At evoiq, we are committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you interact with our website, services, and AI-powered tools.
We comply with the General Data Protection Regulation (GDPR) (EU) 2016/679, the Lithuanian Law on Legal Protection of Personal Data, and other applicable data protection legislation.
1. Data Controller
The data controller responsible for your personal data is:
- Company: Evoiq
- Registration number: [REGISTRATION_NUMBER]
- VAT number: [VAT_NUMBER]
- Registered address: Vilnius, Lithuania
- Email: [email protected]
- Phone: +37061024347
2. Personal Data We Collect
We may collect and process the following categories of personal data:
2.1 Data You Provide Directly
- Contact form submissions: name, email address, phone number (if provided), company name, and message content.
- Newsletter subscriptions: email address and name.
- Service inquiries and contracts: name, email, phone number, company details, billing information, project-related data.
- AI tool usage: text inputs, prompts, queries, and other data you submit to our AI-powered tools and services.
2.2 Data Collected Automatically
- Technical data: IP address, browser type and version, operating system, device type, screen resolution.
- Usage data: pages visited, time spent on pages, click patterns, referring URL, exit pages.
- Cookie data: as described in our Cookie Policy.
- Analytics data: aggregated website usage statistics collected through analytics tools.
2.3 Data from Third Parties
- Information from business partners or publicly available sources to supplement your profile for service delivery.
3. Legal Basis for Processing
We process your personal data based on the following legal grounds under Article 6 of the GDPR:
| Purpose | Legal Basis |
|---|---|
| Responding to contact form inquiries | Consent (Art. 6(1)(a)); pre-contractual measures (Art. 6(1)(b)) |
| Sending newsletters | Consent (Art. 6(1)(a)) |
| Providing contracted services | Performance of a contract (Art. 6(1)(b)) |
| Processing payments and invoicing | Performance of a contract (Art. 6(1)(b)); legal obligation (Art. 6(1)(c)) |
| Website analytics and improvement | Legitimate interest (Art. 6(1)(f)) |
| AI tool data processing | Consent (Art. 6(1)(a)); performance of a contract (Art. 6(1)(b)) |
| Legal compliance and tax obligations | Legal obligation (Art. 6(1)(c)) |
| Protecting our rights and preventing fraud | Legitimate interest (Art. 6(1)(f)) |
Where we rely on legitimate interest, we have conducted a balancing test to ensure your rights and freedoms are not overridden.
4. How We Use Your Data
- To respond to your inquiries and provide customer support.
- To deliver our AI consulting, automation, training, and custom solution services.
- To process inputs through our AI-powered tools and return results.
- To send marketing communications (only with your explicit consent).
- To analyse website traffic and improve our website and services.
- To comply with legal and regulatory requirements.
- To protect the security and integrity of our systems.
5. Data Sharing and Third Parties
We do not sell your personal data. We may share your data with the following categories of third parties, only to the extent necessary:
- Hosting providers: for website hosting and infrastructure (e.g., Hostinger).
- Analytics providers: for website analytics (e.g., Google Analytics).
- Email service providers: for newsletter distribution and transactional emails.
- AI service providers: for powering AI features in our tools and services.
- Payment processors: for handling payments securely.
- Professional advisors: accountants, lawyers, auditors where required.
- Authorities: when required by law or to protect our legal rights.
All third-party processors are bound by data processing agreements and are required to comply with GDPR.
6. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected:
| Data Category | Retention Period |
|---|---|
| Contact form submissions | Up to 2 years from submission, or until inquiry is resolved |
| Newsletter subscriber data | Until you unsubscribe |
| Contract and billing data | 10 years (Lithuanian tax law requirements) |
| AI tool input/output data | Up to 30 days, unless longer retention is required for service delivery |
| Website analytics data | Up to 26 months (anonymised/aggregated) |
| Cookie data | As specified in our Cookie Policy |
7. International Data Transfers
Your personal data is primarily processed within the European Economic Area (EEA). Where we transfer data outside the EEA (e.g., to AI service providers based in the United States), we ensure appropriate safeguards are in place, including:
- European Commission adequacy decisions.
- Standard Contractual Clauses (SCCs) approved by the European Commission.
- Binding Corporate Rules where applicable.
- EU-U.S. Data Privacy Framework certifications where applicable.
You may request a copy of the applicable safeguards by contacting us at [EMAIL].
8. Your Rights Under GDPR
As a data subject, you have the following rights:
- Right of access (Art. 15): Obtain confirmation of whether we process your data and request a copy.
- Right to rectification (Art. 16): Request correction of inaccurate or incomplete data.
- Right to erasure (Art. 17): Request deletion of your personal data (“right to be forgotten”).
- Right to restriction of processing (Art. 18): Request that we limit processing of your data.
- Right to data portability (Art. 20): Receive your data in a structured, commonly used, machine-readable format.
- Right to object (Art. 21): Object to processing based on legitimate interest or for direct marketing.
- Right to withdraw consent (Art. 7(3)): Withdraw consent at any time without affecting the lawfulness of prior processing.
- Right not to be subject to automated decision-making (Art. 22): Not be subject to decisions based solely on automated processing that produce legal or similarly significant effects.
To exercise any of these rights, please contact us at [EMAIL]. We will respond within 30 days of receiving your request.
9. Automated Decision-Making and Profiling
Our AI-powered tools process data you provide to generate outputs such as recommendations, analyses, and automated content. These tools assist in delivering our services but do not make decisions that produce legal effects or similarly significantly affect you without human oversight.
We do not engage in automated profiling that produces legal or similarly significant effects on individuals. Where AI processing is used in service delivery, human review is always part of the process.
10. Children’s Privacy
Our services are directed at businesses and professionals, not children. We do not knowingly collect personal data from individuals under the age of 16. If we become aware that we have inadvertently collected data from a child, we will take steps to delete that data promptly. If you believe a child has provided us with personal data, please contact us at [EMAIL].
11. Cookies
Our website uses cookies and similar tracking technologies. For detailed information about the cookies we use, their purposes, and how to manage them, please refer to our Cookie Policy.
You can manage your cookie preferences at any time via our Cookie Settings page.
12. Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption of data in transit (TLS/SSL), access controls, regular security assessments, and employee training on data protection.
However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.
13. Supervisory Authority
If you believe we have not handled your personal data properly or have not responded adequately to your requests, you have the right to lodge a complaint with the Lithuanian data protection authority:
- Valstybine duomenu apsaugos inspekcija (VDAI)
- L. Sapiegos g. 17, 10312 Vilnius, Lithuania
- Phone: +370 5 271 2804
- Email: [email protected]
- Website: https://vdai.lrv.lt
14. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. We will post the updated version on this page with a revised “Last updated” date. We encourage you to review this page periodically.
If we make material changes, we will notify you through a prominent notice on our website or by other appropriate means.
15. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or the processing of your personal data, please contact us:
- Company: evoiq
- Address: Vilnius, Lithuania
- Email: [email protected]
- Phone: +37061024347