Privacy Policy
We attach the utmost importance to the protection of your personal data, in compliance with the General Data Protection Regulation (GDPR) and the French Data Protection Act (Loi Informatique et Libertés).
Last updated: 29 April 2026. This privacy policy applies to all services provided by Riviera Wealth Management and to visitors of our website rivierawealthmanagement.com.
Accountability
Data Controller
The controller responsible for the processing of your personal data is:
Benjamin Cohen — President, Riviera Wealth Management
840 Avenue des Parcs, 06250 Mougins, France
+33 4 11 66 55 44 · contact@rivierawealthmanagement.com
Transparency
Personal Data Collected
Depending on your relationship with us, we may collect and process the following categories of personal data:
- Identification — Surname, first name, date of birth, nationality, identity document
- Contact details — Postal address, email, telephone number
- Professional data — Employer, occupation, sources of income
- Financial data — Assets, investments, insurance, real estate
- Family data — Marital status, dependants, matrimonial regime
- Browsing data — IP address, cookies, pages viewed
Article 6 GDPR
Purposes and Legal Bases
| Purpose | Description | Legal basis |
|---|---|---|
| Investment advice | Personalised wealth management advice | Contract — 6.1(b) |
| KYC / AML / MiFID II | Client identification and regulatory compliance | Legal obligation — 6.1(c) |
| Newsletter & analysis | Market analysis and investment commentary | |
| Client relationship | Appointment management and communications | Legitimate interest — 6.1(f) |
| Website improvement | Traffic analysis and service enhancement | Legitimate interest — 6.1(f) |
| Marketing | Communications regarding our services and events |
Data sharing
Data Recipients
Your personal data may be disclosed to the following recipients, in strict compliance with the principle of data minimisation:
- Financial partners — Insurance companies, asset management firms, custodian banks
- Technical service providers — Hosting, CRM, electronic signature (GDPR Art. 28 agreements)
- Regulatory authorities — AMF, ACPR, TRACFIN where required by law
- External advisers — Notaries, accountants, solicitors acting with your authorisation
We never sell, rent or exchange your personal data.
International transfers
Transfers Outside the European Union
Your data is primarily processed within the EEA. Where transfers outside the EEA are necessary, we ensure their protection through Standard Contractual Clauses (SCCs), adequacy decisions and supplementary measures including encryption and data minimisation.
You may request a copy of the applicable safeguards by writing to contact@rivierawealthmanagement.com.
Data lifecycle
Retention Periods
| Category | Retention period | Basis |
|---|---|---|
| Active client files | Duration of the contractual relationship | Performance of contract |
| Former client data | 5 years after end of relationship | Civil liability (Art. 2224 Civil Code) |
| KYC / AML | 5 years after end of relationship | Art. L561-12 Monetary and Financial Code |
| Advisory documents | 5 years | MiFID II / Directive 2014/65/EU |
| Marketing data | 3 years from last contact | CNIL recommendations |
| Cookies & trackers | 13 months maximum | CNIL recommendation |
Chapter III GDPR
Your Rights
In accordance with the GDPR, you have the following rights. We respond within 30 days, free of charge.
Article 15
Right of access
Obtain confirmation and a copy of your data.
Article 16
Right to rectification
Request the correction of inaccurate data.
Article 17
Right to erasure
Request deletion in the absence of an overriding ground.
Article 18
Right to restriction
Restrict processing in certain circumstances.
Article 20
Right to portability
Receive your data in a structured format.
Article 21
Right to object
Object to processing based on legitimate interest.
Contact us at contact@rivierawealthmanagement.com or by post at 840 Avenue des Parcs, 06250 Mougins. You may also lodge a complaint with the CNIL — 3 Place de Fontenoy, 75007 Paris.
Cookie policy
Cookies & Trackers
| Category | Purpose | Duration |
|---|---|---|
| Strictly necessary | Session management, security, authentication | Session |
| Analytics | Audience measurement, anonymised user journey | 13 months |
| Preferences | Language, display settings, cookie choices | 12 months |
Data protection
Data Security
SSL / TLS
All data in transit encrypted via TLS 1.3
Access controls
Role-based access with multi-factor authentication
Encrypted backups
Automated backups on sovereign French infrastructure
Staff training
Annual GDPR training for all personnel
Updates
Policy Amendments
We may update this policy to reflect changes in our practices or applicable legislation. Any material amendment will be communicated to you by email and displayed on our website for 30 days.
Get in touch
Contact
Post
Registered office
840 Avenue des Parcs
06250 Mougins, France
Let’s discuss your wealth strategy
A 30-minute discovery consultation, with no commitment and in complete confidence.
Schedule a consultation