Privacy Policy

General provisions

This Privacy Policy set the rules of processing your personal data obtained through our website: https://www.deepflare.ai/ (the "Website") and through our online service and software "Deepflare’s Peprank" available via a website at https://peprank.deepflare.ai/ (the “Software”), inter alia, it contains information about the controller of your personal data, the scope, purpose and period of data processing, as well as information about your rights and the third parties to which we may share your personal data.

Personal data controller

The controller of your personal data obtained through the Software is CGen spółka z ograniczoną odpowiedzialnością with its registered office in Warsaw, ul. Złota 7/28, (00-019 Warsaw), entered into the Register of Entrepreneurs of the National Court Register kept by the District Court for the capital city of Warsaw in Warsaw, XII Commercial Department of the National Court Register under the KRS number 0000846289, REGON: 386316445, NIP: 7010986785 (the "Controller" or “Deepflare”).

In all matters relating to the processing of your personal data, you can contact us by email: data@deepflare.ai or in writing to the following address: CGen sp. z.o.o. ul. Złota 7/28, 00-019 Warsaw.

Information we may collect from you

We may collect and process the following data about you:

  1. information that you provide by filling in any of the forms available on the Website and via our Software – this may include information provided such as your name, email address, telephone number, as well as other data that you provide by filling relevant form(s);
  2. information obtained through the Software;
  3. if you contact us, we may keep a record of that correspondence;
  4. details of your visits to our Website, including, but not limited to, traffic data, your location, contact details, weblogs and other communication data and the resources that you access.

Data acquisition through the Website and Software

When you interact with Deepflare’s Website and/or Software, we automatically collect technical data about your equipment, activities and browsing or usage patterns.

Deepflare receives information when submits requests via Software and collect it when you use the Software.

In particular:

  1. Deepflare collects your personal data to enable to us respond to requests and provide you with our services;
  2. Deepflare collects information about your activity in order to provide relevant usage of information;
  3. Deepflare collects information from your device that provides us with technical information when you access or use the Website and/or the Software.

Data categories

On the Website and/or in the Software Deepflare may collect, use, store and transfer the following categories of your personal data:

  1. Identifying Information: includes first name, last name, title, username or similar identifier.
  2. Contact information: includes home address, email address and phone numbers.
  3. Technical Data: includes your Internet Protocol (IP) address, login credentials, browser type and version, device identifiers, time zone settings, browser plug-in types and versions, operating system and platform, and other technologies on the devices you use to access the Software and Services.
  4. User Data: input data uploaded to the Software, request ID, results generated by the Software.
  5. Software Usage Data: includes information about how you use our Software and services, as well as information about data transmitted by the Software for calibration purposes.
  6. Marketing and Communications Data: includes your preferences for receiving marketing materials and communications.

Purposes, basis, and duration of personal data processing generally

Deepflare will use your personal data through the Software only in accordance with our Privacy Policy. If you do not wish us to continue using your personal data in this manner, you can request that your account be deactivated by contacting us as at: data@deepflare.ai.

Deepflare will only process your personal data if we have a lawful basis for doing so. Lawful bases for processing include consent, contractual necessity (i.e. processing that is necessary for the performance of a contract with you, such as your user agreement with us that allows us to provide you with the services through the Website and/or the Software) and our “legitimate interests” or the legitimate interest of others (e.g. our users) such as:

  • Administering, personalizing, improving or operating our Software, services and business;
  • Better understanding your needs and interests;
  • Fulfilling requests you make related to the Software and our services;
  • Complying with our legal obligations, resolving disputes with users, enforcing our agreements;
  • Protecting, investigating and deterring against fraudulent, harmful, unauthorized or illegal activity;
  • Responding to inquiries from you or our third-party service providers;
  • To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal data held by us about our Software and service users is among the assets transferred.

We collect and/or process your personal data in connection with the following activities related to our Website, Software, and services:

  • Use, development and testing of certain Website, Software, and service features, including features in development;
  • Generating reports based on information collected from use of our Software and services;
  • Requesting service and support for our Website, Software, and services, and providing such support;
  • Conducting surveys and processing information;
  • Conducting research relating to our Software, and services;
  • Billing and collecting payments for our Software, and services;
  • Registering for newsletter subscriptions;
  • Customizing and personalizing the content and features you see;
  • To keep you up to date on the latest Software and service announcements, including updates, upgrades, system enhancements, special offers, and other information;
  • To conduct audits and provide support for our Software and services;
  • Account registration (if user creates an account);
  • To provide the ability to create personal profile areas and view protected content;
  • To meet contract or legal obligations;
  • Communicating with you by email, telephone or regular mail regarding news updates, special promotional offers, our products and services, or other information which may be of interest to you.

We provide you with the opportunity to opt out of having your personal data used for certain purposes when we ask for this information; however, this may limit our ability to provide and your ability to fully use our Website, Software, and services. You may also opt out of email and promotional communications by following the instructions included in each such communication or by emailing us at data@deepflare.ai. However, you will not be able to opt-out of all communications, such as those legally required notices or required services notices.

Purposes, basis, and duration of personal data processing under GDPR

As contemplated under the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) hereafter referred to as "GDPR"), Deepflare may process your data in order to provide you with services related to Website and/or Software and to the extent of such services for the following purposes:

  1. in order to fulfil your contact request:
    a) based on Article 6(1)(a) of the GDPR,
    b) in this case, personal data is processed by the Controller as long as your consent is not revoked;
  2. in order to perform a contract to which you are a party, in connection with the use of our Software or other service or entering into cooperation with the Controller, or in order to take actions, at your request, prior to entering into a contract with the Controller:
    a) based on Article 6(1)(b) of the GDPR,
    b) In such a case, the personal data are processed by the Controller as long as it is necessary for the performance of the contract, and afterwards for a period corresponding to the period of limitation of potential claims on this account;
  3. to respond to your requests for services submitted through the Software and to provide services through the Software, in connection with the use of the Software and to provide high quality functionality of our products and services:
    a) based on Article 6(1)(b) of the GDPR,
    b) in this case, the personal data will be processed by the Controller for as long as it is necessary to enable you to use the Software, and thereafter for a period corresponding to the period of limitation of any claims arising therefrom;
  4. in order to develop our products and services, including the Software, which is the fulfilment of the Controller's legitimate interest:
    a) based on Article 6(1)(f) of the GDPR,
    b) in this case, the personal data are processed by the Controller for as long as you do not object to such processing;
  5. for marketing purposes, in particular for sending newsletters, which is the realization of the Controller's legitimate interest:
    a) based on Article 6(1)(f) of the GDPR,
    b) in this case, the personal data are processed by the Controller for as long as you do not object to such processing,
    c) such information will be certainly sent by us basis on your consent to electronic communication;
  6. for the purpose of measuring your satisfaction and for statistical purposes for the internal needs of the Controller, which is the realization of the Controller's legitimate interest:
    a) based on Article 6(1)(f) of the GDPR,
    b) in this case, the personal data are processed by the Controller for as long as you do not object to such processing;
  7. for archival (evidential) purposes, including for the purpose and to the extent necessary for the possible establishment, assertion or defence of our claims relating to the use of the Software, which is the exercise of our legitimate interest:
    a) based on Article 6(1)(f) of the GDPR,
    b) in this case, the personal data are processed by the Controller for as long as you do not object to such processing;
  8. we also process your data if it is required by law, e.g., for tax and accounting purposes:
    a) on the basis of Article 6(1)(c) of the GDPR
    b) In this case, the personal data are processed by the Controller for as long as required by applicable law.

In addition, where the basis for the processing of personal data is your consent or the legitimate interest of the Controller, despite your request for erasure of personal data the Controller may retain certain personal data to the extent that the processing is necessary for the establishment, investigation, or defense of claims, and until such claims are time-barred.

Rights of EEA, UK and Swiss residents in relation to data processing

The use of Deepflare’s Website, Software, and services and the provision of personal data to Deepflare and our partners is voluntary but necessary to provide you with appropriate and high-quality functionality of our services.

If you are resident in the EEA, the UK or Switzerland, you have the following rights under the GDPR in relation to Deepflare’s processing of your personal data by the Controller:

  1. the right of access to your data, including obtaining a copy of your data;
  2. the right to request for rectification of data;
  3. the right to erasure of data (right to be forgotten);
  4. the right to lodge a complaint to the supervisory authority for the protection of personal data, which in Poland is the President of the Office for Personal Data Protection;
  5. the right to restrict data processing;
  6. the right to object (objection to processing, objection to direct marketing);
  7. where your personal data is processed on the basis of consent or for the performance of a contract, you also have the right to data portability;
  8. where personal data is processed on the basis of your consent, you have the right to withdraw your consent at any time, but your withdrawal of consent does not affect the lawfulness of the processing carried out while we had your consent.

More information about aforementioned rights can be found on the European Commission's "My Rights" section on GDPR, which is available in many languages. If you live outside the EEA, the UK or Switzerland, you may have similar rights under local laws.

To exercise the abovementioned rights, please contact us by email: data@deepflare.ai or in writing to the following address: CGen sp. z.o.o. ul. Złota 7/28, 00-019 Warsaw.

Despite your request for erasure of personal data Deepflare may retain certain personal data to the extent processing of such data is necessary for the establishment, investigation, or defense of claims, and until such claims are time-barred.

Recipients of the data

Deepflare does not share your information collected through the Website or the Software with third parties unless we receive your consent to do so, except with our verified partners, vendors, subcontractors, service providers, and entities to whom we may entrust your information in order to properly fulfil your contact request, provide you the services, and operate and maintain the Website, the Software, and services.

Your personal data will only be processed to the extent necessary, permitted for the purposes of the processing and in accordance with the applicable legislation, in the field of data protection, among others GDPR. Each recipient shall be responsible for ensuring adequate protection of your data.

Deepflare works with vendors, service providers, and other partners to help us provide our Software and services by performing tasks on our behalf. Deepflare may need to share or provide information (including personal data) to them to help them perform these business functions, for example sending emails on our behalf, database management services, transacting sales, database hosting, providing customer support software, and security. These service providers do not have the right to use your personal data Deepflare shares with them beyond what is necessary to assist us. These service providers must adhere to confidentiality and security obligations in a way that is consistent with applicable law and their own terms and policies.

The third parties we work with to provide our Software and services are:

  • Google for single sign on, using forms, and sending texts to devices,
  • Google Analytics for analytics on our websites.

Recipients of data located outside the EEA

If Controller decides to transfer your personal data to our partners who are not located in the EEA, we will take all steps necessary to ensure that your personal data is adequately protected, and we will only transfer your personal data to entities that guarantee an adequate level of protection for your personal data.

The right of access of these entities will be strictly limited in such a way that their access will only be possible to the extent necessary for the purpose of contacting or cooperating with you or for the conclusion and proper execution of the contract.

Local regulations

Deepflare provides the same level of privacy protection to all users worldwide. However, for some users residing in certain locations outside the EEA, additional data protection rights have been granted by local laws that are consistent with our Privacy Policy.

If you need additional information regarding your rights, you may contact the Controller by email at data@deepflare.ai.

Automated decision making

We do not make automated decision, including profiling based on provided personal data.

Security

Deepflare has implemented reasonable administrative, technical, and physical security measures to protect personal data.  

Deepflare may store your personal data in electronic or paper form. We take reasonable steps to protect your personal data from misuse, interference, and loss, as well as unauthorized access, modification, or disclosure, and we use a variety of administrative, personnel and technical measures to protect your personal data.

For example, we implement the following measures:

  1. confidentiality requirements;
  2. granting access to information only to authorized persons;
  3. equivalent security and confidentiality obligations provided by third parties; and
  4. data encryption on our website.

You are responsible for maintaining the strict confidentiality of your account login credentials, and for any activity that occurs under your account credentials. Notify Deepflare if you suspect any unauthorized use of your account or other breach of security.

Cookies

When you browse the Website, one or more cookies may be stored on your device (terminal device) by us or our partner company (our subcontractor), depending on your consent and browser configuration. Please read the following information about cookies and how they are used.

Cookies are small files that are placed on your computer's hard drive when you visit some websites. They contain information about your device and usually do not contain any personal data. These files cannot be used to infect your device with viruses or other malware.

In cookies we store basic, anonymous information about users (e.g. identifier) and data to increase the comfort of using the Website, needed to optimize and correctly display the content of the pages and advertising campaigns.

Cookies are installed for different periods. Some of them expire when you close your browser, others are active for a few days, months or even years, mainly so that information about your choices is not lost. Long-term active cookies are used to help us identify new and returning Website users.

As a Website user, you may stop providing this information to the Website at any time by deleting the cookies stored on your device and downloaded via the Website. To do so, you must change the settings of your current web browser.
It is also possible to configure your browser in a way that will block the installation of cookies for specific websites of your choice or for all websites. However, such settings will result in the loss of some Website features that require the installation of cookies.

Please also visit: https://www.deepflare.ai/cookie-settings.

Links to external websites

Our Website, Software and services may contain links to third party’s websites, plug-ins, and applications.

By clicking on these links or activating them in other manner, you may allow third parties to collect or share data about you. We do not control such third party’s websites, plug-ins or applications and we are not responsible for their privacy practices. Each time you leave our Website, we encourage you to review the privacy policy of each website you visit and app you use.

Final provisions

We reserve the right to change this Privacy Policy, in particular due to changes of the applicable law, technology or the way the Website operates. The current text of the Privacy Policy is always available on the Website.

If any provision of the Privacy Policy is declared invalid by a final court decision, the remaining provisions of the Policy remain in force.

The Privacy Policy shall be governed by and interpreted in accordance with the provisions of Polish law.