Privacy Policy
Last updated: March 14, 2026 · Effective: March 14, 2026
Summary: We respect your privacy. We collect minimal data, never sell it, and give you full control. All our digital creators are AI-generated — no real individuals' data is used in their creation.
1. Data Controller
AIFLUENCE ("we", "us", "our") is the data controller responsible for your personal data.
- Company: AIFLUENCE
- Email: hello@aifluence.cloud
- Website: https://aifluence.cloud
- Location: Brussels, Belgium
For the purposes of the EU General Data Protection Regulation (GDPR), Regulation (EU) 2016/679, AIFLUENCE is the controller of the personal data described in this policy.
1.1 Data Protection Contact
For all privacy-related inquiries, data subject requests, or to exercise your GDPR rights, please contact our Data Protection contact:
- Email: privacy@aifluence.cloud
- Response time: We aim to respond to all data protection requests within 30 days, as required by Art. 12(3) GDPR.
Note: Given the current scale of our operations and data processing activities, a formal Data Protection Officer (DPO) appointment under Art. 37 GDPR is not yet required. As we scale, we will appoint a DPO and update this policy accordingly.
2. What Data We Collect
2.1 Website Visitors
| Data | Purpose | Legal Basis |
|---|---|---|
| IP address (anonymized) | Security & abuse prevention | Legitimate interest (Art. 6(1)(f)) |
| Browser type, OS | Website optimization | Legitimate interest (Art. 6(1)(f)) |
| Pages visited | Service improvement | Legitimate interest (Art. 6(1)(f)) |
2.2 Brand Partners & Clients
| Data | Purpose | Legal Basis |
|---|---|---|
| Name, email, company | Contract performance | Contract (Art. 6(1)(b)) |
| Payment information | Billing & invoicing | Contract (Art. 6(1)(b)) |
| Communication history | Service delivery | Contract (Art. 6(1)(b)) |
| Campaign preferences | Service customization | Consent (Art. 6(1)(a)) |
2.3 Social Media Interactions
When users interact with our AI-generated creators on social media platforms (Instagram, TikTok, etc.):
- We do not collect or store personal data from followers or commenters
- We access only aggregated, anonymized analytics provided by the platforms
- All interaction data remains on the respective platform and is subject to their privacy policies
2.4 Data We Do NOT Collect
- We do not use real individuals' biometric data, likenesses, or personal information to create our AI models
- We do not use facial recognition technology
- We do not collect data from minors
- We do not use tracking cookies or third-party analytics trackers
3. AI-Generated Content & Data
Important: All AIFLUENCE digital creators are fully AI-generated synthetic personas. They are not based on, derived from, or associated with any real person. No personal data of real individuals is used in the creation, training, or operation of our AI models.
In compliance with the EU AI Act (Regulation (EU) 2024/1689):
- All AI-generated content is clearly labeled as such
- Our AI personas are transparently disclosed as artificial on all platforms
- We maintain records of AI systems used in content generation
- We conduct regular assessments of our AI systems for bias and risk
4. How We Use Your Data
- Service delivery: Managing brand partnerships and campaigns
- Communication: Responding to inquiries and providing updates
- Legal compliance: Meeting regulatory and tax obligations
- Security: Protecting our services against fraud and abuse
- Improvement: Enhancing our services based on aggregated usage patterns
We never sell, rent, or trade your personal data to third parties.
5. Data Sharing
We may share data only with:
- Service providers: Hosting, email, and payment processors — under strict data processing agreements (Art. 28 GDPR)
- Legal authorities: When required by law or valid legal process
- Platform APIs: Social media platforms for content publishing — limited to data necessary for posting
All third-party processors are EU-based or operate under adequate safeguards (Standard Contractual Clauses or adequacy decisions per Chapter V GDPR).
6. Data Security
We implement robust technical and organizational measures:
- TLS 1.2/1.3 encryption for all data in transit
- Encrypted storage for data at rest
- Access controls and authentication requirements
- Regular security audits and vulnerability assessments
- Incident response procedures with 72-hour breach notification (Art. 33 GDPR)
7. Data Retention
| Data Category | Retention Period |
|---|---|
| Website server logs | 30 days |
| Contact inquiries | 12 months after last contact |
| Client/partner data | Duration of contract + 24 months |
| Invoicing & tax records | 7 years (Belgian tax law) |
| Consent records | Duration of consent + 12 months |
After the retention period, data is securely deleted or anonymized.
8. Your Rights (GDPR)
Under the GDPR, you have the following rights:
- Right to access (Art. 15) — Request a copy of your personal data
- Right to rectification (Art. 16) — Correct inaccurate data
- Right to erasure (Art. 17) — Request deletion ("right to be forgotten")
- Right to restriction (Art. 18) — Limit how we process your data
- Right to data portability (Art. 20) — Receive your data in a structured format
- Right to notification (Art. 19) — Be notified when your data is corrected or deleted
- Right to object (Art. 21) — Object to processing based on legitimate interest
- Right related to automated decision-making (Art. 22) — Not be subject to solely automated decisions with legal effects
- Right to withdraw consent (Art. 7(3)) — Withdraw consent at any time
- Right to lodge a complaint — With your national supervisory authority
To exercise your rights, contact us at hello@aifluence.cloud. We will respond within 30 days.
9. Supervisory Authority
You have the right to lodge a complaint with the Belgian Data Protection Authority:
- Gegevensbeschermingsautoriteit (GBA)
- Drukpersstraat 35, 1000 Brussels, Belgium
- Website: www.gegevensbeschermingsautoriteit.be
- Email: contact@apd-gba.be
10. Cookies
Our website uses only strictly necessary cookies for basic functionality. We do not use:
- Tracking cookies
- Third-party analytics (Google Analytics, Facebook Pixel, etc.)
- Advertising cookies
- Social media tracking pixels
As we only use strictly necessary cookies, no consent banner is required under the ePrivacy Directive.
11. International Transfers
Your data is processed and stored within the European Economic Area (EEA). If any transfer outside the EEA is necessary, we ensure appropriate safeguards per Chapter V of the GDPR (Standard Contractual Clauses or adequacy decisions).
12. Children's Privacy
Our services are not directed at individuals under 16 years of age. We do not knowingly collect data from minors. If we become aware that we have collected data from a minor, we will delete it immediately.
13. Changes to This Policy
We may update this policy periodically. Changes will be posted on this page with an updated "Last updated" date. For material changes, we will provide prominent notice.
14. Contact
For privacy inquiries, data requests, or complaints:
- Email: hello@aifluence.cloud
- Response time: Within 30 days