← Back to home

Privacy Policy

Last updated: March 2026

Amendly (amendly.eu) is committed to protecting your personal data. This Privacy Policy explains what data we collect, why, how long we keep it, and your rights under the General Data Protection Regulation (GDPR — Regulation EU 2016/679).

1. Data controller

The data controller is Amendly SAS. Contact: privacy@amendly.eu. You have the right to lodge a complaint with your national data protection authority.

2. Data we collect

We collect the email address and name you provide during sign-up; the content you upload (documents, amendments, comments); technical metadata (IP address, browser type, timestamps) used to secure and operate the service; and, if you consent, aggregate usage analytics via Plausible Analytics (see section 5).

3. Legal basis and purpose

We process your data on the basis of contract performance (to provide the Amendly service), legitimate interests (security, fraud prevention, service improvement), and — for analytics — your explicit consent.

4. Data retention

Account data is retained for as long as your account is active, plus 30 days after deletion to allow recovery. Usage logs are retained for 90 days. Billing records are retained for 10 years as required by French accounting law.

5. Analytics

If you accept cookies, we load Plausible Analytics to measure aggregate traffic. Plausible does not use cookies, does not fingerprint individual users, and does not share data with third parties. No analytics script is ever loaded if you decline or have not yet made a choice.

6. Third-party processors

We use Stripe (payment processing), Resend (transactional email), and Hetzner (infrastructure hosting in Germany). Each processor is bound by a Data Processing Agreement.

7. Your rights

Under GDPR you have the right to access, rectify, erase, restrict processing of, and port your personal data. You may also object to processing and withdraw consent at any time. To exercise these rights, email privacy@amendly.eu. We will respond within 30 days.

8. Cookies

We use a single essential session cookie to keep you signed in. No analytics or advertising cookies are set without your consent. You can withdraw consent at any time by clicking 'Decline' in the cookie banner.

9. Data transfers

Your data is hosted in Germany (Hetzner). We do not transfer personal data outside the European Economic Area. If a future processor is located outside the EEA, we will ensure an appropriate safeguard (e.g. Standard Contractual Clauses) is in place.

10. Changes to this policy

We may update this policy to reflect changes in law or our practices. We will notify you by email of material changes. The 'Last updated' date at the top of this page reflects the latest revision.

Contact

Data protection questions? Email privacy@amendly.eu.