Sign In

Privacy Policy

Our privacy policy and how we use your data

JuttAI OÜ – Privacy Policy

Last Updated: 28.01.2025

1. Introduction

  • Overview
    This Privacy Policy explains how JuttAI OÜ (“JuttAI,” “we,” “us,” or “our”) collects, processes, and safeguards personal and organizational data when you use our AI-based solutions (the “Services”).
  • Scope
    This Policy applies to all data collected through our domain jutt.ai and any subdomains, including any training, communications, or AI-agent functionalities.
  • Contact Details
    If you have questions, concerns, or requests regarding your personal data, please see the Contact Information section at the end of this Policy.

2. Personal Information Collection

2.1 Types of Data Collected

  1. Personal Identification Information
    This may include names, email addresses, job titles, and department details needed for creating and managing user profiles or accounts in our Services.

  2. Organizational Information
    This may include the name of your company, industry sector, and employee roles. We use this information to customize user experiences and align the AI or communication flows with your organizational context.

  3. Usage Data
    We may collect information about your interactions with our Services, such as pages visited, time spent, features used, chat or training session details (e.g., quiz scores or progress markers), and similar metrics. This data helps us evaluate and improve our functionalities, including any AI-generated outputs.

  4. Cookies and Tracking Data
    We use cookies and similar technologies to personalize your experience, keep track of session logins, and understand how users navigate our Services.

2.2 Methods of Data Collection

  • Direct Collection
    Data you provide directly, for example during registration, account setup, form completion, or while using our AI-based chat or training tools.
  • Indirect Collection
    Automated technologies that gather information about how you use our Services, including system logs, cookies, and analytics tools that help optimize platform performance.

3. Use of Data

3.1 Purpose of Data Use

  1. Service Provision and Training Management
    We use personal and organizational data to administer and personalize AI or training modules, communications, or other functionalities tailored to your needs.
  2. Account Management
    We handle personal data to manage logins, user settings, and organizational profiles, ensuring effective use of the Services.
  3. Service Improvement
    Usage data (including AI query interactions) helps us enhance our AI models, functionality, and user experience.
  4. Communications
    We may send updates, notifications, or news related to new features, system improvements, or policy changes.
  5. Performance Tracking
    If you use our Services for employee or organizational training, we track progress and completion to assist in regulatory compliance or performance benchmarks.
  6. Legal Compliance
    We may process data to comply with applicable laws and regulations, including data protection requirements.

3.2 Legal Basis for Processing

  • Contractual Necessity
    Processing that is necessary to perform our contractual obligations (e.g., providing you with AI-based solutions or training modules).
  • Consent
    We obtain explicit consent for optional data uses (e.g., marketing communications) where required by law.
  • Legitimate Interests
    We may process data to improve our services, provided these interests do not override the rights of individuals.

4. Data Sharing and Disclosure

4.1 General Policy

We do not share your personal information with third parties except as described in this Policy or as required by law.

4.2 Third-Party Service Providers

We may share data with trusted providers who help us operate our AI infrastructure, hosting, analytics, payment processing, or customer support. These providers are obligated to uphold confidentiality and security standards consistent with this Policy.

4.3 Affiliate or Partner Programs

Where applicable, JuttAI may partner with affiliates or resellers who market or support our AI solutions. Relevant user or organizational data may be shared with these affiliates to facilitate service offerings. All affiliates are required to maintain privacy standards that meet or exceed those described in this Policy.

4.4 Legal Requirements

We may disclose personal data if required by law or in good faith belief that such disclosure is necessary to:

  1. Comply with a legal obligation.
  2. Protect and defend the rights or property of JuttAI.
  3. Prevent or investigate possible wrongdoing related to the Services.
  4. Protect the personal safety of users or the public.
  5. Protect against legal liability.

4.5 Business Transfers

If JuttAI is involved in a merger, acquisition, or asset sale, user data may be transferred. We will notify affected users via email or a prominent notice on our Services of any ownership changes or new data uses.

5. Cookies and Tracking Technologies

5.1 Types and Use

  1. Cookies
    Small data files stored on your device to improve navigation, remember preferences, and facilitate login sessions.
  2. Tracking Technologies
    This includes scripts, tags, or pixels that gather data about user interactions, enabling us to refine our AI models and user experience.

5.2 User Control and Preferences

You can manage cookie preferences in your browser settings. Blocking or deleting cookies may limit certain features of the Services. JuttAI may also offer in-account settings to control or opt out of certain tracking technologies.

6. Data Security

6.1 Security Measures

We implement security measures such as encryption, firewalls, and secure software protocols to protect personal data against unauthorized access or disclosure.

6.2 Data Integrity and Secure Storage

We take reasonable steps to ensure the data we process is accurate, complete, and current, storing it securely in accordance with industry best practices.

6.3 Incident Response

If a data breach occurs, we have procedures to notify affected users and relevant authorities where legally required, taking timely action to mitigate risks.

6.4 User Responsibility

To help protect your data, keep your passwords confidential and log out after each session—especially if using a public or shared device.

7. User Rights

7.1 Overview of Rights

Where required by law (e.g., under the GDPR), users have rights to:

  • Access: Request information on the personal data we hold.
  • Rectification: Ask us to correct or update inaccurate or incomplete data.
  • Erasure: Request deletion of personal data, subject to legal or contractual obligations.
  • Restriction: Temporarily or permanently limit our processing of some or all personal data.
  • Object: Object to data processing under certain circumstances, particularly relating to direct marketing.
  • Data Portability: Obtain a copy of personal data in a commonly used electronic format and/or request transfer of such data to another service.

7.2 Exercising Rights

You can typically review, update, or delete your data through the settings or profile area in the Services. For any additional requests (e.g., objecting to processing), please contact our designated data protection officer or support channels.

8. Data Retention

8.1 Retention Period

We retain data only as long as necessary to fulfill the purposes for which it was collected or as required by law (e.g., accounting or legal obligations).

8.2 Criteria for Determining Retention

  • User Activity: Whether your account is active or you continue to use our Services.
  • Legal Obligations: For instance, tax laws or regulations that require records to be kept for a certain period.
  • Legal Position: We may retain data in cases of potential litigation or regulatory inquiries.

9. International Data Transfers

9.1 Transfer Mechanisms

When personal data is transferred to a country outside the European Economic Area (EEA) or other regions with data protection laws, we ensure appropriate safeguards (e.g., Standard Contractual Clauses, adequacy decisions) are in place.

9.2 Safeguards

We employ measures to ensure the data remains secure and individuals’ rights are respected, including following GDPR-compliant guidelines.

10. Policy Updates

10.1 Notification of Changes

We may update this Privacy Policy periodically. Changes are effective upon posting the revised Policy on our website, along with a revised “Last Updated” date. We will also provide additional notice (e.g., email) for significant changes.

10.2 Review Encouraged

We encourage users to review this Policy periodically to stay informed about how we protect personal data.

11. Contact Information

11.1 Queries and Concerns

If you have questions, concerns, or complaints about this Privacy Policy or our data practices, please contact:

  • Data Protection Officer (DPO)
    Name: Kairit Manni
    Email: data@jutt.ai
  • General Support
    Email: support@jutt.ai
  • Office Address
    Harju maakond, Tallinn, Lasnamäe linnaosa, Valukoja tn 8/2, 11415

We aim to respond to all inquiries within a reasonable timeframe.

12. Third-Party Websites and Services

  • External Links
    Our Services may contain links to external sites. We are not responsible for external content or privacy practices.
  • Privacy Practices
    Once you leave our domain, you are subject to the external site’s privacy policies. We encourage reviewing those policies before providing personal data.
  • No Liability
    JuttAI disclaims any responsibility for the content or policies of third-party sites.

13. Children’s Privacy

  • Restriction of Use
    Our Services are not directed at individuals under the age of 18. We do not knowingly collect personal information from minors without parental consent.
  • Age Verification
    We may have procedures to verify user age. If you are under 18, do not use or submit personal data.
  • Reporting
    If we discover we have collected data from someone under 18 without parental consent, we will promptly delete such data.
  • Parental Notice
    Please contact us if you suspect a minor has provided personal data so we can take appropriate action.

14. Additional Information about JuttAI OÜ

  • Data Protection Officer (DPO)

    • Name/Title: Kairit Manni
    • Email: data@jutt.ai

  • Company Contact Information

    • Registered Address: Harju maakond, Tallinn, Lasnamäe linnaosa, Valukoja tn 8/2, 11415
    • General Support: support@jutt.ai

  • Compliance and Governance

    • We are committed to complying with GDPR and other relevant data protection regulations.
    • We maintain transparent governance practices, ensuring accountability and continuous improvement in our data handling processes.