Oria Marine
Privacy

Privacy policy.

Last updated 8 May 2026

This policy explains what personal data Oria Marine (the data controller) collects through the website and the Oria service, why we collect it, how long we keep it, and what rights you have over it. We follow the General Data Protection Regulation (EU 2016/679) and the French Data Protection Act of 1978 as amended.

1. Data controller

Oria Marine, 229 rue Saint-Honoré, 75001 Paris, France. Contact for any privacy question: antoine@oria-marine.com.

2. Data we collect

We only collect what we need.

When you start the onboarding flow

First name, email, boat model. Used to set up your order and to pre-configure your dashboard. Stored only in our checkout flow until handed over to Stripe (purchase) or Cal.com (fleet conversation).

When you contact us

Name, email, message content. Used solely to reply to you.

When you browse the site

Standard server logs (IP, timestamp, user-agent, requested URL) kept by the host (Google Cloud) for security and abuse prevention. No analytics, no advertising, no cross-site tracking, no third-party cookies.

Local storage

We store one item, oria.lang, to remember your preferred language between visits. No personal data, no identifier.

3. Legal basis

Onboarding & order
Performance of the contract you ask us to enter into (GDPR art. 6(1)(b)).
Contact replies
Legitimate interest in answering your message (art. 6(1)(f)).
Server logs
Legitimate interest in operating a secure service (art. 6(1)(f)).

4. Retention

  • Onboarding data: 30 days unless an order is placed; then kept under the commercial relationship for 5 years.
  • Contact emails: 1 year after last exchange, then archived for 2 more years if needed for evidence.
  • Server logs: 12 months maximum.

5. Sub-processors

We use a small number of trusted services to run Oria. They are bound by data-processing agreements and only act on our instructions.

Google Cloud (Ireland & France)
Hosting and storage. Data stays in the EU.
Stripe (Ireland)
Payment processing for hardware + subscription. Card data is handled directly by Stripe; we never see it.
Cal.com (United States)
Booking calls for fleet customers. Personal data limited to name, email, and meeting details.
Resend (Ireland) and SendGrid (Twilio, EU)
Transactional email — onboarding leads, order confirmations, dispatch notes. We send from Oria Marine; the providers don't use the data for their own purposes.

6. International transfers

Stripe and Cal.com may process data in the United States under the EU-US Data Privacy Framework. Where this is not in place, transfers rely on the European Commission's standard contractual clauses.

7. Your rights

You can, at any time:

  • Access the personal data we hold about you,
  • Have it rectified or erased,
  • Restrict or object to its processing,
  • Receive it in a portable format,
  • Withdraw any consent you previously gave,
  • Define directives for what happens to your data after death.

Email antoine@oria-marine.com — we reply within one month. If you believe we have not handled your request properly, you have the right to lodge a complaint with the CNIL (3 place de Fontenoy, 75007 Paris — www.cnil.fr).

8. Cookies

We do not use cookies for analytics, advertising or tracking. The site stores a single item in your browser's local storage (oria.lang) to remember your preferred language. You can clear it at any time via your browser settings.

9. Security

Data in transit is encrypted (HTTPS). Internal access is limited to staff who need it. We notify the CNIL and affected users in case of a personal data breach within 72 hours, where required by law.

10. Changes to this policy

We may update this policy to reflect changes in our practices or in the law. The new version applies as of the date shown at the top.