Privacy Policy
Last updated: November 2025
Introduction
TeleCetli Kft. ("Gridex AI", "we", "us", or "our") is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered virtual assistant services for e-commerce businesses.
This policy applies to all information collected through our services, including our website, API, virtual assistant widget, and any related services, sales, marketing, or events.
Data Controller Information
Definitions
For the purposes of this Privacy Policy:
Information We Collect
Information You Provide Directly
- Account Information: Name, email address, company name, and password when you register for an account
- Business Information: E-commerce product catalogs, pricing information, and business policies you upload
- Payment Information: Billing address and payment method details (processed securely through Stripe)
- Communication Data: Content of emails, support tickets, and feedback you send us
- Configuration Data: Custom settings and integration preferences
Information Collected Automatically
- Usage Data: Information about how you interact with our services, including conversation logs, feature usage, and performance metrics
- Device Information: Browser type, operating system, IP address, and device identifiers
- Analytics Data: Pages visited, time spent, navigation paths, and interaction patterns
- Widget Data: End-user interactions with the virtual assistant on your website
Information from End Users
When your customers interact with the Gridex AI virtual assistant on your website, we collect:
- Conversation content and queries
- Basic device and browser information
- Session data and interaction patterns
Legal Basis for Processing
We process personal data based on the following legal grounds under GDPR:
- Contract Performance: To provide our services and fulfill our contractual obligations
- Legitimate Interests: To improve our services, ensure security, and conduct business operations
- Consent: For marketing communications and optional features
- Legal Obligations: To comply with applicable laws and regulations
How We Use Your Information
We use the collected information for the following purposes:
- Providing and maintaining our AI virtual assistant services
- Processing transactions and managing subscriptions
- Personalizing and improving service performance
- Analyzing internal service metrics to enhance features (your conversations and knowledge base are NEVER used for training AI models)
- Providing customer support and responding to inquiries
- Sending service updates and administrative communications
- Monitoring usage to detect fraud and ensure compliance
- Analyzing usage patterns to enhance features
- Complying with legal obligations
Data Sharing and Disclosure
We do not sell your personal information. We may share your data with:
Service Providers
- Microsoft Azure: Cloud infrastructure, data storage, and AI model services. IMPORTANT: Azure guarantees that your prompts, completions, embeddings, and training data are NOT available to other customers or Microsoft, and are NEVER used to train, retrain, or improve Azure OpenAI models or any Microsoft products. Your data remains exclusively within your Azure tenant with AES-256 encryption.
- Stripe: Payment processing
- Cloudflare: Content delivery and DDoS protection
Other Circumstances
- With your explicit consent
- To comply with legal obligations or court orders
- To protect our rights, privacy, safety, or property
- In connection with a merger, acquisition, or sale of assets
AI Model Data Protection Guarantee
Your data privacy is our top priority. We want to be absolutely clear about how your data is protected:
No Training on Customer Data
Your conversations, customer queries, product catalogs, knowledge bases, and any other data you provide to Gridex AI are NEVER used to train, retrain, or improve any AI models. This is guaranteed by our use of Microsoft Azure OpenAI Service.
Microsoft Azure Data Protection
We use Microsoft Azure OpenAI Service, which provides the following ironclad guarantees:
- Your prompts (inputs) and completions (outputs) are NOT used to train any foundation models
- Your data is NOT available to other customers or to Microsoft
- Your data remains exclusively within your Azure tenant
- All data is encrypted with AES-256 encryption at rest and in transit
- You retain full ownership and control of your data
- No human reviewers access your data without explicit permission
Complete Data Isolation
Your business data, customer conversations, and configurations are completely isolated from other Gridex AI customers and from any model training pipelines. Your data is used solely to provide the service to you.
Data Retention
We retain your data according to the following schedule:
| Data Type | Retention Period |
|---|---|
| Account Information | Duration of account plus 30 days after deletion |
| Conversation History | Based on subscription plan (14-90 days or custom) |
| Payment Records | 7 years for tax compliance |
| Analytics Data | 2 years |
| Support Communications | 3 years |
Data Security
We implement appropriate technical and organizational measures to protect your data:
- Encryption of data in transit and at rest
- Regular security audits and penetration testing
- Access controls and authentication requirements
- Employee training on data protection
- Incident response procedures
- Secure data centers with physical security controls
Your Rights Under GDPR
As an EU resident, you have the following rights regarding your personal data:
- Right to Access: Request a copy of your personal data
- Right to Rectification: Request correction of inaccurate data
- Right to Erasure: Request deletion of your data ("right to be forgotten")
- Right to Restrict Processing: Request limitation of data processing
- Right to Data Portability: Receive your data in a structured format
- Right to Object: Object to certain processing activities
- Right to Withdraw Consent: Withdraw consent at any time
To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.
We Do Not Sell Your Personal Data
**Important:** We want to be absolutely clear:
- We DO NOT sell, rent, trade, or otherwise transfer your personal information to third parties for monetary or other valuable consideration.
- We DO NOT share your data with advertisers or data brokers.
- We DO NOT use your conversations, knowledge bases, or customer data to train AI models or improve products for others.
- Your data is used solely to provide you with the Gridex AI service and is protected under strict confidentiality agreements with our service providers.
This commitment applies to all users, including California residents under CCPA. See the CCPA Compliance section below for your specific rights.
Children's Privacy
Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.
Data Protection Officer
For privacy-related inquiries or to exercise your rights, you can contact our Data Protection Officer at:
Complaint Rights
If you are unsatisfied with how we handle your personal data, you have the right to lodge a complaint with the Hungarian National Authority for Data Protection and Freedom of Information:
Nemzeti Adatvédelmi és Információszabadság Hatóság
Address: 1055 Budapest, Falk Miksa utca 9-11.
Website: www.naih.hu
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we will provide additional notice via email or through our services.
Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us: