Early access The first 100 founders lock in their launch price · only 6 spots left Launch price · only 6 spots left
Privacy

Privacy policy

Last updated: June 17, 2026

This page describes how getMax (published by Nexifi) collects, uses and protects your personal data, including when you use authentication via Google (OAuth).

1. Data Controller

Data is processed by Nexifi (hereinafter "Nexifi"), as publisher of getMax. Address: 5 Avenue du Général de Gaulle, 94160 Saint-Mandé, France. Email: [email protected]

2. Data Collected

Depending on your usage, we may collect:

  • Contact data: name, first name, email address, company, message content (for example via the contact form).
  • Technical data: technical logs (e.g. IP address, user-agent, timestamp, pages visited) necessary for operation, security and diagnosis.
  • Authentication data: if you use Google OAuth connection, we receive certain information from your Google account according to the permissions (scopes) you accept.

3. Purposes and Legal Bases

  • Service provision (contract performance / pre-contractual measures).
  • Support and communication (legitimate interest / pre-contractual measures).
  • Security (legitimate interest: fraud prevention, abuse, incidents).
  • Statistics and improvement (legitimate interest and/or consent depending on trackers used).

4. Google Data (OAuth) and "Limited Use"

If you connect getMax to a Google account via OAuth, data obtained via Google APIs is used only to provide and improve the functionality explicitly expected by the user (for example: authentication, access to a Google resource you authorized, requested synchronization).

  • We do not sell data obtained via Google APIs.
  • We do not use it for targeted advertising purposes.
  • Access is limited to authorized persons and necessary systems.

Exact permissions depend on the scopes presented during consent. You can withdraw access at any time from your Google account and/or service settings.

5. Data Sharing

We may share data with technical providers (hosting, email, analytics, security) acting as sub-processors, only to the extent necessary for service delivery. Data may also be disclosed if required by law or to protect our rights (fraud prevention, security, legal requests).

6. Retention

We retain personal data for the duration necessary for the purposes described above, then delete or anonymize it, except where contrary to legal obligation.

7. Security

We implement reasonable organizational and technical measures to protect data against unauthorized access, loss, alteration or disclosure.

8. Your Rights

Under applicable regulations (including GDPR), you have rights of access, rectification, erasure, objection, restriction and portability. To exercise your rights, or for any question regarding your personal data, you can contact our Data Protection Officer (DPO), Thibault Petit Jean, at [email protected]. You may also lodge a complaint with the CNIL: https://www.cnil.fr/.

9. Cookies and Tracers

getMax may use tracers (cookies) necessary for site operation and, where applicable, audience measurement tracers. Depending on the tools used, these tracers may be subject to your consent. For audience measurement, we use PostHog, hosted in the European Union (eu.i.posthog.com). This includes navigation and interaction measurement (clicks) and, if you accept separately, anonymized session recording (input fields are masked). None of this data is collected until you give consent, which you can withdraw at any time via the cookie management banner.

10. Changes

We may update this policy. The "last updated" date shown at the top reflects the current version.