Privacy Policy
Protection of your personal data according to GDPR
Privacy Policy of My prophea
Last updated: October 1, 2025
1. Introduction
RDI CORDIER, located in St-Prex, Switzerland (hereinafter "we", "our" or "us"), is committed to protecting the privacy and security of our users’ personal data. This Privacy Policy explains how we collect, use, share, and protect personal data when you use our products, including our astrology product "My prophea" (hereinafter the "Service"), which includes our mobile application and website.
This document has been written in compliance with the Swiss Federal Act on Data Protection (nFADP) and, where applicable, the General Data Protection Regulation (GDPR) of the European Union.
By using our Service, you acknowledge that you have read and understood this Privacy Policy.
2. Data Controller
The entity responsible for processing your personal data is:
RDI CORDIER
Route de Buchillon, St-Prex, VD, Switzerland
Email: rdicordier@proton.me
Subject: Privacy
For any questions regarding this policy or to exercise your rights, please contact us at the email address above.
3. Data We Collect
We collect different categories of data to provide and improve our Service.
Data You Provide Directly
- Registration Data: When you create an account, we collect your first name, last name, and email address.
- Astrological Data (sensitive data): To generate your personalized horoscopes and astrological analyses, we ask for your date of birth, exact time of birth, and place of birth (city and country). This information is considered sensitive and is processed with a particularly high level of protection.
- Payment Data: If you make purchases through our Service, payment information (credit card number, etc.) is collected and processed directly by our secure payment providers. We do not store this information on our servers.
- Communications: When you contact us for customer support or any other reason, we keep a record of our correspondence.
Data We Collect Automatically
- Usage and Device Data: We collect information about how you interact with our Service, including your IP address, device type and model, operating system, time zone, language settings, and unique device identifiers.
- Cookies and Similar Technologies: We use cookies and other technologies to operate the Service, analyze its usage, and enhance your experience.
4. How and Why We Use Your Data (Purposes and Legal Bases)
We process your personal data based on strict legal grounds and for specific purposes, as detailed in the table below.
| Purpose of Processing | Categories of Data Used | Legal Basis (nFADP / GDPR) |
|---|---|---|
| Provision of the Service (creation of birth charts, horoscopes, etc.) | Registration Data, Astrological Data | Performance of a Contract |
| User Account Management | Registration Data | Performance of a Contract |
| Payment Processing for paid services | Payment Data, Registration Data | Performance of a Contract |
| Service Improvement and Analysis | Usage and Device Data | Legitimate Interest (to improve our offering) |
| Customer Support and Communication | Registration Data, Communications | Performance of a Contract and Legitimate Interest |
| Sending Marketing Communications (newsletters, offers) | Registration Data | Consent (which you may withdraw at any time) |
| Compliance with Legal Obligations (tax, accounting) | Payment Data, Registration Data | Legal Obligation |
| Security and Fraud Prevention | All categories | Legitimate Interest (to protect our Service and users) |
We do not sell or rent your personal data to third parties.
5. Data Sharing
We only share your personal data with trusted third parties in the following cases:
- Service Providers: We use third-party companies to help us provide the Service, including data hosting (on secure servers in Switzerland and/or the European Union), Service usage analysis, and payment processing. These providers have access to your data only to perform these tasks on our behalf and are required not to disclose or use it for other purposes.
- Legal Obligations: We may disclose your data if required by law, court order, or a request from a public authority.
- Business Transfer: In the event of a merger, acquisition, or sale of all or part of our assets, your personal data may be transferred to the acquiring entity.
6. Data Security and Retention
Security
We implement appropriate technical and organizational security measures to protect your personal data from destruction, loss, alteration, unauthorized disclosure, or access. However, no method of transmission over the Internet or electronic storage is 100% secure.
Retention
We retain your personal data for as long as your account is active and as necessary to fulfill the purposes described in this policy. We also retain it to comply with our legal obligations (e.g., accounting), resolve disputes, and enforce our agreements. After this period, we securely delete or anonymize your data.
7. Your Data Protection Rights
In accordance with the nFADP and GDPR, you have the following rights regarding your personal data:
- Right to Information: The right to be clearly informed about how your data is used.
- Right of Access: The right to obtain a copy of the data we hold about you.
- Right to Rectification: The right to request correction of inaccurate or incomplete data.
- Right to Erasure ("Right to be Forgotten"): The right to request deletion of your data, subject to our legal retention obligations.
- Right to Restrict Processing: The right to request limitation of the use of your data in certain circumstances.
- Right to Data Portability: The right to receive your data in a structured format and transfer it to another data controller.
- Right to Object: The right to object to the processing of your data, particularly for marketing purposes.
To exercise any of these rights, please contact us at the email address provided in Section 2. We will respond to your request as soon as possible, in accordance with applicable law.
8. International Data Transfers
As a Swiss company, we primarily process and store your data in Switzerland and within the European Union. Switzerland benefits from an adequacy decision by the European Commission, meaning it provides a level of data protection equivalent to that of the EU.
If we need to transfer data to a country not recognized as adequate, we will implement appropriate safeguards, such as the European Commission’s Standard Contractual Clauses, to ensure your data remains protected.
9. Children’s Protection
Our Service is not intended for individuals under the age of 16. We do not knowingly collect personal data from children under 16. If you become aware that a child has provided us with personal data without parental consent, please contact us.
10. Changes to This Policy
We may update this Privacy Policy from time to time. In case of major changes, we will notify you through our Service or by email before the change takes effect. We encourage you to review this page regularly.
11. Procedure for account and personal data deletion
In accordance with Regulation (EU) 2016/679 (GDPR), any user may request the deletion of their account and personal data by sending an email to rdicordier@proton.me
with the subject line: account deletion.
This email must be sent from the address used with our service.
Upon receipt and verification of the requester’s identity, the account will be deactivated and then deleted within a maximum of 30 days.
Data will be erased from our active servers and backup systems within a maximum of 90 days.
Certain information may be temporarily retained where required by law (e.g., accounting, tax, or security obligations) or for the establishment, exercise, or defense of legal claims. Such data is isolated, access-restricted, and deleted upon expiry of the applicable statutory retention periods.
The user will be notified by email once deletion is effective.