top of page

Privacy Policy

At Cassi.ai, we are committed to protecting your privacy and ensuring that your personal data is handled in a safe and responsible manner. Our privacy notice outlines how we collect, use, and protect your personal information in accordance with applicable data protection laws and industry standards, including GDPR, CCPA, PIPEDA, and LGPD. You can access our full privacy policy at Cassi.ai Privacy Policy.


Information We Collect

  1. Personal Information:

    • Categories: Name, email address, phone number, and other contact details. (Aligned with GDPR, CCPA)

    • Professional Information: Job title, company name, and industry. (Aligned with PIPEDA, GDPR)

    • Voluntary Information: Any other information you provide to us voluntarily through our website or services.

  2. Usage Data:

    • Details: Information about how you use our website and services, including IP address, browser type, and access times. (Aligned with GDPR, CCPA)

    • Technologies: Data collected through cookies and similar technologies to enhance your user experience and analyze site usage. (Aligned with GDPR, CCPA, PIPEDA)

  3. Research Data:

    • Collection: Data collected through surveys, feedback forms, and other research activities conducted via our platform. (Aligned with GDPR, LGPD)

 

How We Use Your Information

  1. To Provide and Improve Our Service

    • Service Delivery: Delivering the services you request, including market research insights and data analysis. (Aligned with GDPR)

    • Enhancements: Enhancing our platform and developing new features to improve user experience. (Aligned with CCPA) 

  2. Communication:

    • Updates and Newsletters: Sending you updates, newsletters, and promotional materials. (Aligned with GDPR, CCPA)

    • Customer Support: Responding to your inquiries and providing customer support. (Aligned with PIPEDA)

  3. Research and Analysis:

    • Market Research: Conducting market research and analyzing trends to generate insights. (Aligned with GDPR)

    • Data Aggregation: Aggregating and anonymizing data for research and analytical purposes. (Aligned with GDPR, LGPD)

  4. Compliance and Legal Obligations:

    • Legal Compliance: Ensuring compliance with legal and regulatory requirements. (Aligned with GDPR, PIPEDA)

    • Protection: Protecting our rights, privacy, safety, or property, and that of our users and others. (Aligned with GDPR, CCPA)

 

How We Protect Your Information

  • Data Security: We implement robust security measures, including encryption, access controls, and regular security audits to protect your personal data from unauthorized access, disclosure, or misuse. (Aligned with GDPR, CCPA)

  • Data Minimization: We only collect and retain personal data that is necessary for the purposes outlined in this privacy notice. (Aligned with GDPR)

  • Third-Party Access: We do not share your personal data with third parties except as necessary to provide our services, comply with legal obligations, or with your consent. (Aligned with GDPR, CCPA)

 

Your Rights and Choices

  • Access and Correction: You have the right to access and correct the personal information we hold about you. (Aligned with GDPR, CCPA, LGPD)

  • Data Portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format. (Aligned with GDPR)

  • Opt-Out: You can opt-out of receiving marketing communications from us at any time by following the unsubscribe instructions in the communication or contacting us directly. (Aligned with CCPA)

  • Deletion: You have the right to request the deletion of your personal data, subject to certain legal and contractual restrictions. (Aligned with GDPR, CCPA)

 

Alignment with Data Protection Laws


GDPR (General Data Protection Regulation)

  1. Lawful Basis for Processing:

    • Transparency: Clearly stating what data is collected and why.

    • Consent: Ensuring that users give explicit consent for data processing where required.

  2. Data Subject Rights:

    • Access and Correction: Users can access and correct their data.

    • Data Portability: Users can request a copy of their data.

    • Deletion (Right to be Forgotten): Users can request data deletion.

  3. Data Protection Measures:

    • Security: Implementing robust security measures to protect data.

    • Data Minimization: Only collecting data that is necessary for stated purposes.

  4. Accountability and Compliance:

    • Documentation: Keeping detailed records of data processing activities.

    • Breach Notification: Informing authorities and affected individuals of data breaches within 72 hours.

  5. Third-Party Access:

    • Transparency: Disclosing when data is shared with third parties and ensuring they comply with GDPR.

 

CCPA (California Consumer Privacy Act)

  1. Consumer Rights:

    • Right to Know: Informing consumers about the personal data collected, used, shared, or sold.

    • Right to Delete: Allowing consumers to request the deletion of their personal data.

    • Right to Opt-Out: Providing an option for consumers to opt-out of the sale of their personal data.

  2. Privacy Notice Requirements:

    • Transparency: Clear and conspicuous privacy notice detailing categories of personal data collected and purposes for collection.

    • Access: Informing consumers how they can access their personal data.

  3. Data Protection:

    • Security: Implementing reasonable security measures to protect consumer data.

  4. Non-Discrimination:

    • Equal Service: Ensuring that consumers who exercise their CCPA rights are not discriminated against.

 

Other Data Protection Laws

  1. Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada:

    • Accountability: Designating an individual responsible for compliance with data protection principles.

    • Purpose Specification: Clearly identifying the purposes for which personal data is collected.

    • Consent: Obtaining consent for data collection and processing

  2. Brazil’s General Data Protection Law (LGPD):

    • Rights of Data Subjects: Similar to GDPR, including rights to access, correction, deletion, and data portability.

    • Data Protection Principles: Ensuring data accuracy, security, and accountability.

 

Changes to This Privacy Notice

We may update this privacy notice from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the updated notice on our website and updating the effective date. (Aligned with GDPR)
 

Contact Us

If you have any questions or concerns about this privacy notice or our data practices, please contact us at:
Email: cassiano@cassiai.com
 

bottom of page