// Legal

Privacy Policy

Last updated: 26 April 2025

1. Data controller

BlueProfit is the data controller for personal data collected through this website. For any privacy-related queries, contact us at contact@blueprofitfish.com.

2. Data we collect

We collect only the data necessary to provide the service:

  • Registration data: name, email address and password (stored with bcrypt hash).
  • Payment data: managed entirely by Stripe. BlueProfit does not store card numbers or bank data.
  • Usage data: weeks consulted, map zones visited, to improve the product.
  • Technical data: IP address, browser type and operating system, for security and diagnostic purposes.

3. Purpose of processing

Your data is used exclusively to:

  • Manage your account and access to the service.
  • Process payments and manage your subscription.
  • Send you service-related communications (updates, invoices).
  • Improve the platform through aggregated and anonymised usage analysis.

We do not sell or share your data with third parties for commercial purposes.

4. Legal basis

The processing of your data is based on the performance of the subscription contract (Art. 6.1.b GDPR) and, where applicable, on the explicit consent you have given us (Art. 6.1.a GDPR).

5. Data retention

We retain your personal data for as long as you maintain an active account with BlueProfit. After account cancellation, data will be deleted within a maximum of 30 days, except where legally required to retain it.

6. Your rights

Under the GDPR, you have the right to:

  • Access: request a copy of the data we hold about you.
  • Rectification: correct inaccurate or incomplete data.
  • Erasure: request deletion of your data.
  • Portability: receive your data in a structured format.
  • Objection: object to processing in certain circumstances.

To exercise any of these rights, write to us at contact@blueprofitfish.com.

7. Cookies

We use only strictly necessary technical cookies for the service to function (session management). We do not use tracking or advertising cookies.

8. Security

We apply appropriate technical and organisational measures to protect your data: encryption in transit (HTTPS/TLS), passwords stored with bcrypt hash, and restricted database access.

9. Changes to this policy

We may update this policy to reflect changes in the service or applicable legislation. We will notify you by email of any significant changes.