Skip to main content
    Aivarize

    Privacy Policy

    Last updated: February 21, 2026

    Aivarize ("we", "our", "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard information when you visit www.aivarize.com or engage with our services.

    1. Who We Are

    Business name: Aivarize

    Legal form: Sole proprietorship

    Registered address: Kotitontuntie 17 E, Espoo, Finland

    Contact email: support@aivarize.com

    Country of registration: Finland

    Aivarize provides Generative Engine Optimization (GEO) consultancy services and operates in accordance with the EU General Data Protection Regulation (GDPR).

    2. Data We Collect

    2.1 Information You Provide

    We collect personal data that you share with us directly, such as:

    • • Name, email address, phone number, company information, and job title
    • • Messages submitted through our contact, demo, or quote forms
    • • Information shared through chat or other communication channels

    2.2 Information Collected Automatically

    We use analytics tools to gather limited technical data, including:

    • • IP address, browser type, device information, operating system
    • • Pages visited, session duration, and referral sources

    This data helps us understand how visitors use our website and improve its performance.

    2.3 Payment Information

    Payments, when applicable, are processed through secure third-party payment providers. We do not store payment card details.

    3. How We Use Data

    We process personal data only for legitimate business purposes, including:

    • • Responding to inquiries, demo or quote requests
    • • Managing client relationships and service delivery
    • • Improving website performance and user experience
    • • Communicating relevant service updates or materials (with consent where required)
    • • Operating internal systems and analytics that support lead management and performance measurement

    Our legal bases for processing are consent, contract performance, and legitimate interest.

    4. Use of Automation and AI

    We use AI-enabled systems to assist with internal analysis, drafting, and workflow support. These systems may process limited business-related information to improve speed and accuracy. All processing follows GDPR principles of data minimization and purpose limitation.

    5. Cookies and Tracking

    We use essential and analytics cookies to operate and measure the effectiveness of our website. Non-essential cookies are only activated after you give consent through our cookie banner. You can change or withdraw your consent at any time in your browser or cookie settings.

    6. Data Storage and Security

    Personal data is stored securely in trusted cloud infrastructure within the European Economic Area (EEA) or with providers offering adequate data protection safeguards. We apply appropriate technical and organizational measures to prevent unauthorized access, alteration, or disclosure.

    7. Data Retention

    We retain personal data only for as long as necessary to fulfill the purposes outlined above:

    • • Inquiry and contact data: up to 12 months after last interaction
    • • Client data: for the duration of the relationship and as legally required thereafter
    • • Analytics data: retained in aggregated, non-identifiable form

    8. Data Sharing and Sub-Processors

    We may engage carefully selected service providers to host, process, or analyze data on our behalf. These providers act as data processors under GDPR and are bound by contractual data-protection obligations. A current list of categories of such processors includes:

    • • Cloud hosting and database services
    • • Analytics and performance monitoring
    • • Customer communication tools
    • • Payment and invoicing providers

    We do not sell or share personal data for marketing by third parties.

    When data is transferred outside the EEA, we rely on Standard Contractual Clauses (SCCs) or other lawful transfer mechanisms.

    8.1 Data Processing Agreements and Safeguards

    We maintain Data Processing Agreements (DPAs) and/or rely on Standard Contractual Clauses (SCCs) with our key service providers to ensure GDPR-compliant data handling. Our main processors include:

    • Backend provider (database and authentication): EU hosting
    • Google Cloud Platform (analytics): Covered by Google's GDPR compliance framework
    • OpenAI/Anthropic (AI processing): Enterprise agreements with data protection addendums
    • Workflow tooling (internal orchestration): Standard Contractual Clauses in place

    You may request copies of these agreements by contacting support@aivarize.com.

    9. Your Rights

    You have the right to:

    • • Access and receive a copy of your data
    • • Request correction or deletion of your data
    • • Object to or restrict certain processing activities
    • • Withdraw consent where processing is based on consent
    • • Lodge a complaint with your local supervisory authority or the Finnish Data Protection Ombudsman

    To Exercise Your Data Protection Rights:

    Send an email to support@aivarize.com with the subject line "Data Subject Request"

    We will respond to your request within 30 days as required by GDPR. We may verify your identity before fulfilling a request.

    10. Updates to This Policy

    We may update this Privacy Policy from time to time to reflect changes in technology, law, or our business practices. The latest version will always be available on this page.

    11. Contact

    If you have any questions or concerns about this Privacy Policy or how we process your data, contact:

    Aivarize
    Kotitontuntie 17 E, Espoo, Finland
    📧 support@aivarize.com