Last updated: January 09, 2026
What is the purpose of our Privacy Policy?
P5 Tech, which manages the app.getallia.ai platform, attaches great importance to the protection and confidentiality of your personal data, which we consider to be a guarantee of our reliability and trustworthiness.
As such, our Privacy Policy clearly demonstrates our commitment to ensuring compliance within P5 Tech with the applicable rules on personal data protection, and in particular those of the General Data Protection Regulation ("GDPR").
In particular, our Privacy Policy aims to inform you about how and why we process your personal data in connection with the services we provide to you.
Who is our Privacy Policy for?
Our Privacy Policy applies to you, regardless of your place of residence, as long as you are at least 15 years old and are a user of our app.getallia.ai platform.
If you are under the legal age specified above, you are not authorized to use our services without the prior and explicit consent of one of your parents or the holder of parental authority, which must be sent to us by email at dpo@getallia.com.
If you believe that we hold personal data about your children without your consent, please contact us at the dedicated address detailed above.
Why do we process your personal data and on what basis?
We process your personal data primarily for the following reasons:
To use and benefit from our service and all its features based on our terms and conditions of use.
To benefit from our technology based on an artificial intelligence tool that allows, for example, the analysis of your correspondence, the classification of your documentation, the generation of summaries, etc., based on our general terms and conditions of use.
To manage user accounts (e.g., account creation, access to the service, and account deletion) based on our terms and conditions of use.
To write free comments on the management of your files based on our terms and conditions of use.
To receive our technical emails (e.g., password changes, etc.) based on our legitimate interest in ensuring the security of your account and providing you with the information necessary for the proper functioning of the service.
To be able to download and import documents onto our platform based on our terms and conditions of use.
To guarantee and enhance the security and quality of our services on a daily basis (e.g., statistics, data security, access control, technical logging, etc.) based on our legal obligations, our terms and conditions of use, and our legitimate interest in ensuring the proper functioning of our services.
To improve our service, based on our legitimate interest in providing you with continuous service.
Your data is collected directly from you when you use our app.getallia.ai platform, and we undertake to process your data only for the reasons described above.
What personal data do we process and for how long?
We have summarized below the categories of personal data and their respective retention periods:
Professional identification data (e.g., last name, first name, position, company, etc.) and contact details (e.g., email address and work phone number, etc.) are retained for the entire duration of the service provision, plus the legal limitation periods, which are generally five years.
Email address for receiving our technical messages is retained until your account is deleted.
The content of your electronic communications (internal and external) with your customers and employees is retained until your account is deleted.
Documentation on the platform that may contain personal data, including accounting and tax data related to your customers, is retained until your account is deleted.
Connection data (e.g., logs, IP address, etc.) is stored for a period of one year.
Once the applicable retention periods have expired, the deletion of your personal data is irreversible and we will no longer be able to provide it to you after this period. At most, we can only retain anonymous data for statistical purposes.
Please also note that in the event of a dispute, we are required to retain all data concerning you for the entire duration of the case, even after the expiry of the retention periods described above.
What rights do you have to control the use of your personal data?
The applicable data protection regulations grant you specific rights that you can exercise at any time and free of charge in order to control how we use your data.
Right to access and copy your personal data, provided that this request does not conflict with business secrecy, confidentiality, or the secrecy of correspondence.
Right to rectify personal data that is inaccurate, obsolete, or incomplete.
Right to object to the processing of your personal data when it is based on our legitimate interest, unless there are legitimate and compelling reasons that justify this processing and prevail over your interests, rights, and freedoms.
Right to request the erasure ("right to be forgotten") of your personal data that is not essential to the proper functioning of our services.
Right to restrict your personal data, which allows you to photograph the use of your data in the event of a dispute over the legitimacy of processing.
Right to the portability of your data, which allows you to retrieve some of your personal data in order to store it or easily transfer it from one information system to another.
Right to give instructions on the fate of your data in the event of death, either through you, a trusted third party, or a beneficiary.
For a request to be considered, it must be made directly by you or your representative at dpo@getallia.com.
Requests cannot be made by anyone other than you or your representative. We may therefore ask you to provide proof of identity if we have doubts about the identity of the applicant, as well as proof of representation.
We will respond to your request as soon as possible, within a maximum of one month of receipt, unless the request is technically complex or we receive numerous requests at the same time. In this case, the response time may be up to three months.
Please note that we may refuse to respond to any excessive or unfounded requests, particularly if they are repetitive in nature.
Who can access your personal data?
Your personal data is processed by our teams and our technical service providers for the sole purpose of operating our service.
We would like to point out that we check all our technical service providers before recruiting them to ensure that they strictly comply with the applicable rules on personal data protection.
When we provide you with our artificial intelligence features, we assure you that we only use providers that process data in Europe or in a region considered to be in compliance with applicable European rules on personal data protection.
FURTHERMORE, WE GUARANTEE THAT WE WILL NEVER TRANSFER OR SELL YOUR DATA TO THIRD PARTIES OR BUSINESS PARTNERS.
How do we protect your personal data?
We implement the following technical and organizational measures to ensure the security of your personal data on a daily basis and, in particular, to combat any risk of destruction, loss, alteration, or disclosure.
Technical security measures
Anti-bot for users (back end)
Encryption of user passwords (back-end)
Automatic logout of user accounts (back-end) after a period of inactivity
Two-factor authentication for users (back-end),
Complex passwords required for users (front-end) when logging in
Complex passwords required for users (back end) when logging in
Encryption of the "users" database at rest and in transit (TLS and AES-256)
HTTPS protocol
Regular audits and penetration tests
Access traceability
Complex passwords for P5 Tech team terminals
Duplication of the user database on backup servers
Organizational security measures
Access badge
Information systems charter
Authorization and password management policy
Data breach management procedure
Procedure for managing personal rights
Rules of conduct
Awareness and training for teams twice a year
Do we use cookies when you browse our platform?
We guarantee that we do not use any advertising cookies for the operation of this platform.
However, we would like to inform you that we use statistical cookies when you browse our platform. For more information, please see our Cookie Policy.
Who can you contact for more information about the use of your personal data?
To best ensure the protection and integrity of your data, we have officially appointed an independent Data Protection Officer (DPO) to our supervisory authority.
You can contact our DPO at any time, free of charge, at dpo@getallia.com to obtain more information or details about how we process your data.
How can you contact the CNIL?
You can contact the “Commission nationale de l'informatique et des libertés” or “CNIL” at any time at the following address: CNIL Complaints Department, 3 place de Fontenoy – TSA 80751, 75334 Paris Cedex 07 or by telephone on 01.53.73.22.22.
Can the Privacy Policy be changed?
We may modify our Privacy Policy at any time to adapt it to new legal requirements and to new processing methods that we may implement in the future.