top of page

Privacy Policy

DS CONNECT is a simplified joint-stock company with a share capital of 10,000 euros, registered with the Montpellier Trade and Companies Register under number 941 864 985, whose registered office is located at Parc Eureka, Le Pôle Eureka, 418 Rue du Mars de Verchant, 34000 Montpellier (hereinafter “we”).

We are particularly concerned about your privacy and the protection of your personal data. We comply with French Law No. 78-17 of January 6, 1978 on Data Processing, Files and Individual Liberties, as amended (the “French Data Protection Act”), as well as European Regulation (EU) 2016/679 of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, known as the General Data Protection Regulation or GDPR (hereinafter the “GDPR”).

This Privacy Policy (hereinafter the “Policy”) informs you of how we process your personal data when you use our mobile application “IDISKO” (hereinafter the “Application”) as well as our website accessible at www.idisko.com (hereinafter the “Site”).

Our Application is intended solely for individuals aged 18 or over. We do not allow persons under the age of 18 to create an account on our Application.

The terms “controller”, “joint controller”, “processor”, “data subject”, “personal data”, “processing”, “personal data breach”, and “Member State” have the same meaning as defined in the GDPR, and related terms must be interpreted accordingly.
 

1. Who is responsible for processing your personal data?
 

We are the controller of the personal data processed in connection with your use of our Application and our Site.

For any questions regarding the processing of your data, you can contact us:

  • By email: contact@idisko.com

  • By post: DS CONNECT, Parc Eureka, Le Pôle Eureka, 418 Rue du Mars de Verchant, 34000 Montpellier, France.
     

2. When do we collect your personal data?
 

Your personal data may be collected when:

  • you create an account on our Application,

  • you use our Application,

  • you contact us by any means, including through online forms on the Application or Site,

  • you participate in events or games we organize,

  • you respond to surveys or satisfaction questionnaires,

  • you subscribe to our newsletters,

  • you report content or another user’s profile,

  • you submit a request to exercise your rights.
     

3. What personal data do we collect?
 

3.1 Data you provide us

Account data – When you create an account, you provide the basic information required to set up your account, namely your email address and password.
 

Profile data – To complete your profile, you must provide your username, gender, date of birth, and profile photo. You may also choose to share additional information about yourself, such as your country of birth, biography, interests, musical preferences, photos, etc.
 

Data related to the content you share –
When using our Application, you may publish photographs, live videos, text, and other types of content, such as your conversations with other users.

In doing so, you may share personal data such as your voice and photographs.

Data related to events, games, surveys, and satisfaction questionnaires –
When you choose to participate, you provide data necessary to process your registration or participation, as well as your responses and comments.
 

Data concerning other users –
If you choose to share information about others with us (for example, if you use someone's contact details for a specific function or if you submit a question or report involving a user), we process such data on your behalf in order to respond to your request.
 

Reporting data –
When you contact us or report content or a profile, you provide data necessary for us to respond. Third parties may also submit requests or reports concerning you. Our moderation tools and teams may collect additional data during their investigations.
 

Third-party service data –
You may choose to share data with us through your accounts on third-party services such as Apple or Google, for example if you choose to create or log in to your account via these services.
 

If you use a third-party service (such as Apple or Google) to create your account, that service may provide us with information from your third-party account, such as your name and the email address associated with the account. We do not collect or store the passwords you use for third-party services.
 

This information is transmitted to us by the third-party service provider in accordance with their terms of use.
Your privacy settings on that third-party service determine what is shared with us. We encourage you to review their privacy policies and adjust your settings if necessary.
 

(i) Please note that to upload photos and/or videos from your device and to use the live video feature, you must authorize us to access your camera, photo and video library, and microphone.
(ii) Content shared on our Application can be viewed by the users you interact with. They may record your content on their device without us being able to prevent it (e.g., by taking screenshots).
(iii) More generally, during your use of the Application, you must only share adequate and relevant information.

You agree not to share excessive, abusive, defamatory, obscene, offensive, violent, or violence-inciting statements, nor any content infringing on third-party rights, nor any sensitive data as defined under Article 9 of the GDPR (racial or ethnic origin, political, philosophical, or religious opinions, trade union membership, health or sexual life data, criminal convictions, security measures).
You agree not to engage in illegal activities or harm third parties. In case of breach, we reserve the right to take any necessary action to protect our rights and those of our staff.
 

3.2 Data collected automatically
 

Application usage data –
Use of our Application generates data on your activity, including how you use it (e.g., date and time of your logins, features used, ads you interact with) and how you interact with other users. We may also receive data about your interactions with our ads on our partners’ websites or apps.
 

Technical data –
Use of the Application and Site involves collecting data from and about the devices you use, such as hardware and software information: IP address, device identifier (Device ID), device type, OS version, language, time zone, and identifiers linked to cookies or similar technologies.
 

3.3 Data collected with your consent
 

With your consent, we may collect geolocation data (latitude and longitude). Without this authorization, certain location-based features may not be available.

Identification data (for verification purposes) – We use YOTI technology to estimate your age. YOTI LTD specializes in age verification. YOTI verifies users’ age via a video/photo selfie.

Once your age has been estimated and transmitted to us, YOTI deletes the image. We do not share your information with YOTI. For more information, please consult YOTI’s Privacy Policy.

In certain cases, you may provide us with a copy of your identity document so we can verify that you are the person you claim to be (for example, when exercising your rights).


4. Why do we use your personal data and on what legal basis?

Processing your personal data is justified by various legal bases depending on how we use it.

Applicable legal bases include:

Your personal data is processed for the purposes and legal bases detailed in this table:
 

Purposes and Legal Bases

Management of the Application and user relationships

Improving the Application and developing new features

Ensuring your safety

Managing events, games, surveys, satisfaction questionnaires
Legal basis: Legitimate interest

Managing commercial prospecting (newsletters)
Legal basis: Legitimate interest or consent, depending on purpose

Managing pre-litigation and litigation
Legal basis: Legitimate interest or legal obligation 
 

    • Contract – Processing is necessary for the performance of a contract to which you are a party.

    • Consent – You freely consent to the processing. You may withdraw consent at any time.

    • Legitimate interest – We have a commercial interest that is balanced and does not infringe your privacy.

    • Legal obligation – Processing is required by law.

    • Managing your accounts

    • Ensuring proper functioning of the Application and solving issues

    • Responding to your requests
      Legal basis: Contract performance or our legitimate interest

    • Analyzing how the Application is used

    • Reviewing interactions with our teams

    • Developing, improving, and testing features
      Legal basis: Legitimate interest or consent

    • Preventing, detecting, and combating violations of our Terms of Use

    • Improving tools to prevent, detect, and combat violations

    • Informing individuals who report content of follow-up measures

    • Verifying your identity
      Legal basis: Legitimate interest or legal obligation
       

5. Who receives your personal data?
 

Personal data we collect is intended, depending on purpose, for authorized DS CONNECT staff.

It may also be transmitted to:

  • Other users (in the case of reports)

  • Our processors and their subcontractors (maintenance, technical development, security) – all bound by confidentiality and GDPR obligations

  • Financial, judicial, administrative, police, state agencies, customs services, public authorities, and regulatory bodies in cases where disclosure is legally required

  • Our legal successors (in case of merger, sale, acquisition, restructuring)

Pursuant to Article 19 GDPR, we will notify all recipients of any rectification, erasure, or processing restriction requested, unless such notification proves impossible or requires disproportionate efforts. 

6. Where is your data stored? Are transfers outside the EU possible?
 

Personal data is stored on secure servers in Germany.

  • We may transfer some of your data to processors or partners outside the EU for the purposes described above.

  • Regardless of location, we carefully select processors and ensure that any transfer complies with our Policy and GDPR.

  • When the destination country is not recognized as providing adequate protection, we provide appropriate safeguards (e.g., EU Standard Contractual Clauses) and ensure your enforceable rights and remedies.


7. How long do we keep your personal data?
 

Retention periods:

  • Account and profile data: Deleted upon request or after 2 years of inactivity

  • Shared content: Same as above

  • Reports: Up to 5 years after resolution

  • Geolocation: Until your next access to the Application

  • Events, games, surveys: 3 years

  • Commercial prospecting: 3 years after last contact

  • Accounting obligations: 10 years

  • Rights requests:

    • Access/rectification/erasure: 5 years

    • Opposition: 6 years

    • Restriction: 5 years

  • Other contact data: 3 years

After these periods, your data is deleted or anonymized.

In case of pre-litigation, litigation, or legal obligation, certain data may be stored longer in restricted “intermediate archiving”.

8. What security measures do we take?
 

Protecting your rights to privacy, security, and confidentiality is a priority.

We implement appropriate measures to protect your data from destruction, loss, alteration, disclosure, or unauthorized access.

Account creation requires a strictly personal password. You must not share it.
We require a strong password (minimum 8 characters, including a number, special character, uppercase and lowercase letter).

To reinforce security, we require multi-factor authentication (MFA) using a second proof of identity (e.g., code sent by email).
MFA prevents access even if a hacker obtains your password.

If we detect a personal data breach likely to pose a high risk to your rights and freedoms, we will notify you as required by GDPR.
 

9. What rights do you have and how can you exercise them?
 

Under Articles 15 and following of the GDPR, you have the right to:

  • access your personal data and obtain information on processing,

  • rectify inaccurate personal data,

  • erase your data in certain cases,

  • restrict processing in certain cases,

  • data portability (structured, commonly used, machine-readable format),

  • not be subject to automated decisions producing significant effects,

  • object to processing based on your specific situation,

  • object to processing for marketing purposes,

  • withdraw consent at any time (without affecting prior lawful processing),

  • define, modify, or revoke instructions regarding your data after death,

  • lodge a complaint with the French supervisory authority (CNIL) and take legal action for full compensation.

Some rights may be refused in specific cases (e.g., legitimate overriding grounds).

To exercise your rights, contact us at:

  • contact@idisko.com

  • DS CONNECT, Parc Eureka, Le Pôle Eureka, 418 Rue du Mars de Verchant, 34000 Montpellier

If we reasonably doubt your identity, we may request additional proof (e.g., black-and-white copy of your ID).

We respond within reasonable timeframes and in any case within legal deadlines.
 

10. Can this Policy be modified?
 

We may update this Policy due to technical, economic, regulatory, or legal changes.
You will be informed of significant updates via notifications in the Application.

When required, we will ask for your consent.

The latest version is always available on our Application and Site.

bottom of page