Privacy Policy
Last updated: March 11, 2026
This Privacy Policy explains how L4Forge SAS processes personal data for Le Sentier (formerly La Forge).
1) Controller Identity
L4Forge SAS 222 rue de Bretigny 01210 Ornex France Privacy contact: admin@l4forge.com
Company references: SIREN 999235385, SIRET 999235385 00013, RCS Bourg-en-Bresse, EUID FR0101.999235385, VAT FR28999235385.
2) Scope
This policy applies to:
- the Le Sentier iOS app;
- our backend/API services used by the app;
- our support and privacy pages.
It does not apply to third-party websites or services we link to.
3) Data We Collect
| Category | Examples |
|---|---|
| Account and authentication data | Internal account ID, username, passkey credential metadata (credential ID, public key, counter, device type/backed-up flag), authentication challenge records, refresh-token hashes. |
| Profile settings | Language, timezone, notification preference flags. |
| User content | Chat messages/prompts, workshop content, bivouac step inputs, generated summaries/plans/Leo notes, profiles. |
| Photos and videos (optional user content) | Media you choose to capture or upload for journal and bivouac entries, plus related metadata (day key, storage path, position, timestamps). |
| Voice input data (optional) | Audio submitted by you for speech-to-text and returned transcription text. |
| Notification data (optional) | Push token, device type and device name/model string, scheduled notification records, delivery/open status. |
| Subscription data | Anonymous purchase receipts, subscription status, and entitlement records managed via RevenueCat. |
| Technical, usage, and security data | Timestamps, request and error logs, model/provider operation metadata used for reliability and abuse prevention. |
| Support data | Emails and support/feedback messages you send us. |
We do not collect passwords for Le Sentier logins.
We do not receive your Face ID/Touch ID biometric templates. Biometric matching is handled by your device platform.
4) How We Collect Data
- Directly from you: account creation, app usage, messages, settings, support requests.
- Automatically from app activity: technical logs, timestamps, delivery/open events.
- From authentication and platform flows: passkey ceremonies and push token registration.
- From device permissions you grant: camera/photo library access used only when you choose to take or upload media.
- From processors acting on our behalf (hosting, AI, transcription, notifications, feedback forms).
5) Why We Use Data and Legal Bases (EU/EEA/UK)
| Purpose | Legal Basis |
|---|---|
| Create and secure accounts; authenticate users with passkeys. | Performance of a contract. |
| Provide core app features (chat, workshops, bivouac, documents). | Performance of a contract. |
| Let you capture/upload photos or videos and attach them to journal/bivouac entries. | Performance of a contract (feature requested by you). |
| Send push reminders/notifications when enabled. | Consent (which you can withdraw anytime). |
| Transcribe voice input when you use microphone features. | Consent. |
| Prevent abuse, secure systems, detect fraud, and debug incidents. | Legitimate interests. |
| Meet legal and regulatory obligations. | Legal obligation. |
Some data is required to provide Le Sentier (for example authentication and core content storage). If you do not provide required data, parts of the service may not function.
Camera and photo-library permissions are optional. If you deny them, photo upload/capture features will not be available, but the rest of the app can still be used.
6) Sharing and Processors
We use service providers to run Le Sentier. We do not sell personal data to data brokers.
- Supabase: database, authentication, and backend data storage (including media files).
- Vercel: backend hosting and server infrastructure.
- Google (Gemini / Vertex AI): AI generation for chat features.
- Anthropic: AI generation for profile features.
- Deepgram: speech-to-text transcription for optional voice input.
- Expo Push Service (and Apple APNs): push notification delivery.
- RevenueCat: subscription management. Receives anonymous purchase receipts and an internal user identifier to validate entitlements and track subscription status.
- Tally: user feedback form submissions.
7) International Transfers
Your data may be processed in countries outside your own, including outside the EU/EEA/UK (for example by some service providers). Where required, we use contractual and organizational safeguards (including standard contractual safeguards) to protect transferred data.
8) Retention
| Data Type | Retention |
|---|---|
| Account profile and core user content | Kept until you delete your account. |
| Journal/bivouac photos and videos | Kept until you delete them in-app or delete your account. |
| Voice transcription requests | Processed on request; no separate long-term audio archive by us. |
| Notification records and push-delivery/open logs | 1 month. |
| Server/application logs | 1 month. |
| Support requests | Up to 24 months. |
| Backups | Rolling 30 days. |
| Username reservations | Expires after 5 minutes. |
| WebAuthn ceremony records | Short-lived; removed shortly after expiry (cleanup buffer up to 1 hour). |
| Refresh token records | Refresh tokens expire after 30 days; expired/revoked records are cleaned up with a short additional buffer (up to 7 days). |
9) Deletion and Data Rights
In-app account deletion path: Profile -> Danger Zone -> Delete Account.
You can also delete individual journal/bivouac photos from the app; this removes media from active storage and associated metadata records.
After deletion is confirmed, operational data is removed from active systems; residual backup copies are removed within normal backup rotation (up to 30 days).
If you are in the EU/EEA/UK, you may request: access, rectification, erasure, restriction, objection, and data portability.
- Contact: admin@l4forge.com
- We aim to respond within 30 days.
- You may also lodge a complaint with your local supervisory authority (for France: CNIL).
10) Security
We use administrative, technical, and organizational safeguards, including encryption in transit, access controls, and least-privilege access. No method of storage or transmission is fully risk-free, but we work to protect your data.
11) Children
Le Sentier is not intended for children under 13.
12) AI and Automated Decisions
Le Sentier provides AI-generated guidance and planning support. It is not a medical or mental-health service and is not designed for emergencies. We do not use solely automated decision-making that produces legal or similarly significant effects about you.
13) Changes to This Policy
We may update this policy from time to time. Material changes will be reflected by updating the date at the top of this page and, when appropriate, through in-app notice.
14) Contact
Questions about this policy can be sent to admin@l4forge.com.