Back to Home

Privacy Policy

We take the protection of your personal data very seriously. This policy explains how we collect, use, and protect your information when you visit amadousow.dev. It applies in accordance with the GDPR (EU) and the Canadian Personal Information Protection and Electronic Documents Act (PIPEDA).

1. Data Controller

Amadou Sow
Web & Mobile Developer
Toronto, ON, Canada
Email: contact@amadousow.dev

Data Protection Officer

Amadou Sow
contact@amadousow.dev

2. Data We Collect

Personal Data

  • Email (if you contact us)
  • Name
  • Messages you send us

Payment Data (via Stripe)

When making a donation, Stripe collects the following information:

  • Card number (encrypted)
  • Cardholder name
  • Expiration date
  • Security code (CVV)

This data is collected and processed directly by Stripe and is never stored on our servers.
However, some transaction-related information (such as email, amount, status, and date) is stored on our servers to ensure payment tracking.

3. How We Use Your Data

Website functionality

Ensure the technical proper functioning of the site

Communication

Respond to your messages and inquiries via contact forms

Site improvement

Analyze usage to optimize user experience

Security

Detect and prevent fraudulent activities

Legal basis for processing

Consent
For data collected via contact forms
Legal obligation
For invoicing, accounting management, and regulatory compliance

4. Data Sharing

We do not sell or rent your personal data to third parties. However, we may share certain information with trusted service providers acting as subprocessors:

StripeStripe

Used for secure payment processing. Stripe is PCI-DSS Level 1 certified.

View Stripe's Privacy Policy

VercelVercel

Hosting provider for this site. Technical data is stored on secure servers.

View Vercel's Privacy Policy

NNeon (PostgreSQL)

Used for secure storage of data such as transactions or messages.

View Neon's Privacy Policy

International Transfers

Some of our providers are located outside the European Union. All data transfers are protected by:

  • The European Commission's standard contractual clauses
  • The Privacy Shield certification (United States)
  • The adequacy decision between the EU and Canada

5. Cookies and Similar Technologies

We use cookies and similar technologies to ensure the proper functioning of our site, analyze traffic, and improve the user experience.

Types of Cookies Used

  • Essential cookies: necessary for the technical operation of the site (e.g., session management, security).
  • Analytical cookies: used, with your consent, to measure audience via Google Analytics or similar tools.

Consent

On your first visit, an information banner allows you to accept or refuse the use of non-essential cookies. You can also manage your preferences via your browser settings.

Data Collected

  • your IP address (anonymized);
  • pages visited;
  • duration of the visit;
  • browser and device type.

Purpose

Data collected via cookies is used solely for internal statistical purposes, respecting confidentiality and without personally identifying you.

6. Data Security

Encryption

HTTPS/TLS 1.3 on all pages

Physical Security

Servers located in secure data centers

Organizational Measures

  • Restricted access to sensitive data
  • Annual security audits
  • Data protection training
  • Incident management plan

Despite our efforts, no method of transmission over the Internet is 100% secure. In case of a data breach, we will inform you within 72 hours as required by the GDPR.

7. Your Rights

Right of Access

Obtain a copy of your data

Right to Rectification

Correct inaccurate data

Right to Erasure

Delete your data in certain cases

Right to Restriction

Limit the processing

Right to Object

Object to processing

Right to Data Portability

Receive your data in a structured format

Exercising Your Rights

To exercise your rights, please contact us at contact@amadousow.dev. We will respond within 30 days. For your security, we may request proof of identity.

You also have the right to file a complaint with the supervisory authority:

  • Canada: Office of the Privacy Commissioner of Canada
  • France: CNIL (National Commission on Informatics and Liberty)
  • EU: Data protection authority of your country

8. Changes to This Policy

We may update this policy to reflect legal changes or our practices. The current version is always the one available on this page.

Notification of Significant Changes

For substantial changes, we will notify you by email 30 days prior to their effective date.

Last updated: July 17, 2025

© 2025 Amadou Sow. All rights reserved.

Also see:Terms of UseLegal NoticeDonation Policy