Skip to content

GDPR Compliance

Dernière mise à jour : 5/13/2026

GDPR — Your rights and our compliance

This document is a dedicated information sheet on Regulation (EU) 2016/679 of 27 April 2016 ("GDPR") applicable to any individual located in the European Union who uses the Services offered under the SkyEntry brand (skyentry.co).

It supplements our [Privacy Policy](/privacy), which describes in detail the categories of data processed, purposes, legal bases, sub-processors, retention periods and transfers outside the European Union. The present page focuses on a single subject: your rights and how to exercise them in practice.

> Preamble. SkyEntry is operated by Meetricks, LLC, a U.S. company incorporated in the State of Delaware. Although Meetricks, LLC is a non-European entity, we commit to comply with the GDPR for all our users residing in the European Union, in accordance with Article 3(2) of the Regulation, which renders the GDPR applicable to the processing of personal data of individuals located in the Union whenever a service is offered to them.

---

1. Identity of the data controller

The data controller within the meaning of Article 4(7) GDPR is:

> Meetricks, LLC > 1013 Centre Rd, Suite 403A > Wilmington, DE 19805 > United States of America > Trade name: SkyEntry — skyentry.co > Single point of contact for any GDPR request: contact@skyentry.co

1.1 No representative in the European Union

Pursuant to Article 27 GDPR, a controller not established in the Union which processes data of individuals located in the Union must, save for limited exceptions, designate in writing a representative established in a Member State.

> Factual statement. As of the date of this sheet, Meetricks, LLC has not designated a representative within the European Union under Article 27 GDPR. This designation is currently under review.

This absence of a representative does not prevent you from exercising your rights: you may contact us directly at contact@skyentry.co, which is the official and unique entry point for any request relating to your personal data. We commit to handle your request within the timeframes set by the GDPR (see § 4).

1.2 Data Protection Officer (DPO)

No dedicated Data Protection Officer has been appointed, the appointment of a DPO not being mandatory for Meetricks, LLC under Article 37 GDPR (the processing does not consist of regular and systematic monitoring on a large scale within the meaning of Article 37(1)(b), nor of large-scale processing of sensitive data within the meaning of (c)). GDPR requests are handled by the management team of Meetricks, LLC, reachable at contact@skyentry.co.

---

2. Your rights under the GDPR (Articles 15 to 22)

You have the following rights regarding your personal data. Each right is presented with: the GDPR article reference, its content, and the practical procedure to exercise it with SkyEntry.

2.1 Right of access — Article 15 GDPR

What you can obtain: confirmation as to whether or not personal data concerning you is being processed by SkyEntry, and where applicable, access to that data and to the following information:

  • the purposes of the processing;
  • the categories of data concerned;
  • the recipients or categories of recipients (in particular sub-processors located outside the European Union);
  • the envisaged retention period or the criteria used to determine it;
  • the existence of the other rights provided by the GDPR;
  • the right to lodge a complaint with a supervisory authority;
  • the source of the data when not collected directly from you;
  • the existence, where applicable, of automated decision-making.

You can also obtain a copy of your data in a readable format.

> SkyEntry procedure. Send your request to contact@skyentry.co with the subject "Access request — Article 15 GDPR". We will provide a structured export (typically a JSON file or summary PDF) within one month.

2.2 Right to rectification — Article 16 GDPR

What you can obtain: correction of inaccurate personal data concerning you, or the completion of incomplete data, including by means of providing a supplementary statement.

> SkyEntry procedure. Most data can be rectified directly from the "My Account" area on skyentry.co (last name, first name, email, phone, travel document, language preferences). For any data that cannot be edited from the interface, write to contact@skyentry.co specifying the data concerned and the exact correction.

2.3 Right to erasure ("right to be forgotten") — Article 17 GDPR

What you can obtain: deletion of your data in any of the following cases:

1. the data is no longer necessary for the purposes for which it was collected; 2. you withdraw your consent and there is no other legal basis for the processing; 3. you object to the processing and there is no overriding legitimate ground; 4. the data has been unlawfully processed; 5. the data must be erased to comply with a legal obligation; 6. the data was collected in connection with the offer of services to a child.

Limitations under the GDPR (Article 17(3)): this right does not apply to the extent that processing is necessary for the exercise of the right of freedom of expression and information, for compliance with a legal obligation (in particular accounting and tax — invoices retained for 10 years), or for the establishment, exercise or defence of legal claims.

> SkyEntry procedure. You can delete your account directly from "My Account" > "Delete my account". This action triggers the deletion or anonymisation of your data within the timeframes set out in § 6 of our [Privacy Policy](/privacy). For a specific request (partial erasure, dispute), write to contact@skyentry.co.

2.4 Right to restriction of processing — Article 18 GDPR

What you can obtain: the temporary suspension of processing, without deletion of data, in any of the following cases:

1. you contest the accuracy of the data — for the time needed to verify accuracy; 2. the processing is unlawful but you oppose erasure and instead request restriction; 3. we no longer need the data but you need it for the establishment, exercise or defence of legal claims; 4. you have objected to processing based on legitimate interests — pending verification whether our legitimate grounds override yours.

During restriction, your data is stored but no longer used, except with your consent, for the establishment, exercise or defence of legal claims, for the protection of the rights of another natural or legal person, or for reasons of important public interest.

> SkyEntry procedure. Send your request to contact@skyentry.co with the subject "Restriction request — Article 18 GDPR", specifying the processing(s) concerned and the grounds. We acknowledge receipt within 72 business hours and apply the restriction during the review.

2.5 Right to information about rectifications, erasures and restrictions — Article 19 GDPR

What you can obtain: when you obtain a rectification, erasure or restriction of your data, we notify each recipient to whom the data has been disclosed, unless this proves impossible or involves disproportionate effort.

You can also request, at any time, the list of those recipients.

> SkyEntry procedure. When handling a request under Articles 16, 17 or 18, our response systematically includes the list of sub-processors concerned (e.g., Stripe, HighPass, Resend, Anthropic). For a standalone request to obtain the list of recipients, write to contact@skyentry.co.

2.6 Right to data portability — Article 20 GDPR

What you can obtain: when processing is based on your consent (Art. 6(1)(a)) or on the performance of a contract (Art. 6(1)(b)) and is carried out by automated means, you may:

1. receive the personal data concerning you which you have provided to us, in a structured, commonly used and machine-readable format; 2. transmit that data to another controller without hindrance from us; 3. where technically feasible, request that the data be transmitted directly from one controller to another.

The right to portability covers only data you have provided (directly or through your activity), and not data derived or inferred by our systems.

> SkyEntry procedure. Send your request to contact@skyentry.co with the subject "Portability request — Article 20 GDPR". The export is provided in JSON format (machine-readable) and includes: profile, booking history, preferences, consents. Direct transmission to another controller is examined on a case-by-case basis depending on technical feasibility.

2.7 Right to object — Article 21 GDPR

What you can obtain: at any time, on grounds relating to your particular situation, you may object to the processing of your data based on legitimate interests or on the performance of a task carried out in the public interest. We then cease the processing, unless we demonstrate compelling legitimate grounds which override your interests, rights and freedoms, or for the establishment, exercise or defence of legal claims.

Direct marketing (Article 21(2)-(3)). You can object at any time and without justification to the processing of your data for direct marketing purposes, including profiling to the extent it is related to direct marketing. This objection is unconditional: we cease processing your data for these purposes upon receipt.

> SkyEntry procedure. > - Newsletter and commercial emails: an unsubscribe link appears at the bottom of every message; one click is enough, no justification is required. > - SMS and push notifications: can be disabled from "My Account" > "Notification preferences". > - Audience-measurement and advertising cookies: managed via "Manage my cookies" accessible in the footer (cf. [Cookies Policy](/cookies)). > - General objection or particular situation: write to contact@skyentry.co with the subject "Objection — Article 21 GDPR".

2.8 Automated individual decision-making and profiling — Article 22 GDPR

What you can obtain: you have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.

> Current state at SkyEntry. No fully automated processing produces legal effects concerning you in our Services. In particular: > - our AI Helpdesk (based on Anthropic's Claude technology) handles first-level support requests, but any impactful decision (refund, escalation, account suspension) is reviewed and validated by a human operator of Meetricks, LLC; > - no score nor automated decision is used to deny you access to the Service.

If we were to introduce such an automated decision in the future, we would inform you in advance and would guarantee, in accordance with Article 22(3) GDPR, the right to obtain human intervention, to express your point of view and to contest the decision.

---

3. Right to withdraw consent — Article 7(3) GDPR

Although not part of the 15-22 block, this right complements the others: for processing based on your consent (newsletter, certain cookies), you can withdraw your consent at any time, without justification and as easily as you gave it. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.

> SkyEntry procedure. One-click unsubscribe in any commercial email; cookie management from "Manage my cookies"; removal of marketing consent from "My Account" > "Preferences".

---

4. Procedure to exercise your rights — timelines and modalities

4.1 How to submit your request

Send your request by email to contact@skyentry.co specifying:

  • the subject of your request (GDPR article invoked: 15, 16, 17, 18, 20, 21 or 22);
  • the processing(s) or categories of data concerned, where relevant;
  • the email address linked to your SkyEntry account;
  • in case of reasonable doubt as to your identity, a copy of an ID document: this document is used solely to verify your identity, kept securely for the duration of the request handling, then deleted.

4.2 Response timelines (Article 12(3) GDPR)

| Step | Timeline | |---|---| | Acknowledgement of your request | within 72 business hours | | Full response (standard case) | one month from receipt | | Possible extension (complex or numerous requests) | two additional months, with reasoned information within the initial one-month period |

4.3 Free of charge

Exercising your rights is free of charge. However, in the case of manifestly unfounded or excessive requests, in particular due to their repetitive character, we may:

  • either charge a reasonable fee covering administrative costs;
  • or refuse to act on the request.

In such cases, the burden of demonstrating the manifestly unfounded or excessive character of the request lies with us (Article 12(5) GDPR).

4.4 Reasoned refusal

If we decide not to act on your request, we inform you of the reasons for the refusal within one month as well as of the possibility of lodging a complaint with a supervisory authority and of seeking a judicial remedy.

---

5. Lodging a complaint with a supervisory authority (Article 77 GDPR)

If you consider that the processing of your personal data does not comply with the GDPR, without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement.

5.1 In France — the CNIL

> Commission Nationale de l'Informatique et des Libertés (CNIL) > 3 place de Fontenoy, TSA 80715, 75334 Paris Cedex 07, France > Phone: +33 1 53 73 22 22 > Website: [cnil.fr](https://www.cnil.fr) > Online complaint: [cnil.fr/plaintes](https://www.cnil.fr/plaintes)

5.2 In other Member States of the European Union

You may seize the competent supervisory authority of your Member State. The full list and contact details are published by the European Data Protection Board (EDPB):

> [edpb.europa.eu/about-edpb/about-edpb/members_en](https://edpb.europa.eu/about-edpb/about-edpb/members_en)

5.3 Judicial remedy

You also have the right to an effective judicial remedy (Articles 78 and 79 GDPR), in particular when a supervisory authority does not handle your complaint, or against a legally binding decision of a supervisory authority concerning you.

---

6. Reference to the Privacy Policy

For the details of the following items, please refer to our [Privacy Policy](/privacy), which constitutes the main transparency document required by Articles 13 and 14 GDPR:

  • categories of data collected (identity, contact, transaction, technical, profile, usage, marketing, travel);
  • purposes and legal bases for each processing;
  • detailed list of sub-processors (Stripe, HighPass, Resend, Anthropic, Twilio, Upstash, Google, Apple, Railway, Discord, etc.);
  • transfers outside the European Union and associated safeguards (Standard Contractual Clauses, Data Privacy Framework);
  • retention periods;
  • technical and organisational security measures;
  • cookies management (cf. [Cookies Policy](/cookies)).

---

7. Changes to this sheet

We may amend this GDPR sheet to reflect legal, jurisprudential (EDPB guidelines, CNIL recommendations) or operational changes — for example, the future designation of an EU representative. Any substantial change will be notified to you by email or via a banner on the Site.

The applicable version is always the one published on skyentry.co/rgpd at the time of the relevant processing.

---

8. Contact

For any question concerning the GDPR or the exercise of your rights:

> Meetricks, LLC > 1013 Centre Rd, Suite 403A, Wilmington, DE 19805, USA > Email: contact@skyentry.co

---

Reference document — Version 1.0 — Last updated: April 25, 2026 This sheet is available in French, English, German, Spanish and Italian. In case of conflicting interpretation, the French and English versions prevail.