Privacy Policy
Effective Date: 20.05.2024
Last Upated: 06.04. 2025
At Thinkpilot Ltd., we value your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, share, and safeguard your information when you use the Thinkpilot Platform.
1. Who We Are
Thinkpilot Ltd. is a company registered in Bulgaria. We operate the Thinkpilot Platform, which provides AI-powered tools for business decision-making and collaboration.
If you have questions about this policy or wish to exercise your rights under data protection laws, you can contact us at:
Email: support@thinkpilot.co
Postal Address:
THINKPILOT Ltd.
“Tsar Boris III” Blvd 212
Sofia 1619
Bulgaria
2. What Personal Data We Collect
We may collect and process the following types of personal data:
• Contact information: Your name and email address.
• Account data: Company name, account ID, user roles.
• Platform usage data: How you and your team interact with the Platform.
• Technical data: Browser type, device info (via Google Analytics).
• Conversation logs: Inputs and outputs generated during use of the Platform.
• Marketing preferences: If you subscribe to newsletters or product updates.
Billing information (e.g., VAT ID, company address) is processed and stored by our third-party provider, Stripe.
3. Why We Collect Your Data (Legal Basis)
We collect and use your personal data for the following purposes and legal bases under the General Data Protection Regulation (GDPR):
Purpose
Legal Basis
To provide access to the Platform
Contract performance (Art. 6.1.b)
To process subscriptions
Contract performance (Art. 6.1.b)
To communicate with you
Legitimate interest (Art. 6.1.f)
To improve the Platform
Legitimate interest (Art. 6.1.f)
To send newsletters or product updates
Consent (Art. 6.1.a)
To ensure platform security
Legitimate interest (Art. 6.1.f)
You may withdraw your consent at any time by contacting us at support@thinkpilot.co
4. How We Use Your Data
We use your data to:
• Authenticate users and manage business accounts
• Enable collaboration and user feedback features
• Analyze usage data to improve performance and user experience
• Deliver product announcements and updates
• Respond to your support inquiries
We do not use your personal data for automated decision-making or profiling.
5. Third-Party Services and Data Sharing
We may share limited data with trusted third-party service providers who help us operate the Platform:
• Stripe (billing)
• Google Analytics (analytics)
• Sentry (error monitoring – anonymized)
• Langfuse (usage monitoring)
• OpenAI, Google AI Studio, Perplexity AI (LLM processing)
Some of these providers may be based outside the EU. In such cases, data is transferred using appropriate safeguards under GDPR, such as Standard Contractual Clauses (SCCs), and only for runtime processing. No user data is stored by these third parties.
6. Cookies and Tracking
We use cookies to:
• Authenticate users
• Maintain sessions
• Improve security and performance
• Analyze usage (via Google Analytics)
Use of the Platform requires cookies. There is currently no cookie-free version available. We do not use cookies for third-party advertising or behavioral profiling.
We do not currently use a cookie banner but may implement one in the future as features evolve.
7. Data Retention
We retain personal and platform data for as long as your business account remains active.
If your subscription ends and the grace period passes without renewal, we may suspend access. Full data deletion will occur upon confirmed account termination or after a period of prolonged inactivity, as outlined in our Terms and Conditions.
Once your account is deleted, all associated user data, uploaded content, and usage logs are removed from our systems unless we are legally required to retain certain data (e.g., for tax or accounting compliance).
8. Your Rights Under GDPR
You have the following rights regarding your personal data:
• Right of access – to know what data we hold about you
• Right to rectification – to correct inaccurate or incomplete data
• Right to erasure – to request deletion of your personal data
• Right to restrict processing – to limit how your data is used
• Right to data portability – to receive a copy of your data
• Right to object – to object to certain types of processing
• Right to withdraw consent – at any time
To exercise your rights, please email us at support@thinkpilot.co. We may ask you to verify your identity before acting on your request.
9. Data Security
We take data security seriously and use appropriate technical and organizational measures to protect your data, including:
• Encrypted data transmission (TLS/SSL)
• Access controls and authentication
• Anonymization of certain data sets
• Limited access by staff on a need-to-know basis
10. International Data Transfers
Where your data is processed by non-EU providers (e.g., AI APIs), we ensure that such transfers comply with GDPR requirements using appropriate safeguards, such as Standard Contractual Clauses or data processing agreements.
All user data is stored on EU-based infrastructure.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email and post the updated version on our website. Your continued use of the Platform after such changes constitutes acceptance of the updated policy.
12. Contact Us
If you have questions, feedback, or concerns regarding this Privacy Policy or your data, you can contact us at:
Email: support@thinkpilot.co
Postal Address:
THINKPILOT Ltd.
“Tsar Boris III” Blvd 212
Sofia 1619
Bulgaria