1. Personal Data Controller

The Controller of your personal data is: Flashy Code Stanisław Marcisz
Odrodzenia 149C, 44-230 Czerwionka-Leszczyny, Poland
NIP: 6423252781 | Regon: 528504772 | E-mail: [email protected]

2. Purposes and Legal Grounds for Processing

We process your data for the following purposes:

• Provision of Services (Art. 6(1)(b) GDPR): Providing access to AI tools, Agents, and Workflow automation, including managing user accounts and subscription limits.
• Payments and Settlements (Art. 6(1)(c) GDPR): Processing subscription payments through the Stripe system and issuing invoices (legal obligation).
• Security and Optimization (Art. 6(1)(f) GDPR): Monitoring service stability, preventing abuse (e.g., attempts to bypass AI filters), and pursuing potential claims.
• Marketing (Art. 6(1)(a) GDPR): Sending newsletters and information about new features (only if voluntary consent is provided).

3. Data Processed within AI Tools

Using AI tools involves processing the content you input (so-called "Input" or "Prompts").

Processing Method: This data is sent to the models to generate responses.

Third-party Providers (Sub-processors): Depending on the selected tool, your data may be transferred to Google Gemini (USA) to operate AI models.

Confidentiality: We use business APIs. According to our providers' declarations, data sent via API is not used to train public AI models without explicit consent.

4. Data Transfer outside the EEA (USA)

In connection with the use of external AI models, your data may be transferred outside the European Economic Area:

• USA (Google Gemini, Stripe): Transfers take place based on Standard Contractual Clauses (SCC) or within the framework of the Data Privacy Framework certification.

5. Data Recipients

Your data may be shared with:

• Stripe Payments Europe, Ltd. (payment processing).
• DigitalOcean, LLC (hosting and cloud computing provider).
• Tax Administration Authorities (for tax settlement purposes).

6. Data Retention Period

• Account Data: For the duration of the active subscription and up to 2 years after its termination (for the purpose of limitation of claims).
• Billing Data: For a period of 5 years from the end of the calendar year in which the invoice was issued (tax regulations).
• Workflow/Agent Data: For the period necessary to perform the task or in accordance with the retention settings selected by the User in the dashboard.

7. Your Rights

In accordance with the GDPR, you have the right to:

• Access your data and receive a copy of it.
• Rectify (correct) your data.
• Delete data (the "right to be forgotten").
• Restrict processing.
• Data portability to another controller.
• Object to the processing of data based on a legitimate interest.
• Lodge a complaint with a supervisory authority (in Poland: President of the Personal Data Protection Office - PUODO).

8. Cookies

The Service uses cookies for the following purposes:

• Session Maintenance: Necessary for functionality.
• Security: To ensure safety and detect bots.
• Analysis: For traffic analysis and personalization of settings. You can manage cookies in your browser settings; however, blocking them may prevent the use of subscription features.

9. Automated Decision-Making

Within the Service, we do not use profiling that would produce legal effects concerning you in a completely automated manner without human intervention, unless it concerns payment verification by the Stripe system (fraud protection).