Terms of Use

TERMS OF USE & GENERAL CONDITIONS OF SALE

Last Updated: December 28, 2025

1. PREAMBLE AND LEGAL INFORMATION

These Terms of Use and General Conditions of Sale (hereinafter the “Terms”) govern access to and use of the website https://www.stern.tech (the “Website”) and all software solutions, platforms, and services developed and provided by Stern Tech SAS (the “Services”).

Stern Tech SAS is a company incorporated under French law, with its registered office located in La Celle Saint-Cloud, France, registered under VAT number FR41915259741 (hereinafter “Stern Tech”, “we”, or “us”).

Stern Tech designs advanced behavioral analysis software solutions intended exclusively to support informed human decision-making.
None of the Services replace human judgment, professional expertise, or legal responsibility.

The Services are strictly limited to decision-support functionalities and shall under no circumstances be qualified as autonomous decision-making systems, expert systems, or systems producing legally binding decisions.

2. SERVICE CLASSIFICATION

The Services are classified as follows:

2.1 Online Self-Service (SaaS)

  • Alex – Recruitment decision-support software
  • Pegasus – Market research and behavioral analytics
  • Wisedriver (Simulator Edition) – Online SaaS for driving simulators used by driving schools

2.2 Restricted Enterprise / Partner Services

  • Shield – Health data analysis software, accessible exclusively through certified healthcare partnerships
  • Wisedriver (Embedded Automotive Edition) – Offline embedded software deployed in physical vehicles
  • Aletheia – Defense and security applications (restricted access)

Any individual or legal entity accessing the Website or using the Services is referred to as the “User”.

3. ACCEPTANCE – ELECTRONIC PROOF

By accessing the Website, subscribing to, purchasing, installing, or using any of the Services, the User acknowledges having read, understood, and accepted these Terms and all contractual annexes without reservation.

Acceptance by electronic means (including checkbox validation, account creation, payment confirmation, software initialization, or API usage) constitutes valid and enforceable proof of consent within the meaning of Articles 1127-1 and 1366 of the French Civil Code.

4. DESCRIPTION AND SPECIFIC CONDITIONS BY PRODUCT

4.1 Alex – Recruitment Decision Support

Alex is a behavioral analysis software designed to assist recruitment professionals.

Alex performs behavioral profiling within the meaning of Article 4(4) of Regulation (EU) 2016/679 (GDPR).
However, Alex does not perform automated decision-making within the meaning of Article 22 GDPR.

The score generated by Alex constitutes only one criterion among others.
Recruiters retain full discretion regarding:

  • filtering criteria,
  • weighting of indicators,
  • interpretation of results,
  • and final hiring decisions.

Alex is primarily intended for professional users (B2B).

In certain cases, individual candidates may directly access or purchase their own analysis results. Where applicable, such users are considered consumers under EU consumer protection law.

Such access does not constitute a recruitment decision, an employment offer, or an assessment of professional aptitude, but solely the provision of informational behavioral insights.

4.2 Pegasus – Market Research

Pegasus provides probabilistic behavioral insights intended solely to support strategic, marketing, or research decisions.

Pegasus does not provide guarantees of accuracy, performance, or business outcomes.
All decisions based on Pegasus outputs remain under the exclusive responsibility of the User.

4.3 Shield – Health (Restricted Access)

Shield is accessible exclusively through specific contractual partnerships with authorized healthcare institutions or research organizations.

Shield processes health-related data within the meaning of Article 9 GDPR.
Data processed by Stern Tech is pseudonymized, with re-identification keys held exclusively by the healthcare partner.

Unless expressly certified and contractually stated otherwise, Shield:

  • does not provide medical diagnoses,
  • does not replace healthcare professionals,
  • does not constitute a medical device within the meaning of EU medical device regulations.

4.4 Wisedriver – Automotive & Driving Simulation

Wisedriver exists in two deployment models:

a) Embedded Automotive – Offline

Wisedriver may be embedded in physical vehicles and operate entirely offline.
In this configuration, no data transmission to Stern Tech occurs unless expressly agreed by contract.

b) Driving Simulators – Online SaaS

Wisedriver is available as an online SaaS solution for driving simulators operated by driving schools.
This version may be purchased by credit card or bank transfer.

Wisedriver may process biometric and behavioral data solely for monitoring, evaluation, and training purposes.

Wisedriver is not an autonomous driving system and does not replace human control.
Drivers, instructors, and operators remain solely responsible for compliance with road safety laws.

4.5 Aletheia – Defense

Access to Aletheia is strictly restricted and subject to applicable defense, national security, export control, and confidentiality regulations.

Users represent and warrant compliance with all applicable export control laws, sanctions regulations, and defense-related restrictions.

Specific contractual frameworks prevail over these Terms.

5. FINANCIAL TERMS (ALEX, PEGASUS & WISED RIVER SAAS ONLY)

5.1 Ordering and Payment

Payments may be made by credit card (via secure third-party processors such as Stripe) or by bank transfer.

The contract is concluded upon confirmation of payment.
Stern Tech reserves the right to refuse an order for legitimate reasons (fraud, unresolved disputes, regulatory constraints).

5.2 Subscriptions and Renewal

Subscriptions automatically renew unless terminated prior to the renewal date through the User’s account interface.

5.3 Right of Withdrawal

  • B2B Users: no statutory right of withdrawal applies to digital services supplied immediately.
  • Consumers: a 14-day withdrawal right may apply unless expressly waived for immediate performance.

6. DATA PROTECTION – GDPR

6.1 Roles

The Client acts as Data Controller.
Stern Tech acts as Data Processor within the meaning of Article 28 GDPR.

6.2 Lawful Use

The User warrants that all data has been lawfully collected and that all required information notices and consents have been obtained.

6.3 Hosting and Sub-processors

The Services are hosted exclusively within the European Union on Microsoft Azure, acting as an authorized sub-processor.
No data is transferred outside the EU.

6.4 Security & DPIA

Stern Tech implements appropriate technical and organizational measures.
Data Protection Impact Assessments (DPIA) are conducted where legally required, notably for Shield and biometric processing.

7. EU ARTIFICIAL INTELLIGENCE ACT

Certain Services, including Alex and Wisedriver, qualify as high-risk AI systems under Regulation (EU) 2024/AI.

Stern Tech implements:

  • human oversight mechanisms,
  • risk management procedures,
  • data governance controls,
  • technical documentation and traceability.

All AI outputs are probabilistic and informational.
Final decisions remain under human responsibility.

The Client acts as the “deployer” within the meaning of the EU Artificial Intelligence Act and remains solely responsible for the compliance of the use of the Services with applicable laws, including labor law, anti-discrimination law, and information obligations towards individuals.

8. INTELLECTUAL PROPERTY

All intellectual property rights relating to the Website, Services, software, algorithms, models, and documentation remain the exclusive property of Stern Tech.

Users are granted a limited, non-exclusive, non-transferable license for internal professional use only.

9. LIMITATION OF LIABILITY

Stern Tech is bound by an obligation of means.

To the fullest extent permitted by law:

  • liability is limited to direct damages,
  • capped at amounts paid during the twelve (12) months preceding the claim,
  • indirect damages are excluded.

Stern Tech shall not be liable for employment decisions, medical outcomes, driving incidents, operational losses, or strategic business choices made on the basis of the Services.

Nothing limits liability for death, personal injury, or mandatory statutory obligations.

10. CONTRACTUAL ANNEXES AND HIERARCHY

The following annexes form an integral and binding part of these Terms:

  • Annex 1 – Data Processing Agreement (GDPR Article 28)
  • Annex 2 – EU Artificial Intelligence Act – High-Risk AI Systems Annex
  • Annex 3 – Privacy Notice for Candidates and Individual Users (Alex)

By accepting these Terms, the User expressly acknowledges having read and accepted all annexes without reservation.

In the event of conflict between these Terms and any specific agreement, order form, or restricted-access contractual framework, the latter shall prevail.

11. GOVERNING LAW AND JURISDICTION

These Terms are governed by French law.

Any dispute shall fall under the exclusive jurisdiction of the competent courts of Versailles, France, unless mandatory law provides otherwise.

12. CONTACT

For legal, regulatory, or data protection inquiries:
dpo@stern.technology

📎 ANNEX 1

DATA PROCESSING AGREEMENT

(GDPR – Article 28)

1. Purpose

This Data Processing Agreement (“DPA”) forms an integral part of the Terms of Use and governs the processing of personal data by Stern Tech SAS (“Processor”) on behalf of the Client (“Controller”) in accordance with Regulation (EU) 2016/679 (GDPR).

2. Roles of the Parties

The Client acts as the Data Controller.
Stern Tech acts as the Data Processor, processing personal data solely on documented instructions from the Client, unless required to do so by Union or Member State law.

3. Nature and Purpose of Processing

Stern Tech processes personal data exclusively for the purpose of providing the Services, including but not limited to:

  • behavioral analysis and profiling for decision-support purposes,
  • monitoring, evaluation, and training (Wisedriver),
  • health-related data analysis (Shield, where applicable).

Processing activities are limited to what is strictly necessary to perform the Services.

4. Categories of Data Subjects

Depending on the Services used, data subjects may include:

  • job candidates,
  • employees, contractors, or collaborators,
  • market research participants,
  • drivers, trainees, or simulator users,
  • patients or research subjects (Shield).

5. Categories of Personal Data

Depending on the Services, processed data may include:

  • identification data,
  • professional and organizational data,
  • behavioral and interaction data,
  • biometric data (Wisedriver),
  • health-related data within the meaning of Article 9 GDPR (Shield).

6. Processor Obligations

Stern Tech undertakes to:

  • process personal data only on documented instructions from the Client;
  • ensure that authorized personnel are subject to confidentiality obligations;
  • implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk;
  • assist the Client, to the extent reasonably possible and taking into account the nature of the processing, in fulfilling obligations relating to data subject rights;
  • notify the Client without undue delay after becoming aware of a personal data breach;
  • at the choice of the Client, delete or return all personal data upon termination of the Services, unless retention is required by applicable law.

Assistance provided by Stern Tech shall be limited to information reasonably available to it and shall not include legal advice.

7. Subprocessors

The Client authorizes Stern Tech to engage subprocessors, including:

  • Microsoft Azure (EU) – hosting infrastructure.

Stern Tech ensures that subprocessors provide sufficient guarantees to implement appropriate technical and organizational measures in accordance with Article 28 GDPR.

8. Data Transfers

No personal data is transferred outside the European Union.

9. Audits

The Client may request reasonable information necessary to demonstrate compliance with this DPA.
On-site audits shall be subject to prior notice, reasonable frequency, and confidentiality obligations.

📎 ANNEX 2

EU ARTIFICIAL INTELLIGENCE ACT

HIGH-RISK AI SYSTEMS ANNEX

1. Regulatory Qualification

Certain Services provided by Stern Tech, including Alex and Wisedriver, qualify as high-risk AI systems within the meaning of Regulation (EU) 2024/AI (EU Artificial Intelligence Act), notably in the areas of:

  • recruitment and employment,
  • driver monitoring, training, and safety.

Stern Tech acts as the provider of such AI systems within the meaning of the Regulation.

2. Intended Purpose

The Services are designed exclusively as decision-support systems.
They do not perform autonomous decision-making, produce legally binding decisions, or replace human judgment.

3. Human Oversight

Stern Tech ensures that:

  • AI outputs are interpretable and reviewable by human users;
  • users retain the ability to override, disregard, or contextualize outputs;
  • final decisions are always made by humans.

Human oversight remains mandatory throughout the use of the Services.

4. Risk Management and Bias Mitigation

Stern Tech implements:

  • risk identification and mitigation processes,
  • dataset governance and quality control procedures,
  • continuous monitoring of system performance.

Despite these measures, the Client acknowledges that no AI system can guarantee the complete absence of bias, error, or misinterpretation.
AI outputs must always be assessed in light of their context, limitations, and intended purpose.

5. Transparency Obligations

Users are informed that:

  • the Services rely on probabilistic models;
  • outputs are informational and non-deterministic;
  • specific limitations and intended use cases apply.

6. Client Obligations

The Client acts as the deployer within the meaning of the EU Artificial Intelligence Act and undertakes to:

  • use the Services strictly in accordance with their intended purpose;
  • ensure appropriate training of human operators;
  • comply with applicable transparency, information, labor, and anti-discrimination obligations towards individuals;
  • assess the relevance, fairness, and legality of AI outputs in their specific operational context.

📎 ANNEX 3

PRIVACY NOTICE

CANDIDATES & INDIVIDUAL USERS (ALEX)

1. Who We Are

This privacy notice applies to individuals using Alex, provided by Stern Tech SAS, acting as a Data Processor.

The recruiting organization using Alex acts as the Data Controller.

2. Purpose of Processing

Alex processes personal and behavioral data for the purpose of:

  • providing recruitment decision-support insights;
  • generating behavioral analysis scores and reports.

3. Legal Basis

Processing is based on one or more of the following legal bases, depending on the context:

  • the legitimate interest of the recruiting organization in assessing candidates;
  • the performance of a recruitment process;
  • where applicable, the individual’s consent.

No automated decision-making producing legal or similarly significant effects is carried out.

4. Profiling

Alex performs behavioral profiling within the meaning of Article 4(4) GDPR.

No automated decision-making within the meaning of Article 22 GDPR is performed.

5. Categories of Data

Processed data may include:

  • identification data;
  • professional background information;
  • behavioral and interaction data.

6. Data Recipients

Data is accessible only to:

  • the recruiting organization;
  • authorized Stern Tech personnel;
  • hosting and technical service providers located within the European Union.

7. Data Retention

Personal data is retained for the duration defined by the recruiting organization, in accordance with applicable laws and regulatory guidance.
Retention periods shall not exceed what is necessary for the purposes of the recruitment process.

8. Your Rights

You have the right to:

  • access your personal data;
  • rectify inaccurate data;
  • object to certain processing activities;
  • request erasure or restriction of processing;
  • lodge a complaint with a competent supervisory authority.

Requests should be addressed to the recruiting organization or, where applicable, to:
dpo@stern.technology