Introduction
This Privacy Policy explains how AI Factory ("AI Factory", "we", "our", "us") collects, uses and protects personal data when you visit our website, contact us or use our services.
We are committed to protecting your privacy and handling personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).
Data We Collect
We may collect the following categories of personal data:
| Category | Examples |
|---|---|
| Contact information | Name, email address, company name, phone number |
| Communication data | Messages submitted through our contact forms, email correspondence, meeting notes |
| Technical data | IP address, browser type, device information, pages visited, referral source |
| Service-related data | Information provided in connection with AI integration projects, automation workflows or application development |
How We Use Your Data
We use personal data to:
- Respond to inquiries and provide support.
- Evaluate potential projects and business relationships.
- Deliver and improve our services.
- Maintain the security and integrity of our systems.
- Comply with legal and regulatory obligations.
- Communicate about our services when permitted by law.
Legal Basis for Processing
Depending on the context, we process personal data based on:
- Your consent.
- The performance of a contract or pre-contractual measures.
- Our legitimate interests in operating and improving our business.
- Compliance with legal obligations.
AI, Data Security & Sovereignty
AI Factory follows a security-first approach. Where applicable:
- AI systems may be deployed on secured private infrastructure.
- Data can be anonymised before processing.
- We prioritise providers offering contractual data protection commitments, including European AI providers where appropriate.
- Access controls, permission management and governance mechanisms are implemented to protect client operations.
- Project-specific security measures may be defined separately in client agreements.
Sharing of Data
We do not sell personal data. We may share data with:
- Hosting providers and infrastructure partners.
- Professional advisors (legal, accounting, compliance).
- Subprocessors involved in delivering services.
- Authorities when required by law.
When third parties process data on our behalf, we ensure appropriate contractual safeguards are in place.
International Transfers
If personal data is transferred outside the European Economic Area (EEA), we implement appropriate safeguards, such as Standard Contractual Clauses or equivalent legal mechanisms.
Data Retention
We retain personal data only for as long as necessary for the purposes described in this policy, unless a longer retention period is required by law or contractual obligations.
Your Rights
Under GDPR, you may have the right to:
- Access your personal data.
- Correct inaccurate data.
- Request deletion of data.
- Restrict processing.
- Object to processing based on legitimate interests.
- Request data portability.
- Withdraw consent at any time where processing is based on consent.
- Lodge a complaint with a supervisory authority.
Cookies & Analytics
Our website may use cookies or analytics tools to improve user experience and understand site usage.
If non-essential cookies are used, a cookie banner or consent mechanism will be implemented.
Contact
For questions about this Privacy Policy or to exercise your rights, contact:
Changes to This Policy
We may update this Privacy Policy from time to time. The latest version will always be available on this page with an updated effective date.