GDPR Policy

Last Updated on January 30, 2025

The General Data Protection Regulation (GDPR) introduces new responsibilities
for companies like Furious that process personal data. GDPR also grants
new rights to individuals whose data is processed, including the right to be forgotten
and the right to data portability.

Since our inception, personal data protection has always been a priority, and Furious
has already taken all necessary measures to comply with GDPR, ensuring that our services
operate within a safe and transparent legal framework.

Among the measures we have implemented to ensure GDPR compliance:

• Establishing clear contractual agreements outlining the obligations and responsibilities
  of Furious and our clients regarding the collection and processing of personal data.
  • It should be noted that within the scope of our services, Furious acts as a data processor
    for our clients. Therefore, it is also incumbent upon our clients to ensure that their operations
    comply with GDPR, particularly concerning the collection, use, and storage
    of personal data transmitted to Furious.
• Maintaining a record of processing activities to track and update all
  data processing activities.
• Implementing procedures to secure personal data and minimize
  the risk of data breaches, as well as protocols for informing the CNIL in the event of such incidents.

To learn more about how Furious uses your data, you can consult our

Data Protection Policy
.

Note on the Google Sheets™ Extension

The Furious Google Sheets™ extension allows data to be transferred from a sheet to Furious™.
No information regarding the user’s Google™ account is transferred.

To perform this operation, the user must have a Furious™ account and possess
the necessary rights.

The transferred data remains the property of the user. Under no circumstances does Furious™
share this data or make it public.

The raw data transferred is only retained for the duration of the processing.
It is then deleted within a maximum of 48 hours.

How does data transfer from the Google Sheets™ sheet work?

1. The user requests a transfer ID in the Furious™ application. This ID
   is a unique key that expires after 48 hours.
2. The user then copies this key into the modal window of the Furious™
   extension for Google Sheets™. Once the key is validated, the sheet data is sent
   to Furious™ via an API.

Google Data Access

The user logs into Google Sheets™. Furious™ does not intervene
in the identification process. The user then installs the Furious™ extension
for Google Sheets™ from Google Marketplace™ and accepts the terms of
the consent screen. No information regarding the user’s Google™ account
is transferred to Furious™.

Data Usage

The use and transfer by the Furious™ Google Sheets™ extension of any
information received from Google APIs will be in accordance with the

Google API Services User Data Policy
,
including the Limited Use requirements.

Once the extension is installed, the user has a new “Furious” menu in Google Sheets™.
By selecting “Export data to Furious” from this menu, a modal window containing a form
opens.

This form contains an ID field where the user must paste the unique transfer ID
provided by the Furious™ application.

When the user validates the form with the “Send” button, the data from the active Google Sheets™ sheet
is transmitted to the user’s Furious™ application via a secure API.
This data is then stored in the database of the user’s Furious™ instance.

Data Storage

The transferred data remains the property of the user. Each user has their own
Furious™ instance with its own database. The raw data transferred is temporarily stored
in the database of the user’s Furious™ instance. Once the data is transferred,
the user can validate it and choose whether or not to import it into their Furious™ application.

Data Sharing

Furious™ does not share this data with third parties in any way. The data is
only used within the scope of the Furious™ application’s functionalities and in accordance
with the user’s choices.

Data Security and Deletion

Data is transmitted and stored securely. Raw data is retained for
the duration of the processing and is deleted within a maximum of 48 hours after transfer.
The user can choose to delete or manage their data in their own Furious™ instance at any time.

Data Transfer Process

1. The user requests a transfer ID (unique ID) in the Furious™ application.
2. The user pastes this ID into the form in the modal window of the Furious™ extension for Google Sheets™.
3. By clicking “Send”, the data from the active Google Sheets™ sheet is sent to
   the user’s Furious™ application via a secure API.
4. The user validates the data received in their Furious™ application and chooses
   whether or not to import it.

Note on Google Calendar™ Integration

In accordance with our commitment to data protection and privacy, Furious™ offers
an integration feature with Google Calendar™, allowing users to synchronize
events and tasks between the two platforms.

This integration operates according to the following GDPR-compliant principles:

• Data Minimization: Only the data necessary for synchronization
  —specifically, calendar events and their metadata—is accessed and processed.
• User Consent: Activating the integration requires
  the user’s explicit consent. The user can revoke access at any time
  by deactivating the integration in their account settings.
• Data Security: All data transmitted between Furious™ and
  Google Calendar™ is encrypted during transfer and at rest, ensuring protection
  against unauthorized access.
• Data Usage: The accessible data is used exclusively
  to enable the synchronization service and is not used for any other purpose.
• Third-Party Compliance: Our use and transfer of information
  received from Google APIs comply with the
  
  Google API Services User Data Policy
  , including the Limited Use requirements.

Users retain the right to access, rectify, or delete their synchronized data
in accordance with GDPR provisions. For more information on how we manage
personal data, please consult our Data Protection Policy.

Note on the Furious™ Drive-Connector

Introduction

Furious is committed to protecting your privacy. This addendum describes how we manage
personal data within the “Furious™ Drive-Connector” feature, which integrates
Google Drive™, Google Docs™, Google Sheets™, and Google Forms™ with our ERP system.

Data Collection and Use

When you use the “Furious™ Drive-Connector”, we collect and process
the following information:

• Google™ Account Information: With your explicit consent,
  we access your Google™ account details to facilitate authentication and integration
  with our ERP system.
• Google Drive™ Files and Metadata: With your permission, we access
  and manage files and their metadata in your Google Drive™ to associate them with your
  projects in Furious™.

Purpose of Data Processing

The collected data is used solely for:

• Authenticating your Google™ account with Furious™.
• Enabling the association of Google Drive™ documents with your projects in Furious™.
• Allowing the creation of new Google Docs™, Google Sheets™, Google Forms™
  and Google Slides™ directly from Furious™.

Data Storage and Security

We securely store the following information:

• Access Tokens: These are recorded to allow for
  future connections without repeated authentication.
• Google™ File IDs: These are recorded to maintain
  the link between your Furious™ projects and associated Google™ documents.

All data is encrypted and stored in separate databases for each client,
ensuring data isolation and security.

Data Sharing

We do not share your Google™ account information or any associated data
with third parties. The data is used exclusively within the scope of the Furious™ application’s functionalities,
in accordance with your instructions.

User Control

You have full control over the integration:

• Revocation of Access: You can revoke the application’s access
  to your Google™ account at any time. Once the revocation is complete, we delete
  the stored access tokens. You will then need to re-authenticate if you wish
  to use the integration again.
• Management of Linked Documents: You can add or remove
  Google™ documents linked to your projects in Furious™ as you wish.

Compliance with the Google™ API Services User Data Policy

Our use and transfer of information received from Google™ APIs
comply with the Google™ API Services User Data Policy, including the Limited Use requirements.

Data Minimization: Only information strictly necessary for creating and managing meetings is processed (title, date, time, video conference link).

User Consent: Activating the integration requires explicit user consent. The user can revoke access at any time from their Furious™ account settings or within their Google™ account.

Data Security: Data exchanged between Furious™ and Google Meet™ is transmitted via secure and encrypted APIs. Furious™ does not retain meeting content, audio/video streams, or transcripts.

Limited Use: Accessible data is used solely within the scope of the meeting scheduling and participation functionality. It is neither shared with third parties nor exploited for other purposes.

Compliance: The use and transfer of information received from Google APIs comply with the Google API Services User Data Policy, including the Limited Use requirements.

Users retain the ability to manage, rectify, or delete their information related to Google Meet™ integration at any time in accordance with the GDPR and our Data Protection Policy.