What is our Privacy Policy?

1. Data Controller

We are the data controller for the personal data we collect through our website and services. You can contact us at the email address provided in our contact page for any privacy-related enquiries.

2. Data We Collect

We collect only the data necessary to provide our services and operate our business:

• Account data: Name, email address, and payment information when you subscribe.
• Communication data: Messages you send us via contact forms or email.
• Technical data: IP address, browser type, and usage data for analytics and security.
• Telegram identifier: Your Telegram user ID when you connect your account to our bot.

We do not store your passwords. Integrations (email, LinkedIn, etc.) use secure OAuth; credentials remain with the respective providers.

3. Legal Basis for Processing

We process personal data on the following lawful bases under GDPR Article 6:

• Contract: To perform our agreement with you (subscription, support).
• Legitimate interests: To improve our services, prevent fraud, and ensure security.
• Consent: Where we explicitly ask for your consent (e.g. marketing emails).

4. How We Use Your Data

We use your data to deliver our AI agent configuration service, process payments, provide support, and comply with legal obligations. Agents run in an environment you control; we do not process the content of your emails, messages, or other third-party data beyond what is necessary to configure and operate the agents.

5. Third-Party Processors

We use trusted processors who comply with GDPR: Stripe (payments), Vercel (hosting), and other infrastructure providers as needed for the service. We have data processing agreements in place where required. We do not sell your personal data.

6. International Transfers

Where data is transferred outside the EEA, we ensure appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission. European hosting options are available on request.

7. Data Retention

We retain personal data only as long as necessary for the purposes described in this policy or as required by law. Account data is retained for the duration of your subscription and for a limited period thereafter for legal and accounting purposes. You may request erasure at any time.

8. Your Rights

Under GDPR, you have the right to:

• Access your personal data
• Rectify inaccurate data
• Request erasure ("right to be forgotten")
• Restrict processing
• Data portability
• Object to processing
• Withdraw consent where applicable
• Lodge a complaint with a supervisory authority

To exercise these rights, contact us using the details on our contact page. We will respond within 30 days.

9. Cookies and Tracking

We use essential cookies for site functionality and analytics (e.g. Vercel Analytics). We do not use advertising cookies. You can manage cookie preferences in your browser settings.

10. Security

We implement appropriate technical and organisational measures to protect your data, including encryption in transit and at rest, access controls, and regular security reviews.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or a notice on our website. The "Last updated" date at the bottom indicates when this policy was last revised.

12. Contact

For privacy enquiries or to exercise your rights, contact us via the contact page or email us at the address provided there.