Last updated: February 28, 2026
1. Introduction
ALPIC (“Alpic”, “we”, “us” or “our”) is a French société par actions simplifiée (SAS) registered with the Paris Trade and Companies Register under number 989 649 736, with its registered office at 229 rue Saint-Honoré, 75001 Paris, France.
ALPIC provides a cloud infrastructure platform enabling customers to build, deploy, host and distributed AI applications, as well as open-source tooling, application development and related services (the “Services”).
We recognize that privacy is an ongoing responsibility. This Privacy Policy explains how we collect, use, disclose and safeguard personal data in connection with our website and Services. It also describes the rights available to individuals under applicable data protection laws, including the General Data Protection Regulation (EU) 2016/679 (“GDPR”).
This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website (https://alpic.ai), use our Services, or interact with us. By using our Services, you acknowledge that you have read and understood this Privacy Policy.
2. Information we collect
ALPIC collects and processes personal data in the context of operating its website, administering customer accounts, and providing its Services. The categories of data collected depend on how you interact with us.
Information you provide: We collect personal data that you provide directly when creating an account, subscribing to our Services, requesting information or support, entering into contractual arrangements, or otherwise communicating with us. This may include your name, professional email address, company name, job title, business contact details, billing and payment information, account credentials, and text contained in your communications.
Information collected automatically: When you access our website or Services, we automatically collect technical and usage information, including IP address, device and browser information, operating system, access timestamps, authentication logs, infrastructure, performance data, and interaction data. We use this information to operate, secure, monitor, and improve the Services, detect misuse, and maintain system integrity.
Platform usage and telemetry: If you use our APIs, command-line interfaces (CLI), or other platform tools, we may collect activity logs, configuration data, and usage metrics associated with your account. Telemetry data is still captured by default on unauthenticated sessions initiated through CLI commands with the use of an anonymous identifier associated with your device. This collection can be disabled. This enables us to provide the Services, deliver support, troubleshoot issues, and ensure platform security and reliability.
Information from third parties: We may also receive personal data from third parties in connection with your use of the Services. For example:
If you sign in using single sign-on (SSO) providers such as Google or GitHub, we may receive authentication information such as your name, email address, and unique user identifier, as permitted by your account settings with those providers.
Pay-as-you-go plans are processed by a third-party payment provider, Stripe. Alpic may receive transaction confirmations and limited billing information necessary for record keeping, but we do not store full payment card details.
We may also receive information from business partners, analytics providers, or publicly available sources to maintain accurate records and support our Services.
Customer Applications and Processing Role
Customers may deploy applications or process data through the Services (“Customer Apps”), which may include personal data.
Where ALPIC processes personal data in connection with account management, billing, support, security monitoring, or legal compliance, ALPIC acts as a data controller.
Where ALPIC processes personal data contained in Customer Apps or Customer Content on behalf of customers, ALPIC acts solely as a data processor and processes such data in accordance with the customer’s instructions and the applicable customer agreement and Data Processing Agreement.
3. How we use your information
ALPIC uses personal data for the following purposes, depending on the nature of your interaction with us:
Provision of Services: To create and manage user accounts, authenticate access, operate and maintain the Services, process payments, and provide customer support.
Security and Operations: To monitor, secure, and maintain our infrastructure; detect, prevent, and investigate fraud, misuse, or security incidents; and ensure the integrity, availability, and performance of the Services.
Service Analytics and Improvement: To analyze usage patterns, diagnose technical issues, improve functionality, and develop new features.
Website Analytics and Improvement: To analyze how visitors interact with our public website, improve functionality, and enhance user experience. Where required by law, such analytics are used only with your consent.
Communications: To respond to inquiries, provide service-related notifications, and communicate updates relevant to your account or our Services.
Legal and Regulatory Compliance: To comply with applicable laws, regulations, court orders, and contractual obligations.
Marketing (where permitted): To send information about our Services, events, or updates, where permitted by applicable law and subject to your communication preferences.
Where ALPIC acts as a data processor on behalf of customers, we process personal data solely in accordance with the customer’s instructions and applicable contractual terms.
ALPIC does not engage in automated decision-making producing legal or similarly significant effects within the meaning of Article 22 GDPR.
4. Legal basis for processing
Where ALPIC acts as a data controller, we rely on the following legal bases under Article 6 GDPR, depending on the context:
Performance of a contract (Article 6(1)(b)) where processing is necessary to provide the Services or manage your account;
Legitimate interests (Article 6(1)(f)) where processing is necessary for the security, operation, and improvement of our Services, provided such interests are not overridden by your fundamental rights and freedoms;
Compliance with legal obligations (Article 6(1)(c)) where processing is required under applicable laws;
Consent (Article 6(1)(a)) where required, including for certain marketing communications and non-essential cookies.
Where ALPIC acts as a data processor, we process personal data on behalf of customers in accordance with their instructions and applicable contractual arrangements.
5. Cookies and tracking technologies
ALPIC uses cookies and similar technologies to operate and secure our website and Services.
Non-essential cookies, including analytics and performance cookies, are used only with your prior consent. You may withdraw your consent at any time through our cookie preference tool.
Operational analytics technologies used within the authenticated Services environment are strictly necessary to provide and secure the Services. These tools are not used for advertising or cross-site tracking and do not require separate consent.
For detailed information about the cookies we use and how to manage your preferences, please refer to our Cookie Policy.
6. Sharing Information with third parties
ALPIC may share personal data with the following categories of recipients:
Service providers and subprocessors who support the operation of our Services, including cloud infrastructure providers, payment processors, authentication providers, analytics and monitoring services, and customer support platforms. These providers process personal data under contractual safeguards and appropriate data protection obligations.
Customer-directed integrations, where customers choose to connect third-party services to their account.
Legal and regulatory authorities, where disclosure is required by law or necessary to protect our rights, security, or property.
Corporate transaction parties, in connection with a merger, acquisition, financing, or sale of assets, subject to appropriate safeguards.
We do not sell personal data.
Where ALPIC acts as a data processor, personal data is shared only in accordance with the applicable customer agreement and our Data Processing Agreement.
A current list of our subprocessors is available upon request.
7. International data transfers
ALPIC is headquartered in France, but we may transfer personal data to service providers and partners located in other countries, including countries outside the European Economic Area (EEA), and in particular to the United States.
Where personal data is transferred outside the EEA, we ensure that appropriate safeguards are in place in accordance with Chapter V of the GDPR.
These safeguards may include:
Adequacy Decisions: Transfers to countries recognized by the European Commission as providing an adequate level of data protection;
Standard Contractual Clauses (SCCs): European Commission-approved contractual safeguards entered into with recipients of personal data;
EU-U.S. Data Privacy Framework (where applicable): Transfers to U.S.-based organizations certified under the EU-U.S. Data Privacy Framework;
Supplementary Measures: Additional technical and organizational safeguards, where required, to ensure an equivalent level of protection.
You may request further information about the safeguards we rely on for international transfers by contacting us at privacy@alpic.ai.
8. Your Privacy Rights
Depending on your location, you may have certain rights regarding your personal data.
Rights Under GDPR (EEA and UK)
If you are located in the European Economic Area (EEA) or the United Kingdom, you have the following rights, subject to applicable legal limitations:
The right to access the personal data we hold about you;
The right to request rectification of inaccurate or incomplete data;
The right to request erasure of your personal data in certain circumstances;
The right to restrict or object to our processing of your personal data;
The right to data portability, allowing you to receive certain personal data in a structured, commonly used, and machine-readable format;
The right to withdraw consent at any time where processing is based on consent (without affecting the lawfulness of processing prior to withdrawal);
The right to lodge a complaint with your local data protection authority.
Rights Under California Law
If you are a California resident, you may have the right to:
Know what categories of personal information we collect, use, disclose, and share;
Request deletion of your personal information, subject to certain exceptions;
Request correction of inaccurate personal information;
Opt out of the sale or sharing of personal information (ALPIC does not sell personal information);
Not be discriminated against for exercising your privacy rights.
Exercising Your Rights
You may exercise your rights by contacting us at privacy@alpic.ai. We will respond within the timeframes required by applicable law. We may request information necessary to verify your identity before processing your request. If we are unable to fulfill your request, we will provide an explanation as required by law.
Marketing Communications
You may opt out of marketing communications at any time by clicking the “unsubscribe” link in our emails, adjusting your account preferences (where available), or contacting us at privacy@alpic.ai. Please note that you will continue to receive service-related communications necessary for the administration of your account and the provision of the Services.
9. Security of Your Information
ALPIC implements appropriate technical and organizational measures designed to protect personal data against unauthorized or unlawful access, disclosure, alteration, loss, or destruction.
These measures are designed to ensure the ongoing confidentiality, integrity, availability, and resilience of our systems and services and include, among other things:
Encryption of data in transit and at rest where appropriate;
Logical access controls and role-based access restrictions;
Network security protections, including firewalls and monitoring systems;
Logging and monitoring of system activity;
Regular security assessments and testing;
Employee security and privacy training;
Incident response and business continuity procedures.
While we take reasonable steps to protect personal data, no method of transmission over the Internet or electronic storage is completely secure. Users are responsible for maintaining the confidentiality of their account credentials and for implementing appropriate security measures within the systems and applications they deploy using the Services.
10. Data Storage and Retention
Personal data is stored by ALPIC on its own systems and on the systems of third-party service providers used for hosting, storage, and backup.
Where ALPIC acts as a data controller, personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, including the duration of the contractual relationship, applicable statutory limitation periods, and compliance with legal, accounting, or regulatory obligations.
Prospect and marketing data are retained for the duration of our commercial relationship and, where no relationship is established, for up to three (3) years from the last contact or interaction, unless you withdraw your consent or object earlier. After this period, such data is deleted or anonymized in accordance with applicable law.
Where ALPIC acts as a data processor on behalf of customers, personal data contained in Customer Content is retained in accordance with the applicable customer agreement and our Data Processing Agreement.
When personal data is no longer required, it is securely deleted or anonymized. Where immediate deletion is not feasible, the data is securely stored, protected from further processing, and deleted in accordance with our backup retention schedule.
11. Children's Privacy
ALPIC Services are not directed to individuals under the age of 18 or the age of legal majority in the applicable jurisdiction. We do not knowingly collect personal information from minors. If you believe we have collected information from a child under the age of majority in their jurisdiction, please contact us immediately at privacy@alpic.ai, and we will promptly delete such information.
12. Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements.
Where changes materially affect how we process personal data, we will provide appropriate notice, such as by email or a prominent notice on our website. For other updates, we will revise the “Effective Date” above.
We encourage you to review this Privacy Policy periodically.
If you no longer agree to the ways in which we process your data, you should discontinue use of the Services.
13. Contact
For any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer at privacy@alpic.ai.
Supervisory Authority
If you are located in the EEA or UK and believe we have not adequately addressed your concerns, you have the right to lodge a complaint with your local data protection authority:
Commission Nationale de l'Informatique et des Libertés (CNIL): https://www.cnil.fr
EU Data Protection Authorities: https://edpb.europa.eu/about-edpb/board/members_en