Privacy Policy

Last updated: March 8, 2025.

1. Data Controller

Appific Kft.
Registered office: Hungary
Email: [email protected]
Website: appific.app

2. Purpose and Legal Basis of Data Processing

We process the following data when you use the AI-based chat service on our website:

2.1. Chat Messages and Session Data

• Data processed: messages sent during the chat, session identifier, timestamp of consent.
• Legal basis: consent of the data subject (GDPR Art. 6(1)(a)).
• Purpose: business needs assessment, lead qualification, service presentation, and improving user experience.
• Retention period: until consent is withdrawn, but no longer than 2 years.

2.2. Personal Data During Conversation

• Data processed: name, email address, company name, industry, business needs summary, budget range, timeline, current systems.
• Legal basis: consent of the data subject (GDPR Art. 6(1)(a)), and legitimate interest of the controller (GDPR Art. 6(1)(f)) — lead qualification and business relationship development.
• Purpose: preparing business proposals, establishing contact, scheduling meetings.
• Retention period: for the duration of the business relationship, but no longer than 5 years.

2.3. Security Data

• Data processed: Cloudflare Turnstile token (bot protection).
• Legal basis: legitimate interest (GDPR Art. 6(1)(f)) — security of the service.
• Purpose: prevention of automated abuse.
• Retention period: until request processing (not stored persistently).

3. AI-based Data Processing

The chat service uses artificial intelligence (AI) models to generate responses. Your messages are processed by the AI system, which:

• analyzes business needs,
• prepares preliminary assessments,
• generates personalized responses.

AI-generated analyses and qualification results are stored in our database.

4. Data Transfers and Processors

We may transfer data to the following data processors:

• Cloud provider: for storing chat sessions and messages.
• AI provider: for generating chat responses (Google Gemini).
• Cloudflare: security verification (Turnstile).
• Calendly: meeting scheduling (if you book an appointment).

Data transfers occur within the EU or with appropriate safeguards (e.g., Standard Contractual Clauses) when directed to third countries.

5. Data Subject Rights

Under the GDPR, you have the right to:

• Right of access: request information about your processed data.
• Right to rectification: request correction of inaccurate data.
• Right to erasure ("right to be forgotten"): request deletion of your data.
• Right to restriction: request restriction of data processing.
• Right to data portability: request your data in a structured, machine-readable format.
• Right to object: object to processing based on legitimate interest.
• Withdrawal of consent: you may withdraw your consent at any time without affecting the lawfulness of processing prior to withdrawal.

To exercise your rights, contact us at: [email protected]

6. Complaints

If you believe our data processing violates your rights, you may file a complaint with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH):

• Address: 1055 Budapest, Falk Miksa utca 9–11, Hungary.
• Website: www.naih.hu
• Email: [email protected]

7. Data Security

We apply appropriate technical and organizational measures to protect your personal data, including encrypted data transmission (HTTPS/TLS), access management, and regular security reviews.

8. Cookies

We use session cookies necessary for the operation of the chat service. These are essential for providing the service and do not require separate consent (ePrivacy Directive Art. 5(3)).

9. Changes

We reserve the right to modify this policy. We will notify you of changes on our website.