1. Introduction
Welcome to Insero ("we," "our," or "us"). We are committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, products, and services (including Insero Spaces).
2. Information We Collect
We collect the following types of information:
2.1 Personal Information:
- Name
- Email address
-Contact information
-Billing information
2.2 Usage Data:
Log data (e.g., IP address, browser type, access times)
Analytics data regarding website and service usage
Interaction data with our AI services
2.3 AI-Generated Content:
Conversations, prompts, and queries submitted to our AI services
Responses and content generated by the AI services based on your input
3. How We Use Your Information
We use your information for the following purposes:
-To provide, operate, and maintain our services.
- To improve, personalize, and expand our services and develop new features.
- To communicate with you, including responding to inquiries, providing customer support, and sending service-related updates or marketing information (where permitted).
- To process payments and manage your account.
- To analyze usage patterns to understand how our services are used and to optimize performance.
- To ensure security, prevent fraud, and enforce our terms of service.
- To comply with legal obligations and respond to lawful requests from public authorities.
4. Data Sharing and Disclosure
We may share your information with:
Service Providers: Third-party vendors who assist us in operating our services (e.g., cloud hosting providers like Google Cloud Platform, payment processors). These parties only access data necessary for their specific tasks and are contractually obligated to maintain confidentiality and security.
Legal Authorities: When required by law, regulation, legal process, or governmental request, or to protect our rights, property, or safety, or that of our users or the public.
Other Parties: With your explicit consent.
Internal Access Control: Access to your personal data by Insero employees is strictly limited and controlled based on the 'least privilege' principle. Only authorized personnel whose job function requires direct access (such as database administrators for maintenance or technical support engineers for specific incident resolution) may access your data. This access is limited to what is strictly necessary to perform their duties. These employees are bound by confidentiality obligations and are prohibited from accessing or using data beyond the scope of their necessary work functions.
We do not sell your personal information to third parties.
5. Data Security
We take the security of your data very seriously and implement robust technical and organizational measures designed to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include, but are not limited to:
Infrastructure: Utilizing a secure and certified cloud infrastructure (Google Cloud Platform) that meets high industry standards (including ISO 27001, SOC 2/3, GDPR compliance).
Encryption: Encrypting your data both during transmission (in transit) using TLS/SSL and when stored (at rest).
Access Control: Implementing strict access controls (Identity and Access Management - IAM) and security rules to ensure only authorized individuals can access data, based on the 'least privilege' principle.
Logging and Monitoring: Continuously monitoring and logging system activities and access attempts to promptly detect and respond to suspicious activities.
Data Segregation: Logically separating customer data in our multi-tenant environment to ensure clients can only access their own data.
Personnel: Employees with access to systems potentially containing customer data are screened, trained, and bound by confidentiality agreements.
EU Data Residency: Storing all customer personal data and generated content exclusively on servers located within the European Union (see Section 9).
While we strive to use commercially acceptable means to protect your personal data, please remember that no method of transmission over the Internet or method of electronic storage is 100% secure.
6. Your Rights and Choices
Depending on your location and applicable data protection laws (such as GDPR), you may have the right to:
- Access the personal information we hold about you.
-Request correction of inaccurate information.
- Request deletion of your personal information.
- Object to or request restriction of the processing of your information.
-Request data portability (receive your data in a structured, commonly used, and machine-readable format).
To exercise these rights, please contact us at hello@insero.ai. We will respond to your request in accordance with applicable laws.
7. Cookies and Tracking Technologies
We use cookies and similar tracking technologies (like web beacons and pixels) to track activity on our website and services and hold certain information. Cookies help us enhance your user experience, analyze site usage, and assist in our marketing efforts. You can manage your cookie preferences through your browser settings; however, disabling certain cookies may affect the functionality of our services.
8. Children's Privacy
Our services are not intended for use by children under the age of 13 (or a higher age threshold where applicable by local law). We do not knowingly collect personal information from children under this age. If we become aware that we have collected personal information from a child without verification of parental consent, we take steps to remove that information from our servers.
9. International Data Transfers
To comply with European privacy regulations (GDPR) and ensure the highest standard of data protection, all personal data and user-generated content processed through Insero Spaces are stored on servers physically located within the European Union (EU) (currently utilizing Google Cloud Platform regions in Belgium and the Netherlands). We do not transfer your core personal data outside the EU for storage purposes.
In the event that the operation of specific (AI) services requires processing by sub-processors located outside the EU, we ensure this is done in compliance with applicable laws and that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission or an adequacy decision.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any significant changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.
11. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us at:
