U.S. Data Privacy Framework

Privacy Policy

Your privacy is important to us. Our privacy statement explains the personal data StratX Simulations processes, how StratX Simulations processes it, and for what purposes.

Cookies

Our websites use cookies. For more information see our Cookie Policy.

EU-U.S. and Swiss-U.S. Data Privacy Frameworks

StratX Simulations complies with EU-U.S. and Swiss-U.S. Data Privacy Frameworks. To learn more see our certification declaration.

Contact Us

If you have a privacy concern, complaint or question for the StratX Simulation Data Privacy Officer, please contact us by email at dpo@stratxsim.com

EU-U.S. DPF and Swiss-U.S. Data Privacy Frameworks

Last updated: March 12, 2026

EU-U.S. DPF and Swiss-U.S. DPF

StratX Simulations complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce.

STRATX SIMULATIONS has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF.

StratX Simulations has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF.

. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern.

To learn more about the Data Privacy Framework (DPF) Program, and to view our certification, please visit https://www.dataprivacyframework.gov/

In compliance with the EU-U.S. DPF and the Swiss-U.S. DPF, StratX Simulations commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the Swiss-U.S. DPF.

Disclosure of Personal Information to Public Authorities

We wish to inform our users that there may be circumstances under which StratX Simulations is required to disclose personal information in response to lawful requests by public authorities.

This includes complying with national security or law enforcement requirements.

Our commitment to safeguarding your privacy extends to ensuring that any disclosure of personal information is conducted in accordance with applicable laws and regulations.

Regulatory Oversight by the Federal Trade Commission (FTC)

StratX Simulations falls under the investigatory and enforcement powers of the Federal Trade Commission (FTC).

This means that our privacy practices and policies are subject to the scrutiny and regulations enforced by the FTC, ensuring that we adhere to the highest standards of privacy protection and regulatory compliance.

Data collection

As part of its activity, STRATX SIMULATIONS collects and processes Personal data about You.

For the proper functioning and continuous improvement of the Services, the Data that may be processed are the following:

Data relating to your identity: name, surname, address, phone number, email, role, company/university;

Data relating to the use of our Services, including Data communicated to our teams throughout your requests;

Your logs and connection data.

We may use your information to:

respond to and process an enquiry

notify you of changes to our products

send you communications that may be of interest to you

comply with a legal request.

We retain Personal Information that you provide us as long as we consider it potentially useful in contacting you about our services, or as needed to comply with our legal obligations.

You have the right to access personal data StratX Simulations hold about you. Upon request, we will provide you with information about whether we hold any of your personal information. To request access or to update your personal information please email us at dpo@stratxsim.com or write to us at: StratX Simulations, 2 Rue Jean Lantier – 75001 Paris, France.

Recipients

As part of their respective responsibilities and for the purposes recalled above in Data Collection, the key persons who may have access to your Data are the following:

Authorized personnel of the different departments of STRATX SIMULATIONS;

Companies in charge of the management of our websites;

Authorized personnel of our processors;

Regulatory bodies;

If applicable, the relevant jurisdictions, mediators, accountants, auditors, attorneys, bailiffs, debt collection companies.

Your Data are not shared, exchanged, sold, or loaned to anyone other than those mentioned above without your prior express consent in accordance with applicable legal and regulatory provisions.

The purposes for which we may disclose your Personal Data to processors may include Data storage.

These processors are permitted to use your Personal data only as necessary to provide these services to us and such use is strictly controlled. In this case, STRATX SIMULATIONS will also ensure that the processors adopt appropriate confidentiality and security measures.

Certain categories of processors have access to the Data:

STRATX SIMULATIONS LLC (Storage location: USA)

Microsoft Azure (Storage location: USA)

Avalara (Storage location: USA)

Hubspot (CRM hosting) (Storage location: USA)

Bluenote systems (CRM hosting) (Storage location: France)

Scaleway (e-commerce web hosting) (Storage location: France)

DoList (transactional emailing system) (Storage location: France)

To obtain more information on our processors, you can send a request to our DPO by e-mail to dpo@stratxsim.com or by mail to STRATX SIMULATIONS – Data Protection Officer, 2, Rue Jean Lantier, 75001 Paris.

Right to Invoke Binding Arbitration

Individuals whose personal data is transferred to the United States under our Data Privacy Framework (DPF) certification may, under certain limited conditions, invoke binding arbitration as a last resort mechanism for resolving complaints regarding our handling of their personal data.

This option is available only after the individual has fully exhausted all other remedies under the DPF, including:

Contacting our organization directly

Engaging with our independent recourse mechanism

Seeking assistance from the appropriate Data Protection Authority

Only when these steps have been completed, and only when the conditions described in Annex I of the DPF Principles are met, may an individual initiate binding arbitration.

Our organization is obligated to participate in arbitration solely to the extent required by Annex I and only when an individual has properly invoked the process by providing notice and following the procedures outlined in the DPF Principles. Arbitration is strictly limited to the specific issues and remedies permitted under Annex I and does not extend to broader claims or damages.

For more information about the arbitration procedures and available remedies, please refer to the official DPF resources:

Arbitration Procedures: https://www.dataprivacyframework.gov/framework-article/G%E2%80%93Arbitration-Procedures

Available Remedies (Swiss-U.S. DPF): https://www.dataprivacyframework.gov/framework-article/B%E2%80%93Available-Remedies%E2%80%93SWISS

Liability in Cases of Onward Transfers

StratX Simulations acknowledges its liability in cases where personal information is transferred to third parties.

We ensure that any such transfers are carried out in compliance with relevant privacy laws and the DPF Principles.

Our organization takes rigorous steps to ensure that third-party recipients of personal information provide the same level of privacy protection as stipulated by our policies and the regulatory framework governing our operations.