Last updated: April 3, 2025
1. General Information
This Privacy Policy explains how Crata AI collects, uses, stores, and protects the personal data of users who access and interact with our website (the "Website").
We strictly comply with the applicable data protection laws, including Regulation (EU) 2016/679 (General Data Protection Regulation, "GDPR"), the Spanish Organic Law 3/2018, of December 5, on the Protection of Personal Data and Guarantee of Digital Rights ("LOPDGDD"), and Law 34/2002, of July 11, on Information Society Services and Electronic Commerce ("LSSICE").
By accessing and using our Website, you acknowledge that you have read and understood this Privacy Policy.
2. Data Controller
Legal Entity: Alfa Edge, S.L.
Brand Name: Crata AI
Address: Avenida Montevideo, 146, 08340, Vilassar De Mar (Barcelona), Spain
Company ID: B55438493
Email: info@crata-ai.com
3. Personal Data We Collect
When you use our Website or interact with us, we may collect the following categories of personal data:
Information you provide directly to us: Full name, email address, phone number, company name, job title and any other information you voluntarily provide through contact forms, newsletter subscriptions, resource downloads, or service requests.
Information collected automatically: When you browse our Website, we may automatically collect IP address, browser type and version, device and operating system information, browsing behavior and usage data, Cookies (see our Cookies Policy for more information).
Transaction-related information: If you hire our services, we may collect payment information through secure third-party payment providers (such as Stripe). We do not store your payment data.
4. Purpose of Processing
At Crata AI, we process your personal data for transparent and legitimate purposes. Primarily, we use your information to manage and respond to any inquiries or requests you make through our Website. When you hire our services, we process your data to formalize and maintain our contractual relationship and deliver the services you requested.
Additionally, only if you have given us your consent, we may use your contact details to send you relevant communications, updates, or marketing materials about our services. We also process certain data to comply with legal and regulatory obligations that apply to us, and to guarantee the security and proper functioning of our Website and digital services.
Please note that we do not use your personal data to carry out automated decision-making or profiling activities.
5. Legal Basis for Processing
The processing of your personal data is carried out in accordance with the principles established by applicable data protection laws. Depending on the context, we process your data based on one or more of the following legal grounds:
When it is necessary for the performance of a contract or to take pre-contractual steps at your request, particularly when you hire our services;
When you have expressly given your consent, such as by completing a contact form or accepting our use of cookies;
To comply with our legal obligations;
To pursue our legitimate interest in ensuring the security, proper operation, and continuous improvement of our Website and services, provided that your fundamental rights and freedoms are not affected.
6. Data Sharing and Third Parties
We take your privacy seriously and do not share your personal data with third parties unless it is strictly necessary. In certain circumstances, we may need to disclose your information to trusted third-party service providers who assist us in delivering our services.
This may include:
Providers of hosting and cloud infrastructure (e.g., AWS) to securely store and manage data.
Payment processors (e.g., Stripe) to handle transactions when you hire our services.
Marketing and analytics platforms (e.g., Google, Facebook, Hubspot, and others) to help us better understand how users interact with our Website and to manage our communications.
We may also disclose your data when required by law or regulatory authorities.
In all cases, we ensure that these third parties are contractually bound to process your data securely, confidentially, and solely for the intended purposes. Under no circumstances do we sell your personal data to anyone.
7. Data Retention
We will retain your personal data only for as long as it is necessary to fulfill the purposes for which it was collected, as described in this policy. In some cases, we may also retain your data to comply with legal, tax, or regulatory obligations.
Once your data is no longer required, we will ensure it is securely deleted, anonymized, or otherwise rendered inaccessible.
8. Data Security
Protecting your personal information is a priority for us. At Crata AI, we implement appropriate technical and organizational measures to safeguard your data against accidental loss, unauthorized access, misuse, or disclosure.
That said, please keep in mind that no digital transmission or storage system is completely secure. While we make every effort to protect your data, we cannot guarantee its absolute security.
9. Your Data Protection Rights
As a data subject, you have specific rights regarding the personal information we hold about you. These rights include:
The right to access your personal data and receive a copy of it.
The right to request the rectification of inaccurate or incomplete data.
The right to request the deletion of your data when it is no longer necessary.
The right to request the restriction of the processing of your data in certain circumstances.
The right to object to the processing of your data, particularly for marketing purposes.
The right to withdraw your consent at any time, where processing is based on your consent.
To exercise any of these rights, you may contact us at info@crata-ai.com or through the contact form available on our Website. We will respond to your request within the legally established timeframe.
10. Changes to This Privacy Policy
Crata AI reserves the right to update this Privacy Policy whenever necessary to reflect changes in our practices, regulatory requirements, or for other operational reasons. Any substantial changes will be communicated through our Website. We encourage you to review this policy regularly to stay informed about how we protect your personal data.