Privacy Policy

Last updated: January 1, 2025

GDPR & HIPAA Committed

We are committed to meeting the highest standards for data protection and privacy.

Transparent Data Use

We clearly explain how we collect, use, and protect your data.

Your Data Rights

You have full control over your personal data and privacy settings.

Privacy Commitment

At Fundup AI, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information.

1. Information We Collect

Personal Information

We collect information you provide directly to us, such as:

  • Name and email address when you create an account
  • Company information and job title
  • Payment information for billing purposes
  • Communications with our support team
  • Feedback and survey responses

Usage Information

We automatically collect certain information about your use of our services:

  • Log data including IP address, browser type, and operating system
  • Pages visited and features used within our platform
  • API usage patterns and performance metrics
  • Device information and unique identifiers

Cookies and Tracking

We use cookies and similar technologies to enhance your experience and analyze usage patterns.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process transactions and send billing information
  • Send technical notices and support messages
  • Respond to your comments and questions
  • Analyze usage patterns to enhance user experience
  • Detect and prevent fraud and abuse
  • Comply with legal obligations

3. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

  • Service Providers: With trusted third-party vendors who assist in operating our platform
  • Legal Requirements: When required by law or to protect our rights and safety
  • Business Transfers: In connection with mergers, acquisitions, or asset sales
  • Consent: With your explicit consent for specific purposes

4. Data Security

We implement comprehensive security measures to protect your information:

  • Encryption of data in transit and at rest
  • Regular security audits and penetration testing
  • Access controls and authentication requirements
  • Employee training on data protection practices
  • Incident response procedures

🔒 We follow industry best practices and are committed to GDPR and HIPAA compliance standards. We are actively working towards achieving full compliance certifications.

5. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information
  • Portability: Request transfer of your data to another service
  • Restriction: Request limitation of processing of your information
  • Objection: Object to processing of your information for certain purposes

To exercise these rights, please contact us at [email protected].

6. Data Retention

We retain your personal information for as long as necessary to provide our services and fulfill the purposes outlined in this policy. Specifically:

  • Account information is retained while your account is active
  • Usage data is typically retained for 2 years for analytics purposes
  • Financial records are retained for 7 years for compliance
  • Support communications are retained for 3 years

7. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions for certain countries
  • Certification schemes and codes of conduct

8. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information.

9. Third-Party Services

Our platform may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to those external services. We encourage you to review the privacy policies of any third-party services you use.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Sending an email to your registered email address
  • Posting a notice on our website
  • Providing an in-app notification

Your continued use of our services after the effective date of the updated policy constitutes acceptance of the changes.

11. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Company: Elevate Studio

Responsible Person: Umut Gokbayrak (Autónomo)

NIF: ESZ0824490Z

Privacy Officer: [email protected]

General Contact: [email protected]

Address: Legal Iuris La Zenia, C. Salzillo, S/n, 03189 Orihuela, Alicante, Spain

12. Compliance Certifications

GDPR Commitment

We are committed to complying with the General Data Protection Regulation (GDPR) for all EU residents and working towards providing full data subject rights.

HIPAA Commitment

We are committed to meeting HIPAA requirements for handling protected health information when applicable.