Back

Privacy Policy for Clubs

The privacy and respect of clubs and their users are essential to us.

1. Glossary

Netatoo: refers to the company Netatoo S.A.S. SIRET 48782045800031; also referred to as "we," "our," "us."
Application: refers to the online booking platform BalleJaune and OpenResa, accessible from ballejaune.com and openresa.com.
Club(s): refers to an entity represented by one or more administrators (association, municipality, company, etc.).
User(s): refers to individuals with an account in a club's database.
Administrator(s): refers to individuals responsible for the club, with partial or full access to the Administration section of the application.

2. Introduction

Netatoo SAS (SIRET 48782045800031) provides an online booking platform (ballejaune.com and openresa.com), also referred to as "we," "our," and "us" in this document.

We place great importance on the trust you place in us by choosing our online booking solution. Therefore, we diligently protect the privacy and confidentiality of your personal data.

This privacy policy applies to all our services, whether accessible online or through any other platform or device (hereinafter collectively referred to as "the application").

By accepting this privacy policy, you consent to the processing of your personal data by Netatoo for the purposes specified below.

3. Processing of Personal Data

Netatoo processes your club and personal data for the following purposes:

  • Setting up your administrator account and your club account.
  • Managing your administrator account and your club account.
  • Contacting you regarding relevant questions associated with your personal user account or your club account.
  • To control unauthorized use or abuse of our services, or to detect, investigate, or prevent activities that may violate our policies or be fraudulent/illegal.
  • To process your inquiries and provide technical support via email or phone.
  • To process subscription payments for our services by the club.
  • To communicate directly with you, including sending newsletters, promotions, and special offers.
  • Analyzing trends, administering or optimizing our offerings, monitoring usage or traffic patterns.

4. Data Collected

Netatoo collects the following personal data concerning club administrators:

  • First name, last name
  • E-mail address
  • Phone number(s)
  • Organization name (optional)
  • Technical information about the browser/device

We also collect, at the club level, the following data:

  • Contact details (e-mail, postal address, phone)
  • Geolocation (latitude/longitude)
  • Website URL
  • Information on time zone and language
  • Payment API information
  • Information on schedules and opening hours

This information is necessary to set up your club account, manage your account subscription, and contact you regarding relevant questions associated with your account.

We are committed to ensuring that no data is exchanged or sold on any medium to third parties.

5. Site Administrator & User

Our application is designed in such a way that a person with an administrator account in the club can also have a regular user account in the same club and also in another club registered on the platform. In this case, personal data is subject to the privacy policy for users and the terms and conditions for users.

6. Data Processors

From time to time, we may engage third-party service providers as data processors for the purposes specified above. Processing by these third parties takes place according to our instructions. These parties are bound by data processing agreements and confidentiality agreements.

You can view the comprehensive list of third-party entities we engage to provide services on our behalf by visiting the "Our Subcontractors and Third-Party Providers" page.

7. Security

In accordance with data protection laws, strict security procedures are observed within Netatoo to prevent misuse of personal data and site data and unauthorized access.

To protect and safeguard the personal data and club data provided to us, we have implemented and use appropriate professional systems and procedures. Additionally, we have implemented and use security procedures and technical and physical restrictions for access to and use of club personal information. Only authorized employees may access personal information in the course of their duties concerning our services.

For more details on the measures in place to secure and protect your data, please refer to the data security section.

8. Data Breaches

If we become aware of a data breach, we will notify the affected individuals and the competent supervisory authorities no later than 72 hours after becoming aware of it.

9. Protection of Payment Gateway API Data

Netatoo protects the private keys of the online payment gateway at multiple levels. Security measures include, but are not limited to:

  • SSL encryption is used to transfer API information to Netatoo's application servers.
  • API information is encrypted with the AES-256 algorithm before being stored on our servers.

10. Credit Card Information

Raw credit card information does not come into contact with the servers on which our application is hosted. All credit card information is handled by online payment gateways such as PayPal or Paybox, via a secure TLS connection. Netatoo and the clubs are not able to access unmasked credit card data.

11. Control of Club Details and Data

You can view and modify the data you store with us in the "Administration > Settings" section for club data and in the "My Account > Account Details" section for user data.

The club or administrator proving their identity has the option to request from Netatoo, at the email address support@ballejaune.com:

  • verification of personal data concerning them or their club, collected by Netatoo or by the club,
  • the provision of a free copy of these data, provided that such a request is not abusive, particularly due to its repetitive and disproportionate nature.

In accordance with our terms and conditions for clubs, the club may terminate its account at any time and request the permanent deletion of all corresponding data (settings, users, bookings, etc.). The termination request must be made by contacting us via email or postal mail.

12. Competent Authorities

We may share and disclose details and information concerning an administrator or a user of your club to a government or investigative authority if required by law (or any regulation having the force of law), a judicial process, a criminal investigation, a court order, or a subpoena. We may also disclose your personal data if it is strictly necessary for the prevention and detection of criminal acts.

13. Changes to this Statement

Our application is constantly evolving, and as such, we may change the way we collect, transmit, and process personal data and any other information we deem necessary. This statement may therefore be modified from time to time to reflect the latest changes.

Contact Us

Postal Address:
Netatoo SAS - BP 43606 - 54016 NANCY CEDEX FRANCE

Email:
support@openresa.com

Updated on Thursday, June 12, 2025
Terms & Privacy Policy
United States (EN)