Privacy Policy
1. Introduction
LAI.IT ("we," "us," or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website (letsaccelerate.it) and AI-powered services.
We process personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and other applicable data protection laws within the European Union.
2. Data Controller
The data controller responsible for your personal data cab be reached by Email: privacy@letsaccelerate.it
Jurisdiction: Spain
3. Data We Collect
3.1 Information You Provide
We collect information you voluntarily provide, including: contact information (name, email address, phone number, company name); account registration data; content and data you submit to our AI services for processing; communications with us (support requests, feedback); and payment information when applicable.
3.2 Automatically Collected Data
When you access our services, we may automatically collect: device information (browser type, operating system, device identifiers); usage data (pages visited, features used, timestamps); IP address and approximate location; and cookies and similar tracking technologies (see Section 9).
3.3 AI Service Data
When you use our AI services, we process: input data you submit for AI processing; AI-generated outputs; interaction logs and usage patterns; and performance and error data for service improvement.
4. Legal Basis for Processing
Under the GDPR, we process your personal data based on the following legal grounds:
Contract Performance (Art. 6(1)(b)): Processing necessary to provide our services to you and fulfill our contractual obligations.
Legitimate Interests (Art. 6(1)(f)): Processing for our legitimate business interests, such as improving our services, ensuring security, and preventing fraud, where these interests are not overridden by your rights.
Consent (Art. 6(1)(a)): Where you have given explicit consent for specific processing activities, such as marketing communications or optional analytics.
Legal Obligation (Art. 6(1)(c)): Processing required to comply with applicable laws and regulations.
5. How We Use Your Data
We use your personal data for the following purposes:
Service Delivery: To provide, maintain, and improve our AI services; process your requests and transactions; and communicate with you about your account and services.
AI Processing: To process input data through our AI systems and generate outputs; improve AI model performance using aggregated, anonymized data; and ensure quality and accuracy of AI outputs.
Security and Compliance: To protect against unauthorized access, fraud, and abuse; ensure compliance with legal obligations; and maintain audit logs as required.
Communications: To send service-related notifications; respond to inquiries and support requests; and send marketing communications (with your consent).
6. AI-Specific Data Practices
6.1 Input Data Processing
Data you submit to our AI services is processed solely for the purpose of generating the requested output. We do not use your specific input data to train our AI models without your explicit consent. Input data is processed in real-time and is not retained beyond the period necessary to provide the service, unless otherwise specified in your service agreement.
6.2 Model Improvement
We may use anonymized, aggregated data derived from service usage to improve our AI models and services. This data cannot be used to identify individual users or reconstruct original inputs. You may opt out of this usage where technically feasible.
6.3 Automated Decision-Making
Our AI services involve automated processing of data. Where automated decisions significantly affect you, you have the right to request human intervention, express your point of view, and contest the decision, in accordance with Article 22 of the GDPR.
7. Data Sharing and Disclosure
We may share your personal data with the following categories of recipients:
Service Providers: Third-party vendors who assist in operating our services (hosting, payment processing, analytics), bound by contractual data protection obligations.
AI Infrastructure Providers: Cloud computing and AI processing providers necessary for service delivery, selected for GDPR compliance.
Legal Requirements: When required by law, court order, or governmental authority.
Business Transfers: In connection with a merger, acquisition, or sale of assets, with appropriate data protection safeguards.
We do not sell your personal data to third parties.
8. International Data Transfers
Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When such transfers occur, we ensure appropriate safeguards are in place, including: Standard Contractual Clauses (SCCs) approved by the European Commission; adequacy decisions by the European Commission; or other legally recognized transfer mechanisms. You may request information about the specific safeguards applied to your data by contacting us.
9. Cookies and Tracking Technologies
We use cookies and similar technologies for the following purposes:
Essential Cookies: Required for website functionality and security. These cannot be disabled.
Analytics Cookies: Help us understand how visitors interact with our website. Require your consent.
Functional Cookies: Enable enhanced functionality and personalization. Require your consent.
You can manage your cookie preferences through our cookie consent banner or your browser settings. Please note that disabling certain cookies may affect website functionality.
10. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including: active account data retained for the duration of your account plus a reasonable period thereafter; AI processing logs retained for [30 days / as specified in service agreement]; financial records retained as required by tax and accounting regulations (typically 7-10 years); and marketing consent records retained until consent is withdrawn plus a reasonable period for compliance verification.
When data is no longer needed, it is securely deleted or anonymized.
11. Your Rights Under GDPR
Under the GDPR, you have the following rights regarding your personal data:
Right of Access (Art. 15): Request a copy of your personal data and information about how it is processed.
Right to Rectification (Art. 16): Request correction of inaccurate or incomplete personal data.
Right to Erasure (Art. 17): Request deletion of your personal data under certain circumstances.
Right to Restriction (Art. 18): Request limitation of processing of your personal data.
Right to Data Portability (Art. 20): Receive your data in a structured, commonly used format and transfer it to another controller.
Right to Object (Art. 21): Object to processing based on legitimate interests or for direct marketing purposes.
Right to Withdraw Consent: Withdraw consent at any time, without affecting the lawfulness of processing before withdrawal.
To exercise any of these rights, please contact us using the details in Section 14. We will respond to your request within one month, as required by the GDPR.
12. Data Security
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include: encryption of data in transit and at rest; access controls and authentication mechanisms; regular security assessments and updates; and employee training on data protection. However, no method of transmission or storage is completely secure. We cannot guarantee absolute security of your data.
13. Children's Privacy
Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately, and we will take steps to delete such information.
14. Contact Information
For questions about this Privacy Policy or to exercise your data protection rights, please contact us:
LAI.IT - Data Protection
Email: [privacy@letsaccelerate.it]
Website: letsaccelerate.it
15. Supervisory Authority
Agencia Española de Protección de Datos (AEPD) — www.aepd.es
16. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on our website and updating the "Last updated" date. We encourage you to review this policy periodically.