Ironexa logo Ironexa

Your Data, Under Construction.

We treat your personal information with the same care we bring to our finest materials: integrity, precision, and respect for origin. This policy outlines exactly how we handle the digital footprint you leave on our site, ensuring transparency at every step.

We collect Only what is necessary for communication and project collaboration.
We protect Your data with industry-standard security measures, stored in the European Union.
We respect Your right to access, correct, or delete your personal information at any time.
Get in Touch

Core Principles in Practice

1

Data We Collect

We gather information you provide directly, such as your name, email, and project details when you contact us or request a quote. We also collect technical data like your IP address and browser type for basic site functionality and security monitoring. This data is never sold to third parties.

"We only ask for the minimum necessary to initiate a meaningful conversation about your project."

2

How We Use It

Your information is used strictly to respond to your inquiries, provide service quotes, and manage client relationships. It is stored in our secure French-based server infrastructure. For non-essential analytics (e.g., which pages are visited), we use aggregated, anonymized data that cannot be traced back to an individual.

"Your contact details are never added to marketing lists without your explicit, separate consent."

Storage

Data is retained only for the duration of your project and for a standard 5-year period post-completion for legal and insurance purposes.

Security

We employ HTTPS, regular security updates, and strict access controls. While we employ robust measures, absolute security on the internet cannot be guaranteed.

Your Rights

Under GDPR, you have the right to access, rectify, or erase your personal data. To exercise these rights, contact us directly.

Transparency as a Foundation

In architecture, transparency isn't just about glass; it's about knowing how the structure supports itself. The same applies to data. We avoid vague statements. If we use a service that processes data on our behalf (like a secure email provider or cloud storage), we list them here and explain their role.

Our privacy policy isn't a static document. It's a commitment we review annually, especially as we adopt new tools or navigate evolving digital landscapes. Any changes will be posted here with a clear summary of what's new, so you always know where you stand.

Third-Party Services

We use carefully selected third-party services essential to our operation: hosting (on EU servers), form processing, and business communication tools. Each provider is vetted for GDPR compliance. We do not share your project data for their marketing purposes.

The principle of documented protocol

Decision Lens

Why we collect, and what we avoid.

What we optimize for:

Clarity in client communication and secure project management. Your data enables us to provide accurate quotes, coordinate with our team, and document our work reliably.

What we consciously sacrifice:

Granular user behavior tracking and personalized advertising. We choose to prioritize direct, human-led communication over automated, data-driven marketing funnels.

The trade-off:

A less 'optimized' web experience for your browser, in exchange for a more private and straightforward interaction with our business.

Key Terms

Plain language, precise definitions.

Personal Data
Any information that can identify you directly (name, email) or indirectly (IP address).
Data Controller
Ironexa determines how and why your personal data is processed.
Lawful Basis
The legal reason for processing data: consent, contract, or legitimate interest.
Data Processing Agreement
A contract ensuring our third-party services protect your data according to our standards.

Our Perspective & What Could Change It

Assumptions We Operate On

  • Our clients are primarily high-net-worth individuals and private developers who value privacy as highly as quality.
  • A slow, trust-based relationship is more valuable than a fast, transactional one.
  • Regulatory compliance (GDPR) is a baseline, not a ceiling; we aim for a higher standard of care.

Real-World Constraints

  • We must retain project documentation (including client contacts) for at least 5 years for liability reasons.
  • Secure communication platforms are non-negotiable; they may have their own data policies we must account for.
  • Technical website data (e.g., crash reports) is anonymized but cannot be fully purged without breaking site functionality.

What Would Change Our Mind

  • Direct, credible reports of a data breach within our control.
  • A significant shift in French or EU data protection laws requiring more granular data retention.
  • A client whose project explicitly requires we collect a new type of personal data, with their informed consent.

Have a Question About This Policy?

We're here to explain it in detail. Contact our Paris studio directly to discuss any concerns.

Ironexa

13 Rue de la Huchette, 75005 Paris, France

Mon-Fri: 9:00-18:00

Phone: +33 1 43 54 79 52

Email: [email protected]

Contact Our Studio