GDPR

Introduction
ClearConnect AI (“we,” “our,” or “us”) is committed to protecting the privacy and personal data of individuals (“you,” “your”) in accordance with the EU General Data Protection Regulation (“GDPR”). This Policy explains how we collect, use, disclose, and safeguard your personal data when you interact with our website, services, and products.

Data Controller
ClearConnect AI Ltd. is the data controller responsible for your personal data under the GDPR

1. Definitions
“Personal data” means any information relating to an identified or identifiable natural person.
“Processing” means any operation performed on personal data, including collection, recording, storage, use, disclosure, or deletion.
“Special categories of personal data” include data revealing racial or ethnic origin, political opinions, religious beliefs, health information, or biometric data.

2. Data Protection Principles
We adhere to the following GDPR principles:

  • Lawfulness, fairness, and transparency

  • Purpose limitation (collect only for explicit, legitimate purposes)

  • Data minimization (adequate, relevant, and limited to what is necessary)

  • Accuracy (kept up to date)

  • Storage limitation (kept only as long as necessary)

  • Integrity and confidentiality (secure processing)

  • Accountability (we are responsible and able to demonstrate compliance)

3. Categories of Personal Data Collected

  • Contact information (e.g., name, email, phone)

  • Account credentials (e.g., username, password)

  • Usage and analytics data (e.g., IP address, device information, pages visited)

  • Communications (e.g., support tickets, feedback)

  • AI training data (when provided by you for service customization)

4. Sources of Personal Data

  • Directly from you when you register, subscribe, or communicate with us.

  • Automatically when you use our website or applications (via cookies and similar technologies).

  • From third-party integrations or partners (e.g., analytics services).

5. Lawful Basis for Processing
We process your personal data only when we have a valid lawful basis, including:

  • Consent: where you have given clear consent for us to process your data for a specific purpose.

  • Contract performance: to perform our obligations under a contract with you.

  • Legal obligation: to comply with applicable laws and regulations.

  • Legitimate interests: for our business interests (provided your rights and freedoms do not override those interests).

6. Purposes of Processing
We use your personal data to:

  • Provide, operate, and maintain our services.

  • Improve and personalize your experience.

  • Communicate with you about account matters, updates, and promotions.

  • Monitor, analyze, and improve service performance and security.

  • Conduct research and development, including AI model training (with data you supply).

7. Data Sharing and Disclosure
We may share your personal data with:

  • Service providers and subprocessors: who assist in delivering our services (e.g., hosting, analytics, payment processors).

  • Professional advisors: such as legal, auditing, and financial consultants.

  • Authorities: when required by law or in response to lawful requests (e.g., court orders).

8. International Data Transfers
When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards, such as EU Standard Contractual Clauses or adequacy decisions, to protect your data.

9. Data Retention
We retain your personal data only as long as necessary to fulfill the purposes described in this Policy, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary by data type:

  • Account and contact data: retained until account deletion plus 2 years.

  • Usage and analytics data: retained for up to 24 months.

  • Communications and support data: retained for up to 5 years.

10. Your Rights Under the GDPR
You have the following rights regarding your personal data:

  • Access: request copies of the data we hold about you.

  • Rectification: correct inaccurate or incomplete data.

  • Erasure: request deletion of your data (the “right to be forgotten”).

  • Restriction: request limitation of processing.

  • Portability: request transfer of data to another controller.

  • Objection: object to processing based on legitimate interests or direct marketing.

  • Withdraw consent: at any time, without affecting processing before withdrawal.

To exercise any right, please contact us at support@ccai.ie. We may require verification to fulfill your request.

11. Security Measures
We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, alteration, or disclosure. These include encryption, access controls, and regular security assessments.

12. Cookies and Similar Technologies
We use cookies and similar tracking technologies to operate our website and improve your experience. For detailed information, please see our separate Cookies Policy.

13. Changes to This Policy
We may update this Policy to reflect changes in our practices or legal requirements. We will post the revised Policy with a new “Last Updated” date.

14. Contact Us
If you have questions or concerns about this Policy or our data practices, you may contact us at:
Email: support@ccai.ie
Phone: 085 269 1214

15. Supervisory Authority
If you believe we have violated the GDPR in processing your personal data, you have the right to lodge a complaint with the relevant data protection authority, such as the Data Protection Commission in Ireland.

This GDPR Data Protection Policy applies to all personal data processed by ClearConnect AI in the course of providing our AI products and services.