Privacy Policy

Account data

• Email address, bcrypt-hashed password, first name, last name
• Phone number, postal address (street, city, postal code, country)
• Company name, website, biography
• Purpose: account management, authentication, billing, user profile
• Legal basis: contract performance
• Retention: duration of subscription + 3 months

Catalog data

• Furniture listings: titles, descriptions, prices, dimensions, materials, condition, style, period, categories per marketplace
• Photos stored on our servers, perceptual hashes (pHash) for duplicate detection
• Templates, scraped furniture, variations, deleted furniture (trash)
• Sale data: sale price, platform, date
• Purpose: core service functionality
• Legal basis: contract performance
• Retention: duration of account + 30 days (trash: 90 days)

Marketplace credentials

• Marketplace usernames stored in plaintext (required for login on behalf of the user)
• Marketplace passwords encrypted with Fernet (AES-128-CBC + HMAC-SHA256)
• IMAP email addresses stored in plaintext, IMAP passwords encrypted with Fernet
• IMAP server details (hostname, port, SSL setting)
• Purpose: publishing and 2FA management on behalf of the user
• Legal basis: contract performance
• Retention: until disconnection from the marketplace

AI-generated content

• Product photos (transmitted to the Anthropic API as base64 JPEG images for visual analysis)
• Text prompts containing product descriptions, dimensions, categories
• Full AI responses (raw text)
• Token consumption, cost, processing duration
• User email address linked to each generation request
• Purpose: content generation for product listings
• Legal basis: contract performance
• Retention: 12 months (photos are not stored by Anthropic)

Publication data

• Task history: status, errors, duration, logs, site name
• Screenshots of marketplace pages during publish/remove operations (may incidentally capture data visible on marketplace pages)
• Network request logs from publishing tasks
• External listing IDs and published URLs
• Purpose: service monitoring, debugging, proof of publication
• Legal basis: legitimate interest
• Retention: screenshots and network logs 90 days, task history 12 months

Police book data (third-party personal data)

The digital police book, required by French law (articles R.321-1 to R.321-8 of the Penal Code) for antique dealers, requires collection of personal data about third parties (sellers and buyers).

Third-party data collected:

• Full name, date of birth, full address
• Identity document type (national ID, passport, driving license, residence permit)
• Identity document number, expiry date, issuing authority
• For legal entities: company name, SIRET number, headquarters address, representative name and ID

Object data: nature, description, brand, model, serial number, distinctive signs, provenance, historical monument status, purchase price, estimated value, payment method.

This data is stored in an append-only, tamper-proof format (SHA-256 hash chain). It cannot be modified or deleted, in compliance with French law. An audit log tracks all access to the police book. Retention: minimum 6 years.

Billing data

• User name, email, company information on invoices
• Invoice numbers, amounts, VAT, billing periods
• Purpose: legal accounting obligation
• Legal basis: legal obligation
• Retention: 10 years

Technical data

• Activity logs: 15 action types (login, logout, create/edit/delete furniture, publish, unpublish, sell, AI generation, template, photo upload, profile update) with timestamps
• IP addresses (collected in activity logs and cookie consent records)
• User-Agent strings (collected in activity logs and cookie consent, truncated to 500 characters for consent)
• Session cookie, CSRF token
• Cookie consent records (choices, timestamp, policy version, anonymous UUID for non-authenticated visitors)
• WebAuthn public keys (biometric authentication — no biometric data stored server-side)
• WebAuthn challenges (temporary, 5-minute expiry)
• Push notification subscriptions (browser endpoint URL, encryption keys)
• Purpose: security, authentication, GDPR compliance
• Legal basis: contract performance, legal obligation, consent (biometrics, push notifications)

Transactional emails sent

Email type	Content	Trigger
Password reset	Temporary reset link	User request
Account invitation	Activation link	Admin creates account
Marketplace connection failure alert	Site name, error type	Connection test failure (production only)
Invoice	PDF attachment with invoice details	Invoice issued
Incomplete AI generation	Generation details	Partial AI generation failure

Emails are sent via SMTP (configurable server, TLS required). Recipient email addresses are used solely for sending and are not shared with third parties.

Recipient	Data shared	Country	Safeguards
Hosting provider (being finalized)	All data	France	Dedicated server, data hosted in France
Anthropic (Claude API)	Product photos (base64), descriptive text for AI generation	USA	Standard contractual clauses, no training data retention
SMTP provider (being finalized)	Recipient email addresses, email content	Being finalized	TLS required
Marketplaces (16 platforms)	Listings, photos, prices — transmitted on behalf of the user	Various (EU, USA, CH)	Required for service, each platform has its own privacy policy
Browser push services (Google FCM, Apple APNs, Mozilla)	Push endpoint, notification content	USA	Inherent to Web Push standard (W3C)

Marketplace login credentials are never shared with third parties. They are used exclusively by Antiks servers to connect to platforms on behalf of the user.

• Account passwords hashed with bcrypt
• Marketplace passwords encrypted with Fernet (AES-128-CBC + HMAC-SHA256, key derived from environment variable)
• Marketplace usernames stored in plaintext (required for login on behalf of the user)
• IMAP passwords encrypted with Fernet (same method)
• IMAP email addresses and server settings stored in plaintext (required for connection)
• All communications encrypted via HTTPS
• Strict per-user data isolation (each user can only access their own data)
• Database with authentication and secure connection pooling
• Police book with SHA-256 hash chain (guaranteed integrity, tamper-proof, append-only)
• Password reset tokens are time-limited and deleted after use
• WebAuthn biometric authentication: only public keys are stored server-side; no biometric data (fingerprints, face scans) ever leaves the user's device

Under the GDPR (Articles 15-22), you have the right to:

To exercise these rights: email contact@antiks.fr with proof of identity. Response within 30 days.

You may also lodge a complaint with the CNIL (French data protection authority, www.cnil.fr) or your local supervisory authority.

Individuals whose data is recorded in a user's police book have the same rights of access and rectification. However, in compliance with French law, police book data cannot be deleted (minimum 6-year legal retention). For any request, contact contact@antiks.fr.

Data may be transferred outside the EU/EEA when:

• Anthropic API (USA): product photos and text for AI generation — standard contractual clauses
• International marketplaces (eBay USA, Etsy USA, Ricardo Switzerland, etc.): listings, photos, prices — necessary for service performance as requested by the user
• Browser push services (Google, Apple, Mozilla — USA): notification endpoints — inherent to the Web Push standard

We may update this policy. Significant changes will be communicated by email. The last update date is indicated at the top of this page.

For any questions regarding this policy or to exercise your rights: