Popout

Privacy Policy

Last updated: December 15, 2025

Preamble

David PAVLOVSCHII, operating under the trade name Doved Studio ("We"), places great importance on protecting your personal data. This Privacy Policy describes how we collect, use, store, and protect the personal data of users ("You") of our website accessible at popout.page (the "Site"), in accordance with the General Data Protection Regulation (GDPR - Regulation (EU) 2016/679) and applicable French law.

Article 1 - Data Controller

The data controller for personal data collected via the Site is:

  • David PAVLOVSCHII (Sole Proprietor)
  • Domiciled at 200 rue de la Croix Nivert, 75015 Paris, France
  • Email: hello@dovedstudio.com

Article 2 - Personal Data Collected

We collect different categories of personal data when you use our Site:

Data you provide directly:

  • Via account creation: Your email address, full name, profile photo (optional)
  • Via your portfolio profile: Bio, location, skills, social links, profile picture
  • Via projects: Project titles, descriptions, images, links, status
  • Via experience: Work history, company names, dates, descriptions

Data collected automatically during navigation:

  • Connection and browsing data: Your IP address, browser type and version, operating system, pages visited, visit duration, access dates and times
  • Usage data: Interactions with portfolio features, analytics events
  • Location data: Approximate location based on IP

Article 3 - Purposes of Processing

Your personal data is collected and processed for the following purposes:

  • User account management: Creation, authentication, and management of your account
  • Portfolio hosting: Display and management of your public portfolio
  • Service improvement: Analyzing site usage to improve our features
  • Communication: Sending notifications about your account and service updates
  • Security: Preventing fraud, abuse, and ensuring site security
  • Legal compliance: Complying with legal and regulatory obligations

Article 4 - Legal Basis for Processing

Processing of your personal data is based on the following legal grounds:

  • Your consent (Article 6(1)(a) GDPR): For newsletters, analytical and marketing cookies
  • Contract performance (Article 6(1)(b) GDPR): For account management, portfolio hosting
  • Legitimate interest (Article 6(1)(f) GDPR): For service improvement, site security, anonymized statistics
  • Legal obligation (Article 6(1)(c) GDPR): For retention of certain data in compliance with legal obligations

Article 5 - Data Recipients

Your personal data is processed by Doved Studio. It may also be shared with the following recipients:

  • Firebase (Google): For secure authentication and data storage
  • Vercel Inc.: For website hosting (USA - Standard Contractual Clauses)
  • Stripe Inc.: For secure payment processing (PCI DSS certified)
  • Sanity.io: For content management
  • Competent authorities: Upon legal request and in judicial proceedings

We do not sell or rent your personal data to third parties for commercial purposes.

Article 6 - Data Retention

We retain your personal data for the following periods:

  • Account data: For the duration of service use + 3 years after last login
  • Portfolio data: For the duration of service use + 1 year after account deletion
  • Browsing data: Maximum 13 months
  • Cookies: See our Cookie Policy
  • Billing data: 10 years in accordance with accounting obligations

Article 7 - Your Rights

In accordance with GDPR, you have the following rights:

  • Right of access: Obtain confirmation that your data is being processed and access it
  • Right of rectification: Correct inaccurate or incomplete data
  • Right to erasure: Request deletion of your data (except legal obligations)
  • Right to restriction: Limit processing of your data in certain cases
  • Right to portability: Receive your data in a structured format
  • Right to object: Object to processing of your data
  • Right to withdraw consent: At any time for consent-based processing

To exercise these rights, contact us at: hello@dovedstudio.com

You can also file a complaint with the CNIL: www.cnil.fr

Article 8 - Data Security

We implement appropriate technical and organizational measures to protect your data:

  • HTTPS encryption for all connections
  • Secure authentication with Firebase Auth
  • Password hashing
  • Restricted access to personal data
  • Regular backups
  • Continuous security monitoring

Article 9 - Cookies

Our site uses cookies to improve your experience. For more information, see our Cookie Policy.

Article 10 - Data Transfers Outside EU

Some of our providers (Firebase, Vercel) may process data in the United States. These transfers are governed by:

  • European Commission Standard Contractual Clauses
  • Additional appropriate security measures

Article 11 - Modifications

We reserve the right to modify this policy. Changes will be published on this page with a new update date.

Article 12 - Contact

For any questions regarding this policy or your personal data:

  • Email: hello@dovedstudio.com
  • David PAVLOVSCHII, 200 rue de la Croix Nivert, 75015 Paris, France
Privacy Policy | popout.page