GDPR Compliance

InagenAI is committed to protecting the personal data of individuals in the European Union (EU) and European Economic Area (EEA) in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This page outlines our obligations and your rights under the GDPR.

This page should be read alongside our Privacy Policy, which provides full details on how we collect and use personal data.

InagenAI acts as the data controller for personal data collected through our website and services. As data controller, we determine the purposes and means of processing your personal data.

For any GDPR-related inquiries, please contact us at: privacy@inagenai.com

We process personal data only where we have a valid legal basis to do so. The legal bases we rely on include:

• Consent — where you have given us clear consent to process your personal data for a specific purpose, such as signing up for our waitlist or newsletter
• Legitimate interests — where processing is necessary for our legitimate business interests, provided those interests are not overridden by your rights and interests
• Contract — where processing is necessary to perform a contract we have with you, or to take steps at your request before entering into a contract
• Legal obligation — where we are required to process your data to comply with applicable law

We collect only the minimum personal data necessary to provide our services. This may include:

• Email address (when you join our waitlist or contact us)
• Technical data such as IP address, browser type, and usage information collected automatically via cookies and analytics tools

We do not collect sensitive personal data (such as racial or ethnic origin, health data, or biometric data) unless explicitly required and consented to.

If you are located in the EU or EEA, you have the following rights regarding your personal data:

• Right of access — you have the right to request a copy of the personal data we hold about you
• Right to rectification — you have the right to request correction of inaccurate or incomplete personal data
• Right to erasure — you have the right to request deletion of your personal data in certain circumstances (“right to be forgotten”)
• Right to restriction of processing — you have the right to request that we restrict the processing of your personal data in certain circumstances
• Right to data portability — you have the right to receive your personal data in a structured, commonly used, machine-readable format
• Right to object — you have the right to object to processing based on legitimate interests or for direct marketing purposes
• Right to withdraw consent — where processing is based on consent, you have the right to withdraw that consent at any time without affecting the lawfulness of prior processing
• Rights related to automated decision-making — you have the right not to be subject to decisions based solely on automated processing that produce significant effects on you

To exercise any of these rights, please contact us at privacy@inagenai.com. We will respond to your request within 30 days as required by the GDPR.

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. When data is no longer needed, we securely delete or anonymize it. The specific retention period depends on the nature of the data and the purpose of processing.

If we transfer your personal data outside the EU or EEA, we ensure appropriate safeguards are in place to protect your data in accordance with GDPR requirements. These may include standard contractual clauses approved by the European Commission, adequacy decisions, or other lawful transfer mechanisms.

We may share personal data with trusted third-party service providers who process data on our behalf (data processors). We ensure all processors are bound by data processing agreements that comply with GDPR requirements and provide sufficient guarantees regarding data protection.

Our third-party processors may include email and communication service providers, analytics platforms, and infrastructure providers. We only share the minimum data necessary for each processor to perform their service.

We use cookies and similar tracking technologies on our website. Where required by law, we obtain your consent before placing non-essential cookies. You can manage your cookie preferences through your browser settings at any time.

We use analytics tools (including Google Analytics) to understand how visitors use our site. These tools may process personal data such as IP addresses. Where applicable, we have configured these tools to anonymize data in compliance with GDPR.

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, accidental loss, destruction, or damage. These measures are reviewed and updated regularly to maintain an appropriate level of security.

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by the GDPR. Where the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly without undue delay.

If you believe we have not handled your personal data in accordance with the GDPR, you have the right to lodge a complaint with your local data protection supervisory authority. In the EU, you can find your local authority through the European Data Protection Board.

We do, however, encourage you to contact us first so we have an opportunity to address your concerns directly.

We may update this GDPR page from time to time to reflect changes in our practices or legal requirements. We will update the “Last updated” date when we do so. We encourage you to review this page periodically.

For any GDPR-related questions or to exercise your rights, please contact:

InagenAI — Data Privacy
privacy@inagenai.com