1) WHO WE ARE (DATA CONTROLLER)
The website is operated by:
Toprank Europe SAS
32 allée de la Robertsau, 67000 Strasbourg, France
Email: info@toprankeurope.com
Website: https://toprankeurope.com

Toprank Europe SAS is the “data controller,” meaning the entity that determines the purposes and means of processing personal data collected via this site.

2) PERSONAL DATA COLLECTED
Depending on your use of the site, we may collect:

A) Data you provide to us
– Name and email address (required to respond to you)
– Phone number (optional, only if you provide it)
– Content of your message (quote request, vehicle search, questions, appointment booking, etc.)

B) Technical and Navigation Data
– IP address, browser type, device information, connection date/time, pages viewed, source/referrer, and similar log data
– Online identifiers and cookie/tracker identifiers (see “Cookies & Trackers”)

C) Anti-spam / Security-related Data
– Technical signals used to protect the site and forms against spam, fraud, and abuse (see section 7)

3) MANDATORY / OPTIONAL DATA
When you contact us via a form, your name and email address are required so that we can respond to you, as well as the content of your request to process it.
If you do not provide this information, we may not be able to respond to your request.

4) WHY WE USE YOUR DATA (PURPOSES) AND ON WHAT LEGAL BASIS
We process your personal data for:

A) Responding to your requests (contact / quotes / vehicle-related questions)
Legal basis: pre-contractual measures taken at your request and/or performance of a contract.

B) Administrative management and commercial relationship (where applicable)
Legal basis: performance of a contract and/or legitimate interest (management and improvement of our services).

C) Legal and accounting obligations (if you become a client)
Legal basis: legal obligation.

D) Site security and spam prevention
Legal basis: legitimate interest (site protection, prevention of abuse and fraud).

E) Audience measurement and site improvement (Google Analytics 4)
Legal basis: your consent (via the cookie banner), unless configured under a possible applicable exemption.

F) Advertising measurement and remarketing (Meta Pixel, Google Ads)
Legal basis: your consent (via the cookie banner).
These technologies may involve profiling / audience building based on your browsing to measure campaign effectiveness and optimize advertising.

We do not make decisions producing legal effects concerning you based solely on automated processing.

5) COOKIES & TRACKERS (COOKIEYES)
We use cookies and similar technologies. Some are strictly necessary for the site’s operation, while others are used for audience analysis, advertising, or loading third-party content.

A) Strictly Necessary Cookies
Used for essential functions and security.

B) Audience Measurement Cookies (GA4)
Used to measure site usage and improve its performance.

C) Advertising Cookies (Meta Pixel, Google Ads)
Used for conversion measurement, remarketing, and campaign optimization.

D) Third-Party Embedded Content (YouTube, Google Maps)
When you view embedded videos or maps, these services may collect data and/or place cookies, as if you were directly visiting their sites. The loading of this content may be subject to your cookie choices (and thus blocked until you have consented to the relevant categories).

Your Choices
– Non-essential cookies (audience measurement / advertising / third-party content) require your consent.
– You can accept or refuse cookies and change your choice at any time via the cookie banner or the cookie settings option available on the site (often in the footer).

We do not sell your personal data.

Your data may be accessible to:
– Authorized personnel at Toprank Europe, solely to process your request
– Our technical service providers acting as “processors,” including:

Hosting
– Hostinger (hosting and infrastructure)

Google Services
– Google Analytics 4 (audience measurement, subject to consent)
– Google Ads (advertising/remarketing, subject to consent)
– Google reCAPTCHA (anti-spam protection for forms)
– YouTube and Google Maps (embedded content, according to your cookie preferences)

Meta Services
– Meta Pixel (advertising/remarketing, subject to consent)

Automattic Services
– Akismet (spam detection / abuse prevention, depending on activated features)

Based on your current organization, we do not share your contact requests with Toprank Japan or Toprank USA.

7) reCAPTCHA AND AKISMET (ANTI-SPAM / SECURITY)
We use technical measures to protect the site and forms against spam and abuse.
This may include Google reCAPTCHA and/or Akismet, which may process technical data such as IP address, browser/device information, and interaction signals, for security purposes.

8) TRANSFERS OUTSIDE THE EUROPEAN UNION
Some service providers (notably Google and Meta) may process data outside the European Economic Area.
Where necessary, these transfers are governed by appropriate safeguards (e.g., standard contractual clauses) and, where applicable, additional measures.

9) RETENTION PERIODS
We retain data only for the time necessary for the purposes described:

– Contact requests / prospects: generally up to 3 years after the last exchange
– Client and accounting data (if you become a client): retained for the duration required by applicable legal/accounting obligations
– Security logs: retained for a limited period, proportionate to security needs
– Cookies: according to their category and your choices (see cookie settings)

10) YOUR RIGHTS
In accordance with the GDPR, you have the following rights, among others:
– Access, rectification
– Erasure (in certain cases)
– Restriction of processing (in certain cases)
– Objection (in certain cases)
– Data portability (where applicable)
– Withdrawal of consent at any time (for processing based on consent)

To exercise your rights: info@toprankeurope.com
We may request proof of identity if necessary to protect your data.

You can also lodge a complaint with the competent supervisory authority: the CNIL (France).

Post-mortem directives (France)
You can define directives regarding the retention, erasure, and communication of your personal data after your death, in accordance with French law.

11) SECURITY
We implement reasonable technical and organizational measures (access controls, updates, backups, monitoring) to protect your data. As no system is infallible, we work to reduce risks.

12) POLICY CHANGES
We may update this privacy policy. The “last updated” date will indicate the most recent version.