Privacy Policy
Effective date: April 1, 2026
1. Introduction
Collabora AI ("we", "our", "us") is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains what information we collect, how we use it, and what rights you have in relation to it when you use our Service at collabora.ai. By using the Service, you consent to the practices described in this Policy.
2. Information We Collect
We collect the following categories of information: (a) Business information you voluntarily submit — company name, industry, country, business description, partnership goals; (b) Contact information — your email address; (c) Website content — if you provide a company URL, we may process publicly available information from that page to enrich your analysis; (d) Payment data — transaction status and amount processed securely by Monobank; we do not store card numbers or sensitive payment credentials; (e) Usage data — pages visited, features used, session duration, browser type, and IP address (anonymised where possible).
3. How We Use Your Information
We use the collected data to: (a) Generate your personalised AI business analysis report; (b) Deliver your report and send transactional emails (e.g. report ready notification); (c) Process payments and manage refund requests; (d) Improve and train our AI models and overall Service quality; (e) Detect and prevent fraud, abuse, and security incidents; (f) Comply with applicable legal obligations and respond to lawful requests.
4. Data Sharing and Disclosure
We do not sell, rent, or trade your personal data. We may share data with trusted third-party service providers who assist us in operating the Service: (a) Anthropic — AI processing via the Claude API (your business data is sent to generate analysis); (b) Resend — transactional email delivery; (c) Monobank — payment processing; (d) Cloud hosting and infrastructure providers. All third-party processors are contractually bound to process your data only as instructed and to maintain appropriate security. We may also disclose data if required by law or to protect our legal rights.
5. Data Retention
We retain your analysis data (business description, generated report, email) for up to 12 months to allow you to re-access your report via the original token link. Payment records are retained for 5 years as required by financial regulations. You may request earlier deletion of your personal data at any time by contacting us.
6. Your Rights (GDPR)
If you are located in the European Union, European Economic Area, or Ukraine, you have the following rights under applicable data protection law: (a) Right of access — obtain a copy of your personal data; (b) Right to rectification — correct inaccurate or incomplete data; (c) Right to erasure — request deletion of your personal data («right to be forgotten»); (d) Right to restriction of processing; (e) Right to data portability — receive your data in a machine-readable format; (f) Right to object — object to processing based on legitimate interests. To exercise any of these rights, contact us at privacy@collabora.ai. We will respond within 30 days.
7. Cookies
We use strictly necessary cookies for session management and security. We may use anonymised analytics cookies to understand how users interact with the Service and to improve it. We do not use advertising or tracking cookies. You can manage cookie preferences through your browser settings. Disabling essential cookies may affect Service functionality.
8. Security
We implement industry-standard technical and organisational security measures to protect your data: TLS encryption for all data in transit, encryption at rest for stored data, access controls limiting production system access to authorised personnel, and regular security reviews. However, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security and are not responsible for unauthorised access beyond our reasonable control.
9. Children's Privacy
The Service is not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a minor, please contact us immediately and we will take steps to delete such information.
10. International Data Transfers
Your data may be transferred to and processed in countries outside your home jurisdiction, including countries where Anthropic, Resend, or our hosting providers operate. When we transfer personal data outside the EU/EEA, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission, in accordance with applicable data protection law.
11. Changes to This Policy
We may update this Privacy Policy periodically to reflect changes in our practices or applicable law. We will notify you of significant changes by posting a prominent notice on the Service or by sending an email to the address associated with your analysis. The "effective date" at the top of this Policy indicates the date of the latest revision. We encourage you to review this Policy regularly.
12. Contact Us
For any questions, concerns, or requests related to this Privacy Policy or your personal data, please contact our privacy team at: privacy@collabora.ai