AMI

Legal

Privacy Policy.

Last updated: January 1, 2026

1. Data controller

Ami Broker SAS, a simplified joint-stock company registered with the Paris Trade and Companies Register under number 123 456 789, with its registered office in Paris, France, is the data controller for personal data collected in connection with the use of the Ami Broker platform.

For any questions regarding the protection of your data or to exercise your rights, you can contact us at: privacy@ami-broker.io.

2. Data collected

In the course of providing our services, we collect the following categories of data: identification data (name, professional email address, phone number); connection data (IP address, timestamps, browser, session identifiers); business data entered by the user (information relating to worksites, insurance policies, claims, documents); billing data (billing details, payment history).

We do not collect sensitive data within the meaning of Article 9 of the GDPR (ethnic origin, political opinions, health data, etc.). Data collected is strictly limited to what is necessary for service delivery (data minimisation principle).

3. Purposes and legal bases for processing

Your data is processed for the following purposes: contract performance (legal basis: contract performance) — access management, platform features, technical support; legal obligations (legal basis: legal obligation) — retention of accounting records and supporting documents in accordance with applicable legal obligations; legitimate interest (legal basis: legitimate interest) — platform improvement, fraud prevention, system security.

No automated decision-making with significant legal effects is carried out on the basis of your personal data.

4. Data recipients

Your data is accessible to Ami Broker teams strictly within the scope of their responsibilities. It may be shared with the following technical sub-processors, bound by contractual confidentiality and security obligations compliant with the GDPR: cloud hosting provider (EU infrastructure, ISO 27001 certified); authentication provider (Supabase); customer support tool.

We never sell, rent or share your personal data with third parties for commercial purposes. No data transfers outside the European Economic Area are made without appropriate safeguards (standard contractual clauses or adequacy decision).

5. Retention periods

Account data is retained for the duration of the contract, then deleted within 30 days of termination, unless a longer legal retention obligation applies.

Connection data and access logs are retained for 12 months in accordance with legal obligations on information system security. Billing data is retained for 10 years in accordance with legal accounting obligations.

6. Data security

Ami Broker implements appropriate technical and organisational measures to ensure the security, integrity and confidentiality of your personal data, including: encryption of data in transit (TLS 1.2+) and at rest (AES-256); strong authentication (email + OTP); role-based access control (RBAC); comprehensive access and action logging; regular security audits; per-tenant data isolation (multi-tenant architecture).

In the event of a data breach likely to result in a risk to your rights and freedoms, Ami Broker undertakes to notify the competent supervisory authority within 72 hours and the individuals concerned as soon as possible.

7. Your rights

Under the GDPR, you have the following rights over your personal data: right of access — obtain a copy of the data concerning you; right to rectification — correct inaccurate or incomplete data; right to erasure — request deletion of your data in the cases provided for by the GDPR; right to restriction — limit the use of your data in certain circumstances; right to portability — receive your data in a structured, machine-readable format; right to object — object to processing based on legitimate interest.

To exercise these rights, send your request to privacy@ami-broker.io with a copy of proof of identity. We undertake to respond within one month. If you are unsatisfied with our response, you have the right to lodge a complaint with the relevant supervisory authority (ICO in the UK, or your local DPA).

8. Cookies and trackers

The platform uses strictly necessary cookies for service operation (session management, language preferences) which do not require prior consent. Anonymised analytics cookies may be set with your consent to improve the user experience.

You can manage your cookie preferences at any time via the cookie management panel accessible from the platform footer. Refusing analytics cookies does not affect access to service features.

9. Policy changes

Ami Broker reserves the right to modify this privacy policy at any time. Any material change will be notified to you by email or via a platform notification at least 30 days before it takes effect.

The current version is the one permanently accessible on the platform at /en/privacy. Continued use of the platform after notification constitutes acceptance of the changes.

Let's start something great together.

Access the portal

Legal

Legal noticePrivacy policyTerms of use

© 2026 AMI. All rights reserved.

Your cookie preferences

We use cookies to improve your experience. You can accept all cookies, reject non-essential ones, or customise your choices. Privacy policy

Customise cookies

Choose which cookie categories you accept. Essential cookies are always active.

Essential

Required for the platform to function (session, language). Always active.

Analytics

Help us understand how you use the platform so we can improve it.

Marketing

Allow us to show you personalised content related to your activity.