Legal

Privacy Policy

Last updated: February 3, 2026

Contents

Data controller

The data controller responsible for your personal data in relation to this website and the ActProof.ai service is ActProof.ai. You can contact us at noreply@actproof.ai.

What data we collect

We may collect the following categories of personal data:

  • Contact and account data: name, email address, company name, and other information you provide when you sign up, use the service, or contact us.
  • Usage data: information about how you use our website and the ActProof.ai platform (e.g. pages visited, actions performed, IP address, browser type, device information).
  • Communication data: content of messages you send us (e.g. via the contact form or email).
  • Technical and log data: logs, identifiers, and similar data necessary for the operation and security of our systems.

Purposes and legal basis

We process your personal data for the following purposes and on the following legal bases under the GDPR (Regulation (EU) 2016/679):

  • Provision of the service: to create and manage your account, provide the ActProof.ai compliance platform, and support you. Legal basis: performance of a contract (Art. 6(1)(b) GDPR).
  • Communication: to respond to your enquiries and send you service-related messages. Legal basis: performance of a contract or legitimate interest (Art. 6(1)(b) or (f) GDPR).
  • Improvement and analytics: to improve our website and service, analyse usage, and fix issues. Legal basis: legitimate interest (Art. 6(1)(f) GDPR).
  • Legal and security: to comply with legal obligations and protect our rights and the security of our systems. Legal basis: legal obligation or legitimate interest (Art. 6(1)(c) or (f) GDPR).

Where we rely on legitimate interest, we have balanced our interests against your rights; you may object as described under “Your rights” below.

Retention

We retain your personal data only for as long as necessary to fulfil the purposes above or as required by law. In particular:

  • Account and contact data: for the duration of the contractual relationship and, where applicable, for a limited period thereafter for legal and support purposes.
  • Usage and technical data: for a limited period (e.g. logs for security and troubleshooting).
  • Communication data: for as long as needed to handle your request and any follow-up.

After the retention period, we delete or anonymise your data so that it no longer identifies you.

Your rights (GDPR)

If you are in the European Economic Area (or your jurisdiction grants equivalent rights), you have the following rights in relation to your personal data:

  • Access (Art. 15 GDPR): obtain confirmation as to whether we process your data and a copy of that data.
  • Rectification (Art. 16 GDPR): have inaccurate data corrected.
  • Erasure (Art. 17 GDPR): request deletion of your data in the cases provided by law.
  • Restriction (Art. 18 GDPR): request that we restrict processing in certain situations.
  • Data portability (Art. 20 GDPR): receive your data in a structured, commonly used format where the legal basis is contract or consent.
  • Objection (Art. 21 GDPR): object to processing based on legitimate interest; we will stop unless we have compelling legitimate grounds to continue.
  • Withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal.
  • Complaint: lodge a complaint with a supervisory authority (e.g. in your country of residence).

To exercise these rights, contact us at noreply@actproof.ai. We will respond within the time limits set by applicable law (e.g. one month under the GDPR).

Cookies and similar technologies

We use cookies and similar technologies (e.g. local storage) on our website to:

  • Ensure the website functions correctly (strictly necessary cookies).
  • Remember your preferences (e.g. language).
  • Analyse how the site is used and improve it (analytics, where used).

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of the website. Where we use non-essential cookies that require consent, we will obtain your consent in accordance with applicable law.

Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, alteration or disclosure, in line with the risk and the nature of the data. Our practices are designed to support compliance with applicable data protection and security standards.

Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top of this page indicates when it was last revised. We encourage you to review this page periodically. Material changes may be communicated via the website or by email where appropriate.

Contact

For any questions about this Privacy Policy or our processing of your personal data, please contact us:

Back to Home