— LEGAL —PRIVACY POLICY

Privacy
policy.

How we collect, use, and protect your personal data — with the same rigor we apply to our customers' data.

Last updatedApril 2026
EffectiveImmediately
ControllerAigentic Compliance B.V.

Overview

Aigentic Compliance B.V. ("we", "us", "our") operates aigenticcompliance.com and provides an agentic compliance platform. This policy explains what personal data we process, why we process it, and the rights you have under applicable data-protection law, including the EU General Data Protection Regulation (GDPR).

We apply the principle of privacy by design: we collect only what is necessary, keep it only as long as we need it, and protect it with the same standards we help our customers achieve.

We don't sell your personal data. We don't run behavioral ads. We don't sync it with third-party data brokers.

Data we collect

Information you provide directly

  • Contact information — name, business email, employer, role — submitted through our contact or demo-request forms.
  • Correspondence — the content of emails, requests, and support messages you send us.
  • Account data — if you become a customer, authentication credentials and configuration for the platform.

Information collected automatically

  • Technical data — IP address, device type, browser version, approximate location (country/region) derived from IP.
  • Usage data — pages visited, referrer, time spent — used in aggregated form to understand site performance.

Customer platform data

When you use the Aigentic Compliance platform as an authenticated user, we process the data your employer provides to operate the service — policy documents, configuration, and audit trails of agent interactions. This data is governed by the Data Processing Agreement signed with your employer, not this policy.

How we use your data

  • To respond to your inquiries and demo requests
  • To deliver, maintain, and secure the platform you purchase
  • To send operational notices (billing, service updates, security alerts)
  • To improve our site and product — always using aggregated, non-identifying signals where possible
  • To comply with our own legal and regulatory obligations

Under the GDPR we rely on the following lawful bases:

  • Contract — to provide services you or your employer have requested
  • Legitimate interests — to secure our services, prevent abuse, and improve our platform, balanced against your rights and expectations
  • Consent — where required, e.g. for non-essential cookies and marketing communications
  • Legal obligation — where we must retain or disclose data to meet our legal duties

Who we share data with

We share personal data only with trusted sub-processors who help us operate the service, under written agreements that enforce confidentiality and data protection:

  • Cloud infrastructure providers (EU-region hosting)
  • Email and CRM tooling used to manage inbound inquiries
  • Analytics, configured in privacy-preserving mode with IP anonymization

A current list of sub-processors is available on request. We do not sell personal data, and we do not share it with third parties for their own advertising or marketing purposes.

Data retention

We keep personal data only as long as we need it for the purpose for which it was collected, or as required by law.

  • Contact / inquiry data — up to 24 months after last interaction
  • Customer account data — for the duration of the contract, plus the statutory retention period that follows
  • Server logs — typically 30–90 days, unless retained for security investigation

Your rights

Under the GDPR and similar frameworks, you have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate or incomplete data
  • Erase data where no overriding legal obligation applies
  • Restrict or object to certain forms of processing
  • Portability — receive a structured copy of your data
  • Withdraw consent at any time, where processing was based on consent
  • Lodge a complaint with your supervisory authority — in the Netherlands, the Autoriteit Persoonsgegevens

To exercise any of these rights, email privacy@aigenticcompliance.com. We respond within 30 days.

Cookies & similar technologies

We use a minimal set of cookies:

  • Strictly necessary — required for the site to function (e.g. security, session). No consent required.
  • Analytics — used in privacy-preserving mode to measure site performance. Consent-gated where applicable.

We do not use advertising cookies, cross-site tracking pixels, or third-party marketing trackers.

Security

We follow industry-standard security practices: encryption in transit (TLS 1.3) and at rest, least-privilege access, continuous monitoring, and routine penetration testing. If a breach affecting your personal data occurs, we notify affected parties and supervisory authorities within the timelines required by law.

Changes to this policy

We may update this policy as our practices evolve. Material changes will be announced on this page with an updated effective date. We recommend reviewing it periodically.

Contact

Aigentic Compliance B.V.
Amsterdam, The Netherlands
privacy@aigenticcompliance.com

For general inquiries: contact@aigenticcompliance.com