Humble Planning

Privacy Policy

Last updated: 31 March 2026

This Privacy Policy is governed by French law and the EU General Data Protection Regulation (GDPR).

1. Data Controller

The data controller for personal data collected through the Humble Planning platform is:

  • Owner: Anthony ROYER (Sole Proprietor)
  • Trade name: Humble Planning
  • Registered office: 2 Rue des Palombes, 14790 Fontaine-Etoupefour, France
  • SIRET: 849 211 701 00032
  • Contact:

2. Data Collected

In connection with the use of the Humble Planning platform, we collect the following categories of data:

2.1 Identification Data

  • First name and last name
  • Professional email address
  • Phone number (optional)
  • Profile picture / avatar (optional)
  • Login identifier

2.2 Planning Data

  • Tasks, projects, and assignments
  • Planned and actual working hours
  • Certifications and qualifications
  • Teams and business units

2.3 Technical Data

  • IP address
  • Browser type and version
  • Session and authentication data
  • Audit logs (actions performed within the application)

2.4 Contact Form Data

  • Name, first name, email address, phone number (optional), company (optional)
  • Message content
  • Sender's IP address (for security and abuse prevention purposes)

3. Purposes of Processing

Personal data is processed for the following purposes:

  • Service provision: user account management, task scheduling, team and project management.
  • Security: authentication, detection of unauthorised access, action auditing, intrusion prevention.
  • Service improvement: anonymised usage analysis to improve usability and features.
  • Communication: sending service-related notifications (task assignments, reminders, alerts).
  • Legal obligations: compliance with accounting and tax obligations.

4. Legal Basis for Processing

Data processing is based on the following legal grounds:

  • Performance of the contract: processing is necessary for the performance of the service agreement (Terms of Use) to which the User has subscribed.
  • Legitimate interest: securing the platform, fraud prevention, service improvement.
  • Legal obligation: retention of invoicing and connection data in accordance with French legislation.
  • Consent: for non-essential cookies and marketing communications (where applicable).

5. Data Retention Period

  • Account data: retained for the duration of the contract, then 3 years after cessation of the service (for reactivation and legal obligation purposes).
  • Planning data: retained for the duration of the contract. Deleted or anonymised within 30 days of account deletion.
  • Audit logs: retained for 12 months (configurable by the instance administrator).
  • Invoicing data: retained for 10 years in accordance with accounting obligations.
  • Cookies: maximum duration of 13 months.

6. User Rights

In accordance with the General Data Protection Regulation (GDPR) and the French Data Protection Act (Loi Informatique et Libertes), you have the following rights:

  • Right of access: obtain confirmation that your data is being processed and receive a copy thereof.
  • Right to rectification: have inaccurate or incomplete data corrected.
  • Right to erasure: request the deletion of your data under the conditions provided by law.
  • Right to data portability: receive your data in a structured, commonly used, and machine-readable format.
  • Right to object: object to the processing of your data on legitimate grounds.
  • Right to restriction: request the restriction of processing of your data.

To exercise your rights, contact us: . We shall respond within a maximum of 30 days.

You may also lodge a complaint with the CNIL (Commission Nationale de l'Informatique et des Libertes): www.cnil.fr

7. Cookies

The Humble Planning platform uses cookies strictly necessary for the operation of the service (session cookies, authentication cookies, preference cookies).

Optional cookies (audience analytics) may be used subject to your consent, obtained via our cookie management banner.

You may modify your cookie preferences at any time via the banner accessible from the website footer.

8. Data Transfers

Your data is stored in France on PulseHeberg infrastructure, managed by Humble Planning. Data centres are located in Paris and Marseille, certified ISO 27001 and HDS. No data transfers outside the European Union are carried out.

If you choose to enable the AI module (MCP), natural language queries are transmitted to the AI provider (Anthropic) via encrypted connections. Only the data necessary for processing the query is transmitted. No data is retained by the AI provider beyond the query.

9. Data Security

We implement appropriate technical and organisational measures to protect your data:

  • Password encryption with Argon2id
  • Two-factor authentication (2FA TOTP)
  • Communication encryption (HTTPS / TLS)
  • Robust password policies (history, blacklist, complexity)
  • Brute-force protection and captcha
  • Comprehensive audit trail of all actions
  • Regular encrypted backups
  • Role-based access control (RBAC)

10. DPO Contact

For any question regarding the protection of your personal data, you may contact our Data Protection Officer:

  • Email:
  • Post: Humble Planning — DPO, 2 Rue des Palombes, 14790 Fontaine-Etoupefour, France