Spring Launch Cohort · 2/3 slots · Book by April 20

Privacy Policy

Last updated: April 20, 2026

1. Who we are

Krylli is operated by In Soo Seguier, registered in France.

Address: 35, Avenue du Général de Gaulle, 31700, Blagnac, France

SIREN: 939 868 832

Email: insoo@krylli.com

Website: https://krylli.com

In Soo Seguier acts as the data controller under Article 4(7) of the GDPR.

2. What data we collect

  • Calendar bookings (Cal.com): name, email, company name, firm size, monthly revenue, current Google Ads spend, preferred meeting time.
  • Contact form: name, email, message.
  • Clients (post-signature): billing address, VAT number, access credentials to Google Ads accounts, domain, analytics tools. Processed only to deliver the service.
  • Website analytics (Umami): aggregated page views, referrers, anonymized country, device type. No cookies. No IP tracking. No personal identifiers.

We do not collect: bank details (handled by Stripe), passwords, or any special category data (health, religion, etc.).

3. Why we collect it

PurposeLegal basis
Process bookings and deliver servicesContract execution (Art. 6(1)(b))
Respond to inquiriesLegitimate interest (Art. 6(1)(f))
Invoicing and accountingLegal obligation (Art. 6(1)(c))
Product improvement (aggregated analytics only)Legitimate interest (Art. 6(1)(f))

We do not use your data for advertising, profiling, or automated decision-making.

4. How long we keep it

  • Active clients: duration of engagement + 5 years (French accounting obligation)
  • Prospects (no sale): 3 years from last contact
  • Booking records (Cal.com): 3 years
  • Website analytics (Umami): aggregated, retained 12 months, no individual records

5. Who has access

Internal: In Soo Seguier, Leila (operations), Alex (sales).

Sub-processors:

  • Google Workspace (email, calendar)
  • Cal.com (booking)
  • Cloudflare (hosting, DNS)
  • Stripe (payments)
  • Apollo (prospecting)
  • Umami (analytics)

Each sub-processor has its own GDPR-compliant terms.

6. International transfers

Some sub-processors (Google, Stripe, Cloudflare) process data outside the EU. Transfers are protected by Standard Contractual Clauses (SCCs) approved by the European Commission, per GDPR Article 46.

7. Your rights

Under GDPR (Articles 15–22), you have the right to:

  • Access the data we hold about you
  • Rectify inaccurate or incomplete data
  • Erase your data ("right to be forgotten")
  • Restrict or object to processing
  • Data portability (receive a copy in machine-readable format)
  • Withdraw consent at any time (where consent is the legal basis)

To exercise any right: email insoo@krylli.com. We respond within 30 days.

Right to lodge a complaint: Commission Nationale de l'Informatique et des Libertés (CNIL), www.cnil.fr, 3 place de Fontenoy, 75007 Paris.

8. Cookies

We do not use cookies.

Our analytics tool (Umami) operates without cookies, does not track individuals, and does not store personal identifiers. Under CNIL guidance, this usage is exempt from consent requirements.

Third-party pages linked from our site (Cal.com, Stripe) may use their own cookies, governed by their respective policies.

9. Security

We protect your data with HTTPS encryption, access controls, and reputable sub-processors. In the event of a data breach affecting your rights, we notify the CNIL within 72 hours and affected users without undue delay, per GDPR Article 33.

10. Changes to this policy

We may update this policy. Changes are posted on this page with a revised "last updated" date. Material changes are communicated to active clients by email.

Questions? Email insoo@krylli.com.