Privacy Policy

Company

DIGITAL ESSENCE SAS

 

12 bis rue des Tours

59800 Lille / France

800 709 180 RCS Lille

VAT : FR55 800 709 180

Publisher : Etienne Mathé

 

The website www.heavym.net is duplicated on the computer equipment of the company Nexcess. Its registered office is : 21700 Melrose Avenue Southfield, MI 48075 United States

1. Definition and nature of personal data

Whenever you use the platform, that can be accessed from Digital Essence’s website located at www.heavym.net (hereinafter referred to as the “Platform”), for the purposes of using the provided services that enable you (i) to download the intuitive projection mapping software called HeavyM, (ii) to buy the Olga Kit consisting of modules that can be assembled and disassembled that allow video-mapping surfaces to be created, on which Customers can project visual animations, (iii) to share the visual animations you’ve designed with the community of users’ of the HeavyM Software, and (iv) to access to the forum hosted on the Platform, we may request some personal information about you.

The term “personal data” refers to any and all information which enables an individual to be identified, more specifically your surname, first name(s), alias, photography, postal or email addresses, telephone number(s), IP address of the computer on which the software is downloaded and/or the IP address of any computer from which a post is send to the forum, data concerning transactions on the Platform, credit card number, as well as any other information about you which you may choose to provide us with.

2. Purpose of this Charter

The purpose of this charter is to inform you of the means by which we collect and process your personal data, with the strictest respect for your rights.

In this regard, we would like to point out that when collecting and managing your personal data, we comply with the current version of the French law No. 78-17 of 6 January 1978 on Information Technology, Data Files and Civil Liberties, and the General data protection regulation n°2016/679.

3. Identity of the entity responsible for collecting and processing data

Responsibility for the collection and processing of your personal data lies with the company Digital essence, a simplified joint stock company, registered with the Registry of Trade and Companies of Lille under number 800 709 180, whose head office is located at 12 bis Rue des Tours 59800 Lille, France (referred to within the framework of this charter as “Us” or “We”).

4. Collecting and processing personal data

Your personal data is collected and processed for one or more of the following purposes:

  1. To manage your access to and use of the services available on the Platform.
  2. To improve your customer experience and the services provided on the Platform,
  3. To carry out customer management operations relating to contracts, orders, deliveries, invoices, loyalty schemes, follow-up with customers, etc.
  4. To compile a list of registered members, users, customers and prospective customers.
  5. To issue newsletters, invitations and promotional advertisements. Should you not wish to receive these, we offer you the option to refuse them at the moment your data is being collected.
  6. To compile commercial and web traffic statistics for our services.
  7. To organize games and skill games and any other promotional activities, except gambling,
  8. To manage reviews on products, services or content.
  9. To manage unpaid invoices and potential disputes regarding the use of our products and services.
  10. To adhere to our legal and regulatory obligations.
    We shall inform you, when requesting your personal data, if certain information must be provided or if it is optional. We shall also inform you of the consequences should you not wish to provide this information.

 

Use of Facebook Login

We offer users the ability to register and log in to the Platform using Facebook Login (OAuth authentication service provided by Meta).

When using Facebook Login, we collect only the following data from the user’s Facebook account:
– public profile information;
– email address.

These data are used solely for the purpose of creating and managing the user account and allowing access to the Services. No additional data is collected without the user’s knowledge or consent.

Marketing communications

Transactional emails necessary for the operation of the Services (account creation, license delivery, security notifications, invoices) are sent without prior consent.

Marketing and promotional communications (newsletters, product updates, offers) are sent only if the user has given explicit consent. This consent is optional and can be withdrawn at any time.

5. Recipients of the collected and processed data

Our company’s staff, any authorities in charge of audits (external auditors in particular) and our subcontractors will have access to your personal data.

Government agencies or representatives of the law, ministerial officers or organisations responsible for the collection of debts may also be recipients of your personal data, for the sole purposes of meeting our legal obligations.

6. Assignment of personal data

Your personal data will not be assigned to, rented to or exchanged with any third party, with the exception of the client for which you are registered, and to whom we provide data concerning you, in relation with your using of the services.

Data collected via Facebook Login are not sold, rented, exchanged or shared with third parties.

These data are used exclusively for authentication, account management and access to the Services.

7. Duration that personal data is retained

    1. Regarding data relating to customer and prospect management:

      Your personal data shall not be retained any longer than is strictly necessary for the management of our business with you. However, data proving the existence of a right or a contract must be kept in order to adhere to legal obligations and shall be held for the term stipulated by the applicable law.
      Regarding potential prospecting operations for customers, their data may be held for a period of three (3) years after the termination of the business relationship in question.
      Personal data relating to a prospective customer, who is not already a customer, may be held for a period of three (3) years from the moment it is collected or from the last contact with the prospective customer.
      At the end of this period of three (3) years, we may contact you again in order to find out if you wish to continue to receive commercial canvassing.

    1. Provisions specific to identity documents:

      When exercising your right of access or correction, data relating to identity documents may be stored for the time limit provided for in article 9 of the French Criminal Procedure Code, namely one year. When exercising your right of opposition, these data may be archived during the term of limitation provided for in article 8 of the French Criminal Procedure Code, namely three years.

    1. Provisions specific to bank card data

      Data relating to bank cards are stored no longer than the time necessary to allow the fulfillment of the transaction, except in the case of a subscription, to facilitate the payment of regular customers. In that case, bank card data are stored for the whole duration of your subscription and at least until the date at which you carry out your last transaction. Such storage is implemented by our secured payment service provider.

      We don’t have access to these data.

      By checking the checkbox provided on the Website to this end, you expressly agree to this storage.

      Data relating to the visual cryptogram or CVV on the back of your bank card are not stored.

      In the case of a payment by bank card, however, data relating to the bank card may be stored as intermediary archives for evidence purpose in the case of possible disputes regarding the transaction, for the duration provided by article L.133-24 of the French Monetary and Financial Code, i.e. 13 months from the debit date. This duration may be extended to 15 months, to take into account the possible use of delayed debit card.

    1. Regarding the management of opt-out lists compiled during prospecting activities:

      Information enabling recognition of your right to opt-out is retained for a minimum of three (3) years following the exercising of your opt-out right.

  1. Regarding web audience tracking statistics:

    Information stored in users’ terminals, or any other means used to identify users and enabling them to be tracked or to measure the frequency of their visits, shall be retained for no longer than six (6) months.

8. Security

For your information, we take all necessary precautions and appropriate organisational and technical measures to maintain the security, integrity and confidentiality of your personal data, and especially to prevent it from being deformed or damaged and to prevent any third party from accessing it.

Personal data collected via Facebook Login are stored securely and protected by appropriate technical and organizational measures to prevent unauthorized access, alteration or disclosure.

9. Hosting

We also hereby inform you that your data is stored solely on the servers of OVH Roubaix located in the European Union.
Your data will not be transferred outside the European Union as part of our conditions of use of the services we offer.

10. Cookies

Cookies are text files that are often encrypted and that your web browser stores. They are created when a user’s browser loads any given website: the site sends information to the browser, which then creates a text file. Each time the user comes back to the same site, the browser retrieves the file and sends it to the website server.

There are three types of cookie with differing purposes – technical cookies, social network cookies and advertising cookies:

      • Technical cookies are used throughout your browsing in order to facilitate and carry out certain functions. A technical cookie can be used, for example, to memorise responses submitted in a form or even user language or website presentation preferences, whenever such options are available.

 

      • Social network cookies can be created by social networking platforms to allow web designers to share the content of their sites on these platforms. These cookies may in particular be used by social networking platforms to trace the browsing of Internet users on the website in question, whether or not they use these cookies.

 

      • Advertising cookies can be created not only by the website which the user is browsing but also by other internet websites displaying advertising, ad banners, widgets or other elements on the page that is being displayed. These cookies can be used to carry out targeted advertising in particular, that being advertising which is determined by user browsing.
    • We use technical cookies. These are stored in your browser for a period of thirteen (13) months.

 

    • We don’t use social network cookies. Nevertheless, if we were to use such cookies, we would provide you prior information. These cookies would only be stored on your computer if you gave your consent. You could learn more about them, accept them or refuse them.

 

    • We do not use advertising cookies. However, should we use them in the future, we will inform you and seek your prior consent. You will have the option to disable these cookies should you wish to.

 

    • We use Google Analytics, which is a statistical audience analysis tool that generates cookies to measure the number of visits to the Platform, the number of page views and visitors’ activity on the Platform. Your IP address is also collected to determine the city you are connecting from. The storage duration of this cookie is indicated in Article 7 (iv) of this charter.
  • We would like to remind you that you may refuse technical cookies and cookies generated by Google Analytics by configuring your browser to this end. However, such a refusal may prevent the Platform from functioning correctly.

11. Consent

Providing your personal data, in order to avail of the services we offer, represents your express consent for the collection and use of this data, in accordance with the provisions set forth in this charter and in the applicable legislation.

Consent to marketing communications

Consent to receive marketing communications is collected through a dedicated checkbox, which is unchecked by default.

Users may withdraw their consent at any time via their account settings or through the unsubscribe link included in each marketing email.

12. Access to your personal data

In accordance with French law No. 78-17 of 6 January 1978 on Information Technology, Data Files and Civil Liberties, and with the GDPR, you retain the right to obtain and, where appropriate, correct or delete any data concerning you, via online access to your account. You can also direct correspondence to:
– Email Address: [email protected]
– Postal Address: 12 bis rue des Tours, 59800 Lille, France
By way of reminder, any individual may, on legitimate grounds, request limitation of the processing of their personal data or oppose said processing.
You are informed that in case of correction or deletion of your data, and/or the limitation of the processing of your personal data, we would notify those change to those to which we have transferred your data, unless this notification is made impossible.

Right to data deletion and account deletion

Users may request the deletion of their account and associated personal data at any time.

This request can be made:
– via the user account interface, when available; or
– by contacting us at [email protected].

Upon request, we will delete or anonymize the user’s personal data without undue delay, except for data that must be retained to comply with legal, accounting or regulatory obligations.

Once the deletion process is completed, the user will no longer have access to the Services.

13. Notification of a personal data breach

When your personal data breach is likely to result in a high risk to your rights and freedoms, we will give you personal notification without any delay, unless this notification is made impossible and /or if we have implemented appropriate measures which ensure that the high risk is no longer likely to materialise.

14. Portability of your personal data

You have data portability rights regarding the personal data that you provide us, understood as data that you have actively and consciously declared in order to access and use our services, as well as data generated from your activity using the services. We remind you that these rights do not relate to data collected and processed on any other legal basis than the consent or implementation of the contract binding us.
These rights can be exercised free of charge, at any time, and in particular when closing your account on the Platform, in order to recover and keep your personal data.
In this context, we will send you your personal data, through any pertinent channels, in a commonly-used and machine-readable standard open format, in accordance with industry standards.

15. Lodging a complaint with a supervisory authority

You are also hereby informed that you have the right to lodge a complaint with a competent supervisory authority (e.g. the French National Commission for Information Technology and Liberties in France – CNIL) in the Member State that your place of residence or your workplace is located, or the place where your rights have been violated, if you consider that the processing of your personal data within the context of this Charter constitutes a violation of the applicable legal texts.
Such a complaint may be brought before an administrative or jurisdictional court without prejudice to any other claim. In such a case, you also have the right to an effective judicial and administrative redress if you consider that the processing of your personal data within the context of this Charter constitutes a violation of the applicable legal texts.

16. Amendments

We reserve the right to amend this charter at any moment, at our sole discretion, either in its entirety or in part. Such amendments shall come into effect once the new charter is published. Your use of the Platform following the entry into effect of these amendments, shall constitute acknowledgement and acceptance of the new charter. Failing that, and if you are not in agreement with the new charter, you should refrain from accessing the Platform.

Access to legal information

Links to this Privacy Policy and the Terms and Conditions of Use are accessible from the website and from the License Manager interface.

17. Entry into Effect

This charter came into effect on 28th January 2026.