Privacy Policy

1. Introduction

This privacy policy applies to the services offered by Neuralfinity UG (haftungsbeschränkt), referred to as "Neuralfinity," "we," "us," or "our." At Neuralfinity, we are committed to protecting the privacy of our users and visitors. This privacy policy explains how we collect, use, and protect your personal information in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

The scope of this privacy policy applies to all individuals who interact with Neuralfinity, including users of our website, products, and services. This policy outlines the types of personal information we collect, how we use that information, and the measures we take to safeguard your data. It also explains your rights as a data subject under the GDPR.

Neuralfinity is the data controller for the personal information we collect and process, and our identity is as follows:

Neuralfinity UG (haftungsbeschränkt)
Am Sandtorkai 27
20457 Hamburg
Germany

We encourage you to read this privacy policy carefully and contact us if you have any questions or concerns about how we handle your personal information. By using our website, products, or services, you consent to the terms of this privacy policy.

2. Data Collection

At Neuralfinity, we collect personal data and metadata to provide our services and enhance the user experience. Personal data includes information such as name, email address, and payment information. We collect this information when you register for an account, subscribe to a plan, or contact us for support. We use this information to fulfill our contractual obligations, provide customer service, and improve our products and services.

We process personal data and metadata on the basis of several legal grounds, including:

  • Consent: We may collect and process personal data based on your consent, which you can withdraw at any time.
  • Contractual Obligations: We collect and process personal data to fulfill our contractual obligations to you, such as delivering a product or providing customer support.
  • Legal Obligations: We may collect and process personal data to comply with legal obligations, such as tax reporting requirements.
  • Legitimate Interests: We may collect and process personal data to pursue our legitimate interests, such as improving our services, preventing fraud, and protecting the security of our platform.

3. Data Usage

At Neuralfinity, we use the data we collect to provide our services and enhance the user experience. The content of API requests is never stored beyond the purpose of answering the request and is automatically deleted from all of our systems once this purpose has been achieved. IP addresses that make requests are stored as part of access logs, together with a time stamp of the request. Other request metadata can be stored, but this meta data by design cannot be used to draw any conclusions about the content of the request.

For users of the Dashboard UI, we require first name, last name, email address, and optionally a VAT ID and a company name. This information is used to create and manage your account and to provide customer support. We may also use this information to communicate with you about updates to our services and other promotional information.

We may process payment information to be able to charge subscription and overage fees when they incur. We take reasonable measures to protect your payment information and to prevent unauthorized access or disclosure

We do not sell, rent, or share your personal data with third parties, except as required by law or with your explicit consent. We may share your data with third-party service providers who assist us in providing our services, such as payment processors. We require our service providers to follow GDPR and other applicable data protection laws and to use your data only for the purpose of providing their services to us.

4. Data Sharing

At Neuralfinity, we take the privacy and security of our users' data seriously. We do not share personal data with third parties for any purposes other than providing the agreed services to our users.

We may share personal data with third-party service providers who assist us in providing our services, such as payment processors and billing service providers. Specifically, we share data with Stripe for payment processing purposes. We require our service providers to follow GDPR and other applicable data protection laws and to use your data only for the purpose of providing their services to us.

We do not share the content of any API request with third parties. We took deliberate design decisions to prohibit us from being able to access request contents beyond the purpose of answering the API request. We take reasonable measures to protect your data and prevent unauthorized access or disclosure.

We do not share personal data with affiliates or subsidiaries, except as required by law or with your explicit consent.

Users can opt-out of data sharing by contacting us at privacy@neuralfinity.com. However, please note that opting out of data sharing may limit our ability to provide certain services to you.

5. User Rights

Under GDPR, you have certain rights with regard to your personal data. These rights include:

  • The right to access your personal data: You have the right to request access to your personal data that we hold.
  • The right to rectify your personal data: You have the right to request that we correct any inaccurate or incomplete personal data that we hold.
  • The right to erase your personal data: You have the right to request that we delete your personal data in certain circumstances, such as if the data is no longer necessary for the purposes for which it was collected.
  • The right to restrict processing of your personal data: You have the right to request that we limit the processing of your personal data in certain circumstances, such as if you contest the accuracy of the data.
  • The right to object to the processing of your personal data: You have the right to object to the processing of your personal data in certain circumstances, such as if the data is being processed for direct marketing purposes.
  • The right to data portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another data controller.

If you would like to exercise any of these rights, please contact us at privacy@neuralfinity.com. We will respond to your request within one month. Please note that we may need to verify your identity before fulfilling your request.

If you believe that we have not complied with your data protection rights, you have the right to lodge a complaint with a supervisory authority.

6. Security Measures

At Neuralfinity, we take the security of your personal data seriously. We have implemented technical and organizational measures to protect your personal data from unauthorized access, alteration, or destruction. These measures include:

  • Encryption of sensitive data: We use industry-standard encryption to protect all data, including sensitive data, such as payment information, during transmission and storage.
  • Access controls: We restrict access to personal data to authorized personnel and implement role-based access controls to ensure that personnel can only access data that is necessary for their job function.
  • Monitoring and logging: We monitor our systems and logs for suspicious activity and investigate any anomalies.
  • Regular testing and updates: We regularly test our systems for vulnerabilities and apply security updates as necessary.
  • Data retention policies: We only retain personal data for as long as necessary to fulfill the purposes for which it was collected, and we have implemented data retention policies to ensure that data is deleted in a timely manner.

6.1 Data Breaches

In the event of a data breach, we will take immediate steps to contain the breach, assess the impact of the breach, and notify affected individuals and the relevant supervisory authority as required by law.

We have implemented a data breach response plan that includes procedures for identifying and containing breaches, notifying affected individuals, and conducting an investigation into the cause of the breach.

If you believe that your personal data has been compromised, please contact us at privacy@neuralfinity.com so that we can take appropriate action to address the issue.

We continuously review our security measures to ensure that they remain effective and up-to-date with the latest industry standards and best practices.

7. Data Retention

At Neuralfinity, we only retain personal data for as long as necessary to fulfill the purposes for which it was collected, or as required by law. We have implemented data retention policies to ensure that data is deleted in a timely manner.

API request content is not stored beyond the purpose of answering the request and is automatically deleted from all of our systems once this purpose has been achieved. IP addresses that make requests are stored as part of access logs, together with a time stamp of the request. Other request metadata can be stored, but this meta data by design cannot be used to draw any conclusions about the content of the request.

Data from users of the Dashboard UI will be retained for as long as the user has an active subscription. Once the subscription is terminated, the user data will be deleted from our systems after a period of 90 days, except for data we are legally required store for a longer period as well as data required for accounting purposes.

Users have the right to request the deletion of their data at any time. If you wish to request the deletion of your personal data in accordance with section 5 of this privacy policy. We will respond to your request in a timely manner and take appropriate action to delete your data as required by law.

8. Changes to the Privacy Policy

Neuralfinity may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, and other factors. We will notify our users of any significant changes to this Privacy Policy by email, as well as by posting the updated Privacy Policy on our website.

We encourage our users to review this Privacy Policy periodically to stay informed about our data practices. By continuing to use our services after any changes to this Privacy Policy become effective, you agree to be bound by the revised Privacy Policy.

This Privacy Policy was last updated on 06/06/2023. If you have any questions or concerns about this Privacy Policy, please contact us at privacy@neuralfinity.com.

9. Contact Information

If you have any questions or concerns regarding this Privacy Policy, you can contact Neuralfinity at:

Neuralfinity UG (haftungsbeschränkt)
Am Sandtorkai 27
20457 Hamburg
Germany

Registered in Hamburg HRB 177880
Email: hello@neuralfinity.com

The company is represented by the board of management:
Jannik Malte Meissner, Yuliia Butovchenko.