Skip to content Skip to navigation

Privacy Policy / Cookies Policy

Last Update: 27/01/2026 – this is an automatic translation for your convenience, original source

Table of Contents

Introduction

This privacy policy is written in accordance with Law No. 78-17 of 6 January 1978 (known as the “Data Protection Act” or “LIL”) and the General Data Protection Regulation (“GDPR”) No. 2016/679.

This policy is organized into three distinct parts:

  • Part 1 concerns the processing of personal data carried out by SEOPress, acting as data controller, in connection with the management of its website www.seopress.org
  • Part 2 concerns the processing of personal data carried out within the framework of the SEOPress PRO solution (WordPress plugin). This part distinguishes between processing carried out as a data controller (subscription management, customer area, etc.) and processing carried out as a data processor (corrective maintenance).
  • Part 3 constitutes the Cookie Policy applicable to the website www.seopress.org

PART 1 – Data Processing – Website Management

Activities related to the website www.seopress.org involve the processing of personal data.

1.1 Purpose of the policy

This policy informs you of the characteristics of these processing operations and your rights regarding your personal data.

1.2 Data Controller

The data controller is the company SEOPress, represented by its legal representative Benjamin Denis.

The contact details of the data controller are as follows: 52, rue Isidore Salles, 40110 Morcenx-la-nouvelle.

The contact email address is: [email protected]

1.3 Persons concerned

This policy applies to users of the site. It concerns:

  • people who subscribe to the newsletter
  • customers of our online store
  • the people to whom we have entrusted technical services (hosting provider, site security)
  • the people who write or are quoted in content on the site
  • people who sign up for our affiliate program
  • people who contact us through the website’s contact form
  • People who post comments on our site (blog section)
  • Customers who use online chat (pre-sales)
  • the people we list on the site as partners

1.4 Purposes of the processing

The purpose of this processing is to manage the website. This processing enables:

  • managing newsletter subscriptions for customers and subscribers (newsletter)
  • managing customer subscription orders on the online store
  • technical management of the site (hosting, site security)
  • managing the website’s editorial content
  • managing our affiliate program
  • managing inquiries via the contact form
  • managing comments posted on the site
  • online chat management
  • listing partner individuals on the website
  • customer loyalty and marketing activities (ebook downloads, SEO advice emails, etc.)

1.5 Legal basis for processing

The legal bases for the processing are as follows:

  • For managing newsletter subscriptions, the legal basis is the subscriber’s consent or, for existing customers, the company’s legitimate interest in informing its customers of its news and offers.
  • For order management on the online store, the legal basis is the order placed by these customers (the contract).
  • For the technical management of the site (hosting, site security), the legal basis is the company’s legitimate interest in ensuring the proper functioning, security and availability of its website.
  • For the management of the website’s editorial content, the legal basis is the consent of the individuals whose information is published.
  • For the management of our affiliate program, the legal basis is the consent of the affiliated individuals.
  • For the management of inquiries via the contact form, the legal basis is legitimate interest (enabling online communication) or the performance of pre-contractual measures (preparing quotes at the request of individuals).
  • For the management of comments published on the site, the legal basis is the consent of the individuals concerned.
  • For the management of the online chat, the legal basis is the company’s legitimate interest in responding to information requests from its visitors.
  • For the listing of partner individuals on the site, the legal basis is the consent of those individuals.
  • For loyalty and marketing activities, the legal basis is consent or, for professionals by virtue of their function or for existing customers and for similar products/services, the company’s legitimate interest in promoting its offers

1.6 Data retention period

Data undergoing processing is kept for a period not exceeding that necessary for the purposes for which it is recorded (principle of minimization of processing).

The maximum storage times are as follows:

  • For managing newsletter subscriptions: data is kept for a maximum of 3 years from the date of collection or the last contact from the person (for example, clicking on a hyperlink in an email)
  • For managing orders on the online store: 5 years from the end of the contract
  • For the technical management of the site (hosting, site security): 12 months for IP addresses and connection logs
  • For the management of the website’s editorial content: 5 years from the date of publication.
  • For the management of our affiliate program: 5 years from the end of the affiliation.
  • For the management of inquiries submitted via the contact form: 1 year from the date of the request
  • For the management of comments published on the site: 5 years from the date of publication
  • For online chat management: 1 year from the date of the request
  • For the listing of partner individuals on the site: 5 years from the date of publication
  • For loyalty and marketing activities: 2 years from the date of data collection, the last contact, or the last click by the individual. 

1.7 Data processed

The data controller processes the following categories of data:

  • Identification data (surname, first name, email address, postal address, telephone number, depending on the purpose)
  • Connection data (IP addresses, logs, device identifiers, login credentials, timestamp information, etc.)
  • Transaction data (order details, purchase history, payment methods)

1.8 Mandatory or optional nature of data collection

The data collected is mandatory to achieve the purposes of processing.

For online orders, the data collected is required for the conclusion and execution of the order (contract).

1.9 Data Sources

The data is transmitted directly by the person concerned.

1.10 Data Recipients

Except when necessary for the provision of our services, we do not share your data with third parties.

However, please be advised that we use external service providers for certain activities:

  • our hosting provider;
  • our customer support provider (ticketing and chat on the site);
  • our email sending (mailing) provider;
  • our online payment service providers.

These service providers may have access to certain data concerning you strictly to the extent necessary and solely to carry out the mission entrusted to them by SEOPress.

1.11 Security Measures

The data controller shall implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk.

The controller shall take measures to ensure that any natural person acting under the authority of the controller or the processor, who has access to personal data, does not process it except on instructions from the controller, unless obliged to do so.

1.12 Transfers outside the European Union

SEOPress may transfer personal data outside the European Union, particularly to the United States, in connection with the use of certain technical service providers.

These transfers are governed by:

  • the EU-US Data Privacy Framework for certified providers;

Or

  • standard contractual clauses adopted by the European Commission;

Or

  • any other appropriate safeguard provided for in Article 46 of the GDPR.

1.13 Automated decision-making

The treatment does not include fully automated decision-making.

1.14 Rights of the persons concerned

The individual whose data is being processed may define guidelines regarding the storage, erasure, and communication of their personal data after their death. These guidelines may be general or specific.

The data subject also has the right to access, object to, rectify, restrict, erase, and, under certain conditions, transfer their personal data. The data subject has the right to withdraw their consent at any time if consent constitutes the legal basis for the processing.

You can object at any time to the use of your data for marketing purposes, including profiling related to such marketing. To unsubscribe from our newsletter, you can click on the unsubscribe link in each email or contact us directly.

The request must include the full name, email or postal address of the person concerned, and be signed and accompanied by a valid proof of identity.

She can exercise these rights by contacting: SEOPress Company – Mr. Benjamin Denis – email: [email protected]

1.15 Complaint

The person concerned by a processing has the right to lodge a complaint with the supervisory authority (CNIL).

PART 2 – Data Processing – SEOPress PRO Solution

This section is addressed to clients of the company SEOPress.

It relates to the processing of personal data which is carried out within the framework of the subscription to the SEOPress PRO solution.

These treatments are of two different kinds:

  • There are personal data processing operations that SEOPress carries out as the data controller (for example for the management of PRO subscriptions, or for the management of support service tickets, etc.);
  • But there are also personal data processing operations that SEOPress may have to carry out as a subcontractor, or subcontractor in cascade (for corrective maintenance of the SEOPress PRO solution) on behalf of the client.

This section is therefore divided into two sub-sections and will successively consider the two types of personal data processing.

 2.1 SEOPress as data controller

According to the GDPR, a data controller is the person who, alone or jointly, determines the purposes and means of the processing of personal data.

As part of the activities related to the SEOPress PRO subscription, the company SEOPress carries out certain data processing as the data controller. 

2.1.1 Identity of the data controller

The information regarding the identity of the data controller is as follows:

SEOPress, a French limited company (EURL) with a share capital of 1000 euros,

Registered office: 52, rue Isidore Salles, 40110 Morcenx-la-nouvelle

Registered with the Bayonne Trade and Companies Register under number 843 629 643

The President of SEOPress is Mr. Benjamin Denis.

 2.1.2 Data collected

Data that you provide to us directly
When subscribing to your PRO subscription

Name, surname, email, last 4 digits of bank card number, address.

You can update your data directly from your customer area.

Once you have subscribed, you will receive an email containing your username (your email address) and a password to access your customer area.

In your customer area

You can update your personal data directly from your customer area.

It is also from your customer area that:

  • You have retrieved your SEOPress PRO license key
  • You can join our affiliate program and become a customer referrer for SEOPress
  • You have the option to contact us and open a support ticket, either via a standard form or via a chatbot as detailed below.
Using artificial intelligence in your customer area

As part of the support service, you have the option to interact from your customer area with a conversational assistant (chatbot) powered by artificial intelligence.

When you use this chatbot, your interactions are processed by a third-party AI solution to provide you with automated assistance. The data exchanged in this context (content of your messages, information relating to your request) is transmitted to a service provider to enable the service to function.

Please be advised that you are interacting with artificial intelligence and not with a human. You can choose at any time to use the standard contact form to communicate directly with our support team. 

Data we obtain from third parties

As part of our affiliate program, we can identify, when you subscribe to SEOPress PRO, that when you browse the internet, you came from a site belonging to a partner of the company SEOPress.

2.1.3 Use of data

We use your data for the following purposes:

  • managing your SEOPress PRO subscription
  • managing your customer area
  • managing your business as a potential affiliate
  • managing your tickets as part of the support service
  • managing our customer relationship

2.1.4 Data Retention

The personal data being processed is kept by SEOPress for a period not exceeding that necessary for the purposes for which it is recorded.

We retain your data for as long as your subscription is active, and then for a period of 5 years. You can also send us a written request to delete your account data.

Exchanges related to open tickets are kept for 1 year.

Your data as an affiliate is kept for as long as you remain an affiliate, and then for a period of 5 years.

2.1.5 Legal basis

We collect and process your personal data only when such processing is based on a legal basis.

This legal basis is the execution of the contract (the subscription).

For registration in the affiliate program, the legal basis is consent.

 2.1.6 Data Recipients

Except when necessary for the provision of our services, we do not share your data with third parties.

However, please be advised that we use external service providers to perform some of our services:

  • our hosting provider;
  • our customer support (ticketing) provider;
  • our artificial intelligence provider for the conversational assistant (chatbot);
  • our email sending provider (onboarding and communications);
  • our online payment service providers.

These service providers may have access to certain data concerning you strictly to the extent necessary and solely to carry out the mission entrusted to them by SEOPress.

2.1.7 Security Measures

SEOPress implements appropriate technical and organizational measures to ensure a level of security commensurate with the risk.

SEOPress takes measures to ensure that any natural person acting under their authority or under that of the subcontractor, who has access to personal data, does not process it, except on the instructions of SEOPress, unless obliged to do so.

We implement security measures to protect your data, such as the HTTPS protocol. We regularly monitor our systems to detect potential vulnerabilities and attacks. However, this does not allow us to guarantee the absolute security of your data.

2.1.8 Transfers outside the European Union

SEOPress may transfer personal data outside the European Union, particularly to the United States, in connection with the use of certain technical service providers.

These transfers are governed by:

  • the EU-US Data Privacy Framework for certified providers;

Or

  • standard contractual clauses adopted by the European Commission;

Or

  • any other appropriate safeguard provided for in Article 46 of the GDPR.

 2.1.9 Automated decision-making

SEOPress does not perform automated decision-making.

2.1.10 Rights of Data Subjects

You can set guidelines regarding the retention, deletion, and disclosure of your personal data after your death. These guidelines can be general or specific.

You also have the right to access, object to, rectify, restrict, erase, and, under certain conditions, transfer your personal data. You have the right to withdraw your consent at any time if consent constitutes the legal basis for the processing.

The application must include your first and last name, email or postal address, and be signed and accompanied by a valid proof of identity.

She can exercise these rights by contacting: SEOPress Company – Mr. Benjamin Denis – email: [email protected]

2.1.11 Complaint

You have the right to lodge a complaint with the supervisory authority (CNIL).

2.2 SEOPress as a subcontractor

2.2.1 Definition of a subcontractor

A subcontractor is, according to the GDPR, the person who, alone or jointly, processes personal data on behalf of a data controller.

In some cases, the subcontractor in turn subcontracts all or part of the processing to a subcontractor in a cascade.

2.2.2 Role of SEOPress

The company SEOPress performs data processing as part of the corrective maintenance of the SEOPress PRO solution.

When SEOPress performs these processes, it intervenes:

  • either, as a subcontractor, on your direct behalf. The website on which SEOPress operates is yours and you are therefore the data controller;
  • Alternatively, you could act as a subcontractor in a chain of subcontractors. The website on which SEOPress operates is your client’s website. In this scenario, your client is generally the data controller for the website’s activities, and you act as a data processor for them.

In both cases, you are the data controller with respect to SEOPress (SEOPress having no direct link with your own client).

Therefore, SEOPress can only intervene on the personal data stored on the website, on which the SEOPress PRO solution is installed, which is the subject of corrective maintenance, on your instructions alone.

 2.2.3 Processing Instructions

Purpose and objective of the processing

The purpose of this treatment is the corrective maintenance of the SEOPress PRO solution, i.e. the correction of any bugs on a site following the configuration of the solution.

The intervention may also consist of assistance in setting up a feature.

It should be noted that, as part of this maintenance, SEOPress does not access personal data stored on the website. Data will only be consulted if absolutely necessary.

Your treatment instructions are as follows:

  • Create a temporary administrator account on the Client’s website, with a dedicated email address for the intervention.
  • Log in to the website’s back office or server
  • Make the necessary corrections to the SEOPress plugin
  • Assist in the plugin setup
  • Inform the Client that the intervention is complete

Important : When creating a temporary administrator account, the password will be provided via an internal note in the SEOPress ticketing system. Once the service is complete, the Client agrees to delete the administrator account created for maintenance purposes. SEOPress will then delete the access data from its systems as soon as the ticket is closed.

Nature of operations : Occasional consultation of data, without modification or extraction.

 Categories of data potentially concerned : Depending on the configuration of the Client’s site, SEOPress may need to consult identification data (names, emails), connection data or content data present in the site’s database.

Categories of people concerned : Users and administrators of the Client’s website.

2.2.4 Data Retention

Exchanges related to open tickets are kept for 1 year.

Personal data relating to access to the website (or server) is kept only for the time necessary to carry out maintenance.

Following the intervention, SEOPress deletes all access data (usernames, passwords, access URLs) from its systems. It does not make any copies of personal data present on the Client’s website.

 2.2.5 Customer Obligations

The Client, in its capacity as Data Controller with respect to SEOPress, undertakes to comply with all obligations incumbent upon it under the Regulations on the protection of Personal Data, including, when acting as a subcontractor, the instructions given to it by its end client, and to pass them on without delay to SEOPress.

The Client specifically agrees to delete the temporary administrator account created by SEOPress on its website (or that of its client) as soon as the maintenance ticket is closed. This deletion is the sole responsibility of the Client.

The Client agrees to hold SEOPress harmless from any judgment and any financial consequences to which it may be exposed due to the Client’s failure to comply with its obligations.

2.2.6 SEOPress Obligations

SEOPress is committed to complying with all its obligations under the regulations on the protection of personal data.

These obligations are specified below:

Compliance with treatment instructions

SEOPress, as a data processor, undertakes to strictly comply with your written instructions regarding the use of Personal Data. In particular, SEOPress will not process any Personal Data that is not expressly requested in a written instruction.

Use of cascading subcontracting

SEOPress does not use any subcontractors in a cascading manner, except with your express permission.

When SEOPress uses another subcontractor to carry out specific processing activities on behalf of the professional, the same data protection obligations as those set out here are imposed on that other subcontractor by contract, in particular with regard to providing sufficient guarantees regarding the implementation of appropriate technical and organizational measures, so that the processing meets the requirements of the regulation and this policy.

When this other subcontractor fails to fulfill its data protection obligations, SEOPress remains fully responsible to you for the other subcontractor’s performance of its obligations.

Obligation to provide aid and assistance

SEOPress takes into account the nature of the processing and helps you, through appropriate technical and organizational measures, to fulfill your obligation to respond to requests from data subjects to exercise their rights under Chapter III of the GDPR.

SEOPress helps you ensure compliance with the obligations set out in Articles 32 to 36, taking into account the nature of the processing and the information at our disposal.

SEOPress provides you with all the necessary information to demonstrate compliance with the obligations set out herein.

Audit

You may, at your own expense, conduct or have conducted, by any service provider of your choice bound by professional secrecy, during the term of this agreement, audits relating to SEOPress’s compliance with its obligations regarding the processing of personal data. This right to conduct an audit is limited to one per year.

You undertake to notify us in writing of any audit mission with a minimum notice of ten (10) calendar days by communicating to us the purpose of the mission, the name of the expert, the envisaged duration of the mission, it being specified that this may not exceed 4 days.

The auditor must cause minimal disruption to the activities of SEOPress.

A copy of the audit report prepared by the auditor will be given to each party and will be discussed jointly.

If this audit confirms that SEOPress has failed to meet its obligations, the company will bear the audit costs and implement, at its own expense, the necessary corrective measures within thirty (30) business days of receiving the audit report. Except as provided above, you will be responsible for all costs incurred in connection with the audits. If the issues are not rectified within this timeframe, you may terminate your membership on the platform for cause.

Obligation to provide information

SEOPress will inform you as soon as possible, as soon as it becomes aware of it, if, in its opinion, an instruction constitutes a violation of the regulations relating to the protection of personal data.

Confidentiality obligation

SEOPress is bound by an obligation of confidentiality and is prohibited from communicating personal data to any third party, whether free of charge or for payment, except as required for the purposes of the services.

SEOPress ensures that individuals authorized to process data are bound by confidentiality obligations or are subject to an appropriate confidentiality obligation.

Notification in case of personal data breach

SEOPress undertakes to notify you as soon as possible and as soon as it becomes aware of any breach or security vulnerability affecting personal data and to provide you with the information necessary to allow you to inform the supervisory authority and, if necessary, the persons concerned.

Transfers of personal data outside the European Union

SEOPress may transfer personal data outside the European Union, particularly to the United States, in connection with the use of certain technical service providers. These transfers are governed by:

  • the EU-US Data Privacy Framework for certified providers;

Or

  • standard contractual clauses adopted by the European Commission;

Or

  • any other appropriate safeguards provided for in Article 46 of the GDPR
Security measures

SEOPress implements appropriate technical and organizational measures to ensure a level of security commensurate with the risk.

SEOPress takes measures to ensure that any natural person acting under their authority or under that of the subcontractor, who has access to personal data, does not process it, except on the instructions of SEOPress, unless obliged to do so.

Processing register

SEOPress keeps a register of subcontracting operations at your disposal and will provide it upon request.

2.2.7 Coordinates

SEOPress Company – Mr. Benjamin Denis – email: [email protected]

PART 3 – Cookie Policy

 3.1 Purpose of the charter

When you visit our website www.seopress.org, cookies (and other trackers) are placed or read on the device you are using (your computer, mobile phone or tablet).

This policy explains what types of cookies we use and for what purposes.

We also explain what your rights are regarding these cookies and how you can exercise them.

This charter provides you with additional information to that found in the cookie banner that you see when you browse our site.

This Cookie Policy is written in accordance with Law No. 78-17 of 6 January 1978 (known as the “Data Protection Act” or “LIL”) and the General Data Protection Regulation (“GDPR”) No. 2016/679.

3.2 Charter Manager

The data controller is:

SEOPress, a French limited company (EURL) with a share capital of 1000 euros, whose registered office is located at 52, rue Isidore Salles, 40110 Morcenx-la-nouvelle, registered with the Bayonne Trade and Companies Register under number 843 629 643, whose legal representative is Mr. Benjamin Denis.

The person in charge can be contacted at the following email address: [email protected]

3.3 Definition of cookies

A cookie is a tracking device. When a user browses a website, it allows the collection of personal information about them.

When the user uses their computer, cookies are managed by their internet browser (Internet Explorer, Firefox, Safari or Google Chrome).

There are other types of trackers besides cookies (e.g., invisible pixel, fingerprinting, local storage, flash cookie).

Some cookies are internal to the website, others are third-party cookies placed on the site by third-party companies.

For simplicity, we will use the term “cookies” in this charter to refer to different types of trackers.

A cookie can collect various personal data about you, such as your computer’s IP address, the browser used, the date and time of connection, the pages visited on the site, etc.

Generally, five types of cookies can be used on a website:

  • Cookies necessary for the website to function
  • Cookies for personalizing content based on usage
  • Analytical cookies (to measure website audience)
  • Advertising cookies
  • Social media sharing cookies

3.4 Types of cookies used

The types of cookies we use on the website are as follows:

  • cookies that enable and facilitate the operation of the site
  • content personalization cookies
  • Audience measurement cookies. We use trackers on our own self-hosted Matomo installation. This solution has been configured to anonymize visitors’ IP addresses, in accordance with CNIL recommendations. This configuration allows for an exemption from consent for these audience measurement cookies.
  • Cookies for playing embedded videos (YouTube). These cookies are placed when you watch an embedded video on our site. The YouTube/Google privacy policy can be found here: https://policies.google.com/privacy
  • Social media sharing cookies. We use trackers belonging to Twitter, YouTube, and Google. Their policies can be found at the following links: https://help.twitter.com/rules-and-policies/twitter-cookies and https://policies.google.com/privacy
  • Affiliate cookies are used to link to the SEOPress solution or to solutions from our partners. These cookies allow us to identify customers brought to SEOPress by affiliates and those brought by SEOPress to partners. The list of affiliates and partners is available upon request.

3.5 Cookie Rights

In accordance with Article 82 of the French Data Protection Act of 6 January 1978, the internet user is informed of the processing of personal data carried out through cookies.

This charter allows us to fulfill this obligation to provide information.

Furthermore, for cookies requiring the user’s consent, consent is obtained when a Cookie banner is displayed on the website.

Until the user has been informed and has given their express consent, this type of cookie is not placed or read on their device.

Consent is requested for each type of cookie (by purpose).

The list of third-party cookie providers is given at the time of consent collection.

The user has the option to postpone their choice and decide later. No cookies are placed until their consent is given.

The user has the option to refuse the placement of these cookies.

He can withdraw his consent at any time and as easily as he gave it.

The cookies placed have a maximum lifespan of 13 months. After this period, consent is requested again.

Users are informed that they can disable cookies by configuring their internet browser:

If the user wishes to delete cookies stored on their device and configure their browser to refuse cookies, they can do so via their internet browser preferences.

These cookie-related navigation options are usually found in the browser’s “Options”, “Preferences” or “Tools” menus.

To learn more about the applicable rules regarding cookies, users can consult the following links:

https://www.cnil.fr/fr/cookies-et-autres-traceurs-la-cnil-publie-de-nouvelles-lignes-directrices

https://www.legifrance.gouv.fr/affichTexte.do?cidTexte=JORFTEXT000038783337

3.6 Rights of the persons concerned

The individual whose data is being processed may define guidelines regarding the storage, erasure, and communication of their personal data after their death. These guidelines may be general or specific.

The data subject also has the right to access, object to, rectify, restrict, erase, and, under certain conditions, transfer their personal data. The data subject has the right to withdraw their consent at any time if consent constitutes the legal basis for the processing.

The request must include the full name, email or postal address of the person concerned, and be signed and accompanied by a valid proof of identity.

She can exercise these rights by contacting the website owner at the following email address: [email protected]

The person concerned by a processing has the right to lodge a complaint with the supervisory authority (CNIL).