Last updated: 2025/10/23

his Privacy Policy explains how Dolside Group and its brands Dolside AI, Dolside Stay, and Dolside Services (“Dolside,” “we,” “us,” “our”) collect, use, share, and protect personal data when you use our websites, products, and services (the “Services”). By using the Services, you acknowledge this Policy and any region-specific terms in Section 12.

Who we are (France):

Dolside Group (auto-entrepreneur) — 37 rue des Abeilles, 68200 Mulhouse, France
Emails: [email protected] · [email protected] · [email protected]

1 - Scope & Roles

Dolside is a controller/business for most activities (web, billing, CRM) and may be a processor/service provider for certain B2B workflows (e.g., operating AI agents or inboxes on your behalf) under a DPA and your instructions.

2 - Data We Collect

You provide: contact details; account/preferences; business content (prompts, tickets, messages, uploads, booking/guest info provided by clients); billing/VAT/SIREN; communications.
Automatic: IP/device/browser, pages, timestamps, referrers, crash logs; cookies/trackers (see Cookies Policy).
Third parties: tools you connect (GoHighLevel, WhatsApp/Meta, Make/n8n, Telnyx, Slack/Discord, Shopify, Stripe, Calendly, Google/O365); public/partner sources.
Sensitive data: please do not submit special category data unless necessary and agreed.

3 - Purposes & Legal Bases

Deliver and operate Services; set up integrations; billing/tax; security/fraud; support/communications; analytics/improvement; legal compliance.
EU/UK bases: Contract, Legitimate interests, Consent (where required, e.g., marketing cookies), Legal obligation. When acting as processor, your lawful basis applies (per DPA).

4 - AI & Data Use

No use of Client Content to train public models unless expressly agreed. We process/store data (including prompts/outputs/logs) to operate requested agents/automations. We may use de-identified/aggregated telemetry to improve reliability and detect abuse. Limited human-in-the-loop review under confidentiality and access controls.

5 - Cookies & Tracking

We use functional and analytics cookies (and ads/remarketing if enabled). Where required, we present a consent banner and honor choices, including Global Privacy Control (GPC). See Cookies Policy for details and preferences.

6 - How We Share Data

We do not sell personal information. We share with:

Processors/service providers (hosting, telecom, messaging, automation, CRM, scheduling, payments, analytics, support).

Integrations you connect, per your configuration and their terms.

Affiliates/subcontractors under confidentiality and DPA-equivalent protections.

Legal/safety when required by law or to prevent harm.

Business transfers (merger/acquisition/reorganization).
Current list of sub-processors is available on request at [email protected].

7 - International Transfers

We use lawful mechanisms (e.g., SCCs, EU-US DPF where applicable) and appropriate safeguards. Request details at [email protected].

8 - Security

We apply reasonable technical/organizational measures (encryption in transit, access controls, logging, backups). No method is 100% secure—secure your accounts and report issues to [email protected].

9 - Retention

We retain data as needed for Services, legal obligations, dispute resolution, and enforcement. When no longer required, we delete or anonymize data. Deletion requests: [email protected] (subject to legal exceptions).

10 - Your Rights

EU/UK: access, rectification, deletion, restriction, portability, objection; withdraw consent anytime; complain to your DPA.
US (CPRA etc.): rights to know/access, delete, correct, opt-out of sale/sharing (incl. cross-context ads), limit use of sensitive data. We do not sell personal information. Use site controls or [email protected]. We honor GPC where applicable.
UAE/Dubai: request access/correction/deletion subject to legal exceptions via [email protected].
Singapore (PDPA): access/correction; withdraw consent (subject to exceptions).
We may request additional info to verify identity or agent authority.

11 - Children

Not directed to children. Do not use if under the age of digital consent in your country. If a child’s data was provided, contact [email protected] for deletion.

12 - Region-Specific Terms

EU/France & UK: Controller is Dolside Group (France). Legal bases per §3. Consumer mediation (France): Dolside will designate a certified consumer mediator. Until then, you may use the EU ODR platform (https://ec.europa.eu/consumers/odr) or contact [email protected] for escalation. Withdrawal right details: see Terms

Annex C.

United States: Do Not Sell/Share — we do not sell personal information; opt-out controls apply to any cross-context ads if implemented. Arbitration/opt-out: see Terms Annex C-3.
UAE/Dubai: Forums/permits: see Terms Annex C-4.
Singapore: PDPA and comparable protections for overseas transfers.

13 - Third-Party Links & Social Features

Links/features from third parties (e.g., Meta/WhatsApp, Slack/Discord) follow their own policies. Review before connecting accounts.

14 - Changes

We may update this Policy periodically. We post the updated date and, for material changes, provide additional notice. Continued use after the effective date means acceptance.

15 - Contact

Privacy & general: [email protected]
Billing: [email protected]
General inquiries: [email protected]
Postal: Dolside Group, 37 rue des Abeilles, 68200 Mulhouse, France

16) Controller/Processor Annex (Pointer)

When we act as processor/service provider, processing is governed by a DPA that incorporates GDPR/UK GDPR, CPRA, and transfer clauses (e.g., SCCs). Sub-processors list is available on request at [email protected].