaint with the CNIL (cnil.fr), the French data protection authority.

Security

Reasonable technical and organizational measures are in place to protect personal data — including HTTPS, scoped access, modern hosting providers, and minimization of stored data. No system is perfectly secure; should an incident affect you, you will be informed as required by law.

Updates to this policy

This policy may be updated to reflect changes to the services, providers, or applicable law. Significant changes will be flagged on the Website.

Contact

Questions or requests about your personal data: [email protected].