Privacy & Data Protection Notice
This Privacy Notice explains how we process personal data when you visit our website https://sapiently.ai/ and when you contact us or use forms available on the site, in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”).
The controller responsible for processing your personal data is:
MH Daniel Możdżyński
Gniewka 11 street
61-063 Poznan
Poland
Contact
E-mail: daniel.mozdzynski@sapiently.ai
Website: https://sapiently.ai/
Phone +48 602 220 883
If you have any questions about this Privacy Notice or about data protection, you can contact us using the above details.
We may process the following categories of personal data:
Website usage data
e.g. IP address, device and browser information, date and time of access, pages viewed, referring URL.
Purposes:
to ensure technical delivery and security of the website (server logs),
to improve stability and performance,
(if cookies/analytics enabled) to analyse how visitors use our site.
Contact and communication data
admin@sapiently.ai
Purposes:
to process and respond to your enquiry,
to manage pre-contractual or business communication,
to schedule demos or calls regarding Sapiently.
Newsletter / marketing communications (if applicable)
info@sapiently.ai
Purposes:
to send you information about our products, updates, events or content, if you have subscribed or otherwise consented.
Product and AI usage data (if accessed through this site)
If you log in or request access to Sapiently, we may process account data (name, business e-mail, organisation) and usage data relating to how you use the platform.
Purposes:
to provide and maintain the service,
to secure accounts and prevent abuse,
to improve features based on aggregated and anonymised usage patterns.
We process your personal data on the following legal bases:
Art. 6(1)(b) GDPR – performance of a contract or steps prior to entering into a contract
For example, when we process your contact data to respond to a demo request, or when we operate your user account for Sapiently.
Art. 6(1)(f) GDPR – legitimate interests
For example, when we use server logs and basic analytics to ensure security, prevent abuse and to understand how our website is used. Our legitimate interest is to operate a secure and user-friendly website and to promote our services.
Art. 6(1)(a) GDPR – consent
For example, where we place non-essential cookies (e.g. marketing or advanced analytics) or send you newsletters and marketing communications. You can withdraw your consent at any time with effect for the future.
Art. 6(1)(c) GDPR – legal obligation
Where processing is necessary to comply with legal obligations, e.g. tax and bookkeeping rules.
We use cookies and similar technologies to operate and optimise our website.
Strictly necessary cookies are required for the basic functioning of the site (e.g. load balancing, security, basic session state). These are used based on our legitimate interests and do not require consent.
Analytics / marketing cookies (if used) help us understand how visitors use our website and improve it, or display relevant content. These are only set if you provide your consent via the cookie banner.
You can adjust your cookie preferences at any time via the cookie settings tool on our website or through your browser settings.
When you use Sapiently and submit information (for example, SAP project details, requirements, incident descriptions, attachments), this data may be processed by AI models to generate responses and recommendations.
Unless expressly agreed otherwise in a separate contract with your organisation:
we do not use your customer input or output to train open, publicly available foundation models,
we process such data only to provide the Sapiently service, to secure it and to generate results for you,
we may log and store interaction data for a limited time to investigate errors, improve quality and prevent abuse, in line with our data processing agreements.
If we rely on external processors or AI infrastructure providers, they act on our documented instructions and are bound by data processing agreements under Art. 28 GDPR.
We may share your personal data with:
IT and hosting providers who support the operation of this website and the Sapiently platform,
Analytics or email service providers (if used), for example to send newsletters or measure aggregated site usage,
Professional advisors (e.g. legal, tax, accounting) where necessary.
Where service providers are located outside the European Economic Area (EEA), we ensure an adequate level of data protection, for example by relying on an adequacy decision of the European Commission or by using the EU Standard Contractual Clauses.
We store personal data only for as long as necessary to fulfil the purposes described above or as required by law.
Server log data is usually retained for a short period (e.g. a few weeks) and then deleted or anonymised.
Contact and communication data is kept for the duration of the correspondence and, where applicable, for longer if necessary for contract or legal reasons.
Newsletter data is stored until you unsubscribe.
Product and AI usage data is kept in line with contractual agreements with your organisation and internal retention policies.
After expiry of the retention periods, the data is deleted or anonymised.
You have the following rights under GDPR, subject to the relevant legal conditions:
Right of access – to obtain confirmation whether we process your personal data and receive a copy.
Right to rectification – to have inaccurate or incomplete data corrected.
Right to erasure – to request deletion of your data in certain situations.
Right to restriction of processing – to request limitation of processing in specific cases.
Right to data portability – to receive personal data you provided to us in a structured, commonly used and machine-readable format and to transmit it to another controller.
Right to object – to object at any time, on grounds relating to your particular situation, to processing based on our legitimate interests, and separately to object to direct marketing.
Where processing is based on your consent, you may withdraw that consent at any time with effect for the future, without affecting the lawfulness of processing carried out before withdrawal.
You also have the right to lodge a complaint with a supervisory authority, in particular in the EU Member State of your habitual residence, your place of work or the place of the alleged infringement.
For example, in Poland the competent authority is the President of the Personal Data Protection Office (UODO).
We use appropriate technical and organisational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access. However, no system can be completely secure, and we cannot guarantee absolute security of information transmitted over the internet.
We may update this Privacy Notice from time to time, for example if we introduce new features or if legal requirements change. The latest version is always available on our website and will apply from the date of publication.