Privacy Policy

Updated on 10 October 2025

1. Introduction and ForYield’s commitment

ForYield attaches paramount importance to the protection of personal data and to transparency in its processing.
This Privacy Policy describes the conditions under which ForYield SAS (“ForYield”, “we”, “us”) collects, uses, stores and protects the personal information of users of its website and services.

2. Data Controller

The data controller is ForYield SAS, a French société par actions simplifiée with share capital of €1,000, registered with the Paris Trade and Companies Register under number 989 493 200, whose registered office is at 60 rue François 1er, 75008 Paris.
Contact: contact@for-yield.com

3. Hosting providers and technical infrastructure

  • Marketing website: hosted by Webflow, Inc. (infrastructure located within the European Union, with potential transfers to the United States under the Data Privacy Framework).
  • Application and transactional services: hosted by Render.com (secure cloud infrastructure).
  • Domain name: managed by Gandi SAS, France.

4. Data collected

ForYield collects only data that is strictly necessary:

  • identity, contact details, identity documents;
  • financial and operational information for user accounts;
  • minimal technical data (IP address, connection logs) for security purposes;
  • no behavioural, marketing or analytics tracking data is collected.

5. Purposes and legal bases of processing

Processing is based on:

  • performance of a contract (account creation and management, provision of services);
  • compliance with legal and regulatory obligations, in particular those relating to AML/CFT and the European MiCA Regulation;
  • ForYield’s legitimate interest in ensuring the security, maintenance and improvement of its services.

6. Data of professional users

For legal entities (companies, advisers, partners), ForYield processes the data of the legal representative and the documents required for KYB verification: articles of association, trade register extract, identity of beneficial owners.
The rights provided for under the GDPR apply in the same manner to these users.

7. Data retention

Data are retained for the period strictly necessary for the purposes of processing:

  • for the duration of the contractual relationship and up to a maximum of 5 years after its end to comply with legal obligations;
  • security technical logs are retained for 12 months.
    Beyond these periods, data are deleted or anonymised.

8. International transfers

Certain processing operations may involve a transfer to the United States (Webflow or Render hosting).
Such transfers are governed by the European Commission’s adequacy decision of 10 July 2023 relating to the EU–US Data Privacy Framework, ensuring a level of protection equivalent to that required by the GDPR.

9. Rights of data subjects

Each user has the following rights:

  • right of access, rectification and erasure;
  • right to restriction and portability;
  • right to object to processing.

Any request must be sent to contact@for-yield.com. ForYield may request proof of identity before processing the request.
If an issue remains unresolved, the user may lodge a complaint with the CNIL (www.cnil.fr).

10. Security and confidentiality

ForYield implements technical and organisational measures consistent with industry standards: encryption, access control, secure backups, continuous monitoring.
Only authorised personnel bound by confidentiality obligations may access the data.

11. Updates to this Policy

ForYield may amend this Policy at any time to reflect regulatory or technical developments.
Any material change will be notified on the website prior to its entry into force.

12. Contact

For any questions regarding personal data protection or this Policy:
contact@for-yield.com