Get Mediapapa

Privacy policy

Last updated: 22/05/2025

This Privacy Policy explains how BE API (“we”, “our”, “us”) collects, uses, and protects your personal information when you use the Mediapapa plugin (“the Plugin”) and its associated cloud-based services (“the Services”).

By using our Plugin and Services, you consent to the practices described in this Privacy Policy.

1. Who We Are

BE API is a French company registered under SIRET number 51417809400033, located at 9 RUE DES COLONNES, 75002 PARIS France, and is the data controller for the Mediapapa plugin and related services.

Contact:

📧 [email protected]

📍 Be API, 9 RUE DES COLONNES, 75002 PARIS France

2. What Information We Collect

We may collect and process the following categories of personal data:

a. Account and Billing Information

When you purchase a subscription:

  • Full name
  • Email address
  • Company (if applicable)
  • Billing address
  • VAT number (if applicable)
  • Payment data (handled via third-party providers: we do not store credit card numbers)

b. Plugin and Service Usage Data

While using the Plugin and Services, we may collect:

  • IP address of the website server
  • Website domain and WordPress version
  • Plugin version and configuration settings
  • API requests metadata (e.g. timestamp, image size, usage count)
  • Logs related to AI features and interactions (optional and anonymized when possible)

c. Technical and Diagnostic Information

  • Error logs and performance metrics
  • Compressed media filenames and formats
  • AI-generated request summaries (when explicitly submitted)

3. How We Use Your Information

We use collected data for the following purposes:

  • To provide and operate the Plugin and its Services.
  • To process payments and manage subscriptions.
  • To deliver support and resolve technical issues.
  • To improve our services, including performance and feature enhancements.
  • To comply with legal obligations (e.g., tax regulations, GDPR).

4. Legal Basis for Processing (GDPR)

We process your data based on the following legal grounds:

  • Contractual necessity: to fulfill our obligations under the subscription agreement.
  • Legitimate interest: to maintain and improve the Plugin and Services.
  • Legal obligation: for tax, accounting, and compliance purposes.
  • Consent: where applicable, such as for marketing emails or optional telemetry.

5. Data Sharing

We do not sell or rent your personal data.

We may share data with:

  • Service providers: such as Stripe (payments), hosting providers (API infrastructure), or email delivery services.
  • Legal authorities: if required by law or court order. All third-party providers are GDPR-compliant and bound by strict confidentiality agreements.

6. Data Retention

  • Billing data is kept for 10 years as required by French law.
  • Technical logs and usage data are retained for up to 12 months.
  • AI request history may be deleted by the user or retained for up to 3 months for quality improvement.

7. International Transfers

We primarily process data within the European Union. Where data is transferred outside the EU, it is done in accordance with GDPR requirements using appropriate safeguards (e.g. Standard Contractual Clauses).

8. Your Rights (under GDPR)

You have the right to:

  • Access and receive a copy of your personal data.
  • Correct or update inaccurate information.
  • Request erasure of your data (“right to be forgotten”).
  • Restrict or object to processing in certain cases.
  • Data portability.
  • Withdraw consent for optional data processing (e.g. marketing).

To exercise your rights, contact: [email protected]

9. Cookies and Tracking

Mediapapa’s Plugin does not use cookies on the WordPress frontend. However, our website may use cookies for:

  • Analytics (Matomo, Google Analytics if applicable)
  • Login sessions
  • Support chat widgets (if embedded)

You may opt-out of non-essential cookies when visiting our website.

10. Data Security

We implement industry-standard security measures to protect your data:

  • HTTPS encryption for all API communications
  • Role-based access control
  • Limited access to production systems
  • Regular security audits and monitoring

However, no system is 100% secure. We encourage you to also maintain strong security practices on your WordPress installation.

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. Major changes will be communicated via email or via our Plugin dashboard. You are encouraged to review this page periodically.

12. Contact

For any privacy-related inquiries or to exercise your rights:

📧 [email protected]

📍 BE API –9 RUE DES COLONNES, 75002 PARIS France

🛡️ Supervisory authority (France): CNIL – www.cnil.fr