GDPR Compliance

Your rights under the General Data Protection Regulation

Our Commitment to GDPR

Alpyn AI is committed to protecting your personal data and respecting your privacy rights under the General Data Protection Regulation (GDPR). This page explains how we comply with GDPR requirements and outlines your rights as a data subject.

The GDPR applies to organizations that process personal data of individuals in the European Union. We have implemented appropriate technical and organizational measures to ensure compliance with these regulations.

Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

Right to Be Informed

You have the right to know how your personal data is being collected and used.

Right of Access

You can request a copy of the personal data we hold about you.

Right to Rectification

You can request correction of inaccurate or incomplete personal data.

Right to Erasure

You can request deletion of your personal data ("right to be forgotten").

Right to Restrict Processing

You can request limitation of how we process your data.

Right to Data Portability

You can request your data in a portable, machine-readable format.

Right to Object

You can object to processing of your personal data in certain circumstances.

Automated Decision Rights

You have rights related to automated decision-making and profiling.

Legal Basis for Processing

We process personal data under the following legal bases:

  • Consent: When you subscribe to our newsletter or provide explicit consent for specific processing activities
  • Contractual Necessity: When processing is necessary to provide you with our services (e.g., analyzing your brand for AI citation)
  • Legitimate Interests: When we have a legitimate business interest that doesn't override your rights (e.g., improving our services, security)
  • Legal Obligation: When we're required to process data to comply with legal requirements

Data We Collect

We collect minimal data necessary to provide our services:

  • Brand Analysis Data: Brand name, industry, and website URL you submit for analysis
  • Contact Information: Email address if you subscribe to our newsletter
  • Usage Data: Anonymous analytics about how you use our website
  • Technical Data: IP address (for rate limiting), browser type, device information

Chrome Extension

Our LLM Seeding Analyzer Chrome Extension is designed with privacy by default. All analysis is performed locally in your browser, and no data about the pages you analyze is sent to our servers or stored.

Data Retention

We retain personal data only as long as necessary:

  • Citation Analysis Results: Cached for 12 hours, then automatically deleted
  • Newsletter Subscriptions: Retained until you unsubscribe
  • Contact Form Submissions: Retained for as long as necessary to respond and follow up
  • Analytics Data: Aggregated and anonymized; individual data deleted after 26 months

International Data Transfers

When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place:

  • We use service providers that comply with EU-US Data Privacy Framework where applicable
  • We implement Standard Contractual Clauses (SCCs) where required
  • We assess the data protection laws of recipient countries

Data Protection Officer

For questions about GDPR compliance or to exercise your data protection rights, you can contact us directly. We will respond to all legitimate requests within one month.

Exercise Your Rights

To make a data subject access request or exercise any of your GDPR rights, please contact us:

Email: privacy@alpynai.com

Response Time: Within 30 days of receiving your request

Supervisory Authority

If you believe we have not adequately addressed your data protection concerns, you have the right to lodge a complaint with a supervisory authority. You can contact the data protection authority in the EU member state where you reside, work, or where you believe a data breach occurred.