Skip to content
Growth Wave

Last updated: June 2026

Privacy policy

Data controller

Growth Wave OÜ (details in the legal notice). Contact for data matters: Raphaël Masson, raphael@growth-wave.agency.

Data collected and purposes

  • Contact form: first name, last name, business email, company, message. Purpose: respond to your request and, where relevant, begin a business relationship. Legal basis: pre-contractual measures and legitimate interest.
  • AI diagnostic: your questionnaire answers, first name, last name, business email, company. Purpose: produce and send your diagnostic and follow up about it. Legal basis: consent.
  • Case studies (full access): first name, last name, business email, company. Purpose: send the requested document. Legal basis: consent.
  • Technical data: connection logs and audience-measurement data (see Cookies). Legal basis: legitimate interest.

Recipients and processors

  • Attio (CRM) for managing contacts and requests;
  • Resend for sending emails (diagnostic, documents, replies);
  • Vercel Inc. for hosting the site;
  • Plausible Analytics for audience measurement (no cookie, no personal data);
  • Anthropic (Claude) if the diagnostic relies on AI processing.

Transfers outside the EU

Some processors may process data outside the EEA, notably in the United States. Such transfers are governed by Chapter V GDPR mechanisms, in particular the Standard Contractual Clauses adopted by the European Commission (implementing decision EU 2021/914).

Retention

Contact requests and leads: [to confirm, e.g. 3 years] from last contact. Diagnostics and prospecting data: [to confirm, e.g. 3 years] with no follow-up. Audience-measurement data: per tool (Plausible, no persistent cookie).

Your rights

Under the GDPR you have rights of access, rectification, erasure, restriction, objection and portability, and the right to withdraw consent at any time. To exercise them: raphael@growth-wave.agency. You may also lodge a complaint with a supervisory authority, in France the CNIL (cnil.fr), or the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon).

Security

Growth Wave implements appropriate technical and organizational measures to protect your data against unauthorized access, use or disclosure. Your data is never sold.