Last updated: 18 February 2026

Politique de confidentialité

1.
Purpose
2.
Scope
3.
Data Collected
4.
Purposes and Legal Bases
5.
Retention Period
6.
Access and Recipients
7.
Transfer Outside the EU
8.
Security Measures
9.
Rights of Individuals
10.
Updates

Purpose

The purpose of this policy is to define the principles and rules applicable by Monarck NEO Ltd to ensure the protection of the personal data of users of its SaaS services, in accordance with the General Data Protection Regulation (GDPR).

Scope

This policy applies to all personal data processing operations carried out by Monarck NEO Ltd in the context of operating its software platforms, websites, and mobile applications.

Data Collected

What are my rights over my data?
Monarck NEO Ltd may collect, in particular:
  • Identification data: last name, first name, email, telephone
  • Connection data: IP address, logs, cookies, session identifiers
  • Behavioural data: browsing, clicks, actions within the application
  • Communication data: messages, support tickets

Purposes and Legal Bases

Data is processed for the following purposes:
  • Performance of a service contract (access to the platform)
  • Legitimate interest (security, usage analysis)
  • Consent (marketing, cookies)
  • Legal obligations (log retention, invoicing)

Retention Period

Data is retained for the following periods:
  • Client data: 3 years after end of contract
  • Log data: maximum 13 months
  • Marketing data: 3 years after last contact

Access and Recipients

  • Access limited to strictly necessary internal teams (support, technical, marketing)
  • GDPR-compliant processors (e.g. hosting provider, email router)
  • No transfer of data to unauthorised third parties

Transfer Outside Mauritius

The personal data processed by Monarck NEO Ltd is hosted in Mauritius (Republic of Mauritius), with certified and secure infrastructure providers. No transfer outside of Mauritius is carried out, except in exceptional cases provided for contractually with adequate safeguards (standard contractual clauses, adequacy decisions).

Security Measures

  • Access control and strong authentication
  • Encryption of sensitive data
  • Access logging and monitoring
  • Data breach management procedure

Rights of Individuals

Users have the following rights:
  • Access, rectification, erasure
  • Objection and restriction
  • Data portability
  • Withdrawal of consent
Requests may be submitted via the following address: dpo@monarck.net

Updates

  • This policy may be updated in line with legal or technical developments. Users will be informed via the application or by email.