Privacy Policy

3.1 Data provided directly by the User

When signing up, creating a Dashme Account, or using service features, the User may provide:

• identification and contact data (phone number, email address, or any identifier needed to create and manage the Dashme Account);
• profile and Account data needed to access and use the service;
• information shared with support or in a complaint.
• When identification or verification procedures are required, the User may also provide:
• information from valid identity documents,
• or any other information needed to meet legal, regulatory, or security obligations.

3.2 Data related to service usage

For executing Transactions and using the Dashme service, the following data may be collected:

• Transaction data, including amounts, dates, references, statuses, and identifiers of the parties involved;
• data on the balance and activity history of the Dashme Account;
• data required for fraud prevention, service security, and regulatory compliance.

3.3 Technical and connection data

When accessing and using the Dashme App, Dashme may automatically collect:

• data about the device used (device type, operating system, App version);
• connection and usage data such as IP address, access logs, date and time of access;
• information needed for proper operation, security, and improvement of the service.

3.4 Data collected from third parties

In some cases, Dashme may receive personal data about the User from financial partners, technical providers, or other authorized third parties, only when needed to provide the service, execute Transactions, or meet legal obligations.

3.5 Mandatory or optional data

Data identified as necessary to provide the service is mandatory.

Refusing to provide certain personal data may make it impossible to access all or part of the Dashme service or some features.

4.1 Provision and management of the Dashme service

• enabling User sign-up and creation of the Dashme Account;
• ensuring access to and use of the Dashme App;
• executing peer-to-peer payment Transactions initiated by Users;
• managing balance, history, and tracking of Transactions;
• ensuring the service functions technically.

4.2 Security, fraud prevention, and compliance

• ensuring the security of the service and Transactions;
• preventing, detecting, and combating fraudulent, abusive, or unlawful uses;
• verifying Users’ identities when required;
• meeting legal, regulatory, and compliance obligations applicable to Dashme and its partners.

4.3 Support, communication, and User relations

• responding to support requests, claims, and disputes;
• communicating with the User about service use, Transactions, or the ToS;
• informing the User about updates, changes, or evolutions of the Dashme service.

4.4 Service improvement and optimization

• analyzing use of the Dashme service;
• improving features, performance, and user experience;
• developing new services or features, in compliance with applicable laws.

4.5 Administrative and internal management

• Dashme’s internal, administrative, and accounting management;
• risk management, audits, and internal controls;
• protecting Dashme’s rights and legitimate interests, including in the event of disputes.

5.1 Performance of a contract

Processing is necessary to perform the contract between the User and Dashme, as set out in the Terms of Service, notably to:

• create and manage the Dashme Account;
• provide the Dashme service;
• execute and monitor Transactions;
• manage the User relationship.

5.2 Compliance with legal and regulatory obligations

Some personal data is processed so Dashme can meet legal and regulatory obligations, including:

• security obligations and prevention of fraudulent or unlawful activities;
• data retention obligations imposed by law;
• obligations arising from injunctions or requests from competent authorities.

5.3 Legitimate interest

Dashme may process certain personal data based on its legitimate interest, particularly when needed for:

• improving, securing, and optimizing the Dashme service;
• preventing fraud and managing risks;
• defending Dashme’s rights and interests, including in disputes.

Dashme ensures its legitimate interests do not disproportionately infringe Users’ fundamental rights and freedoms.

5.4 User consent

Where required by law, some processing is based on the User’s prior consent, which can be withdrawn at any time without affecting the lawfulness of processing carried out before withdrawal.

6.1 Dashme Account data

• for the entire lifetime of the Dashme Account;
• then, after Account closure, for a limited period needed for:
• complying with legal and regulatory obligations,
• handling potential disputes,
• and defending Dashme’s rights and interests.

6.2 Transaction data

• for executing, tracking, and ensuring traceability of Transactions;
• to meet applicable legal, accounting, tax, or regulatory obligations;
• and, where relevant, to handle claims or audits.

6.3 Technical and security data

• kept for a limited time proportional to the purposes, notably for:
• fraud prevention,
• security incident detection,
• and improvement of the Dashme service.

6.4 Data used for support and communication

Data collected through support interactions, claims, or communications with the User is retained for the time needed to handle the request, then archived or deleted under Dashme’s internal rules.

6.5 Deletion, anonymization, and archiving

• At the end of applicable retention periods, personal data is either:
• deleted,
• irreversibly anonymized,
• or securely archived when required by law.
• Dashme applies internal procedures to ensure retention periods are met and data is safeguarded throughout its lifecycle.

7.1 Partners and service providers

• hosting and infrastructure providers;
• security, maintenance, or technical analysis providers;
• financial partners or payment service providers involved in executing Transactions.
• These third parties act as processors and handle personal data only on Dashme’s instructions, under strict contractual confidentiality, security, and data protection obligations.

7.2 Legal obligations and competent authorities

Personal data may be disclosed to administrative, judicial, or regulatory authorities where required by law, regulation, or court order, or when necessary to:

• prevent or detect fraudulent or unlawful activities;
• ensure the safety of Users and the Dashme service;
• defend Dashme’s rights and legitimate interests.

7.3 Transfers related to restructuring

In the event of a merger, acquisition, asset sale, restructuring, or similar transaction involving Dashme, Users’ personal data may be transferred to the relevant third party, provided it commits to this Privacy Policy and applicable data protection laws.

7.4 Aggregated or anonymized data

Dashme may use and share aggregated or anonymized data that does not identify Users, for statistics, analysis, or service improvement.

8.1 Data hosting

Personal data collected while using the Dashme service is hosted on secure IT infrastructure operated either by Dashme or by professional hosting providers chosen for their security, reliability, and compliance guarantees.

Dashme ensures its hosting providers offer sufficient safeguards to protect personal data from unauthorized access, loss, alteration, or disclosure.

8.2 Security measures

Dashme applies appropriate technical and organizational measures to ensure a security level suited to the risks, including:

• access control and authentication mechanisms;
• measures to protect data in transit and at rest;
• monitoring, detection, and prevention of security incidents;
• internal procedures for access and authorization management;
• security policies and staff awareness.
• These measures aim to preserve confidentiality, integrity, availability, and resilience of systems and personal data.

8.3 Limits and responsibility

Despite these measures, Dashme cannot guarantee absolute security of personal data given the inherent risks of electronic communications networks.

If a personal data breach could pose a risk to Users’ rights and freedoms, Dashme will take appropriate measures, including notifying authorities and affected Users where required by law.

10.1 Right of access

Users can obtain confirmation of whether Dashme processes their personal data and, if so, access it along with information on processing purposes, categories of data, and data recipients.

10.2 Right to rectification

Users can have their personal data corrected if inaccurate, incomplete, or outdated, and request that it be completed when necessary.

10.3 Right to erasure

Users may request deletion of their personal data in cases provided by law, notably when:

• data is no longer needed for the purposes for which it was collected;
• the User withdraws consent where processing relies on consent;
• the data has been unlawfully processed.
• This right is subject to legal retention obligations that apply to Dashme.

10.3.1 Deleting your account from the mobile app

You can permanently delete your Dashme account at any time directly from the Dashme mobile app. To do so:

Open the Dashme app, go to the Profile or Settings screen, scroll to the "Danger zone" section, then tap "Delete my account". Confirm your choice in the dialog that appears. Account deletion is permanent and cannot be undone; your personal data will be processed in accordance with section 6 (Data Retention) and applicable law.

10.4 Right to restriction of processing

Users may request restriction of processing in cases provided by law, notably when data accuracy is contested or processing is unlawful.

10.5 Right to object

Users may object, on grounds relating to their particular situation, to processing based on Dashme’s legitimate interest, unless compelling legitimate grounds justify the processing.

10.6 Right to data portability

Where processing is based on consent or contract and carried out by automated means, Users can receive the personal data they provided to Dashme in a structured, commonly used, machine-readable format, or request its transfer to another controller where technically feasible.

10.7 Exercising rights

Users can exercise their rights at any time by contacting Dashme via the contact methods in this Privacy Policy.

Dashme will respond within legal timeframes, subject to identity verification and applicable legal or regulatory obligations.

10.8 Right to lodge a complaint

Users can lodge a complaint with the competent data protection authority if they believe their personal data has been processed in violation of applicable law.

11.1 What is a cookie

A cookie is a small text file that may be stored on the User’s device when visiting a website or using an app.

Cookies can recognize a device, remember preferences, or collect technical information about service use.

11.2 Strictly necessary cookies

Dashme uses strictly necessary cookies or similar technologies to:

• ensure secure access to the Dashme App;
• maintain login sessions;
• guarantee service security and integrity;
• prevent fraudulent use.
• These cookies are essential and cannot be disabled.

11.3 Measurement and service improvement cookies

Dashme may use cookies or similar tools for audience measurement, performance, and service improvement, notably to:

• analyze use of the Dashme App;
• detect technical malfunctions;
• improve usability and features.
• Where required by law, these cookies are only used with the User’s prior consent.

11.4 Managing cookies

Users can configure, refuse, or delete cookies via their device or browser settings.

However, refusing or deleting certain cookies may affect proper operation of the Dashme App or limit access to some features.

11.5 Evolution of cookie use

Dashme may adapt its use of cookies and similar technologies to reflect service changes, technologies, or applicable regulations.

Any substantial change will be appropriately communicated to Users.