Last updated: 02/06/2025

This Privacy Notice replaces Keak’s former Privacy Policy and explains how information that directly identifies you or could make you identifiable (“Personal Information” or “Personal Data”) is collected, used, disclosed, and otherwise processed by Keak AI Inc. and its affiliates (collectively, “Keak,” “we,” “our”).

SUMMARY

Who processes my data?
Keak ai, inc.

What do you collect?
Contact details; data generated by your use of our SaaS products, websites, and lead-gen services; compliance-related data; recruitment data; cookies and analytics data; limited “special category” data when voluntarily supplied.

Why do you collect the data?
To provide and improve our CRO/lead-generation services; run our business; comply with law; protect security; market relevant offerings; recruit talent.

How long do you keep the data?
As long as necessary for the purposes listed - or as required by law - then securely deleted or anonymised.

What are my rights?
Access, correction, deletion, restriction, portability, objection, withdrawal of consent, and complaint (see § 10).

Questions?
Email legal@keak.com.

1 • DEFINITIONS

“Keak Group” means Keak AI Inc. and its subsidiaries.

“Service” means any Keak on-premises or cloud software, API, dashboard, website (e.g., https://keak.com), event, training, newsletter, or other offering that links to this Notice.

“Controller / Processor” are used as defined under GDPR or equivalent laws.

2 • ROLES

• Keak as Controller – For data we collect for our own purposes (e.g., marketing, product analytics, employment), Keak is the controller.

• Keak as Processor – When our customers load data into Keak experiments or lead-gen workflows (“Customer Data”), Keak acts solely as a processor.

3 • PURPOSES OF PROCESSING

We process Personal Information to:

1. Perform contracts – create accounts, authenticate users, fulfil orders, provide support, manage leads.

2. Ensure customer satisfaction – send product updates, feature releases, usage tips, surveys, satisfaction polls.

3. Develop & improve Services – internal research, model training on aggregated/anonymous data, debugging.

4. Legal compliance – tax, export-control, sanctions screening, record-keeping, responding to lawful requests.

5. Security & fraud prevention – protect our apps, networks, offices; detect misuse; enforce terms.

6. Operate online properties – maintain websites, forums, webinars; personalise content; analyse behaviour.

7. Recruitment – source and evaluate candidates (see careers.keak.com notice).

8. Marketing (with opt-out) – advertise compatible products, events, and offers; manage cookies and ad IDs.

4 • PERSONAL INFORMATION WE COLLECT & HOW

4.1 Directly from you

• Contact details, login credentials, feedback, survey answers, event registrations, payment data (via PCI-compliant processor).

4.2 Automatically via Service use

• Usage Data & Log Data – IP, device type, browser, pages viewed, duration, interactions, error logs.

• Analytics & Location Data – paths through our app, referral URLs, approximate geolocation from IP.

• Cookie/SDK Data – see Keak Cookie Notice.

4.3 From third parties

• Partners & resellers supplying leads or referral details.

• Public sources – business networking sites, public filings.

• Recruiters – applicant information.

5 • LEGAL BASES (GDPR / UK GDPR)

6 • SHARING & DISCLOSURE

We may share Personal Information with:

1. Keak Group entities – internal administration, unified customer experience.

2. Service providers – cloud hosting (e.g., AWS, GCP), email/SMS vendors, payment processors, CRM, analytics.

3. Business & marketing partners – co-hosted events, joint whitepapers, integration partners.

4. Advertising networks & social platforms – hashed IDs for look-alike audiences, where legal.

5. Authorities or advisors – legal compliance, dispute resolution.

6. Corporate transactions – merger, acquisition, financing, insolvency.

7. Community & event participants – basic profile data visible to other attendees/users.

8. With your consent – testimonials, case studies.

All service providers are bound by confidentiality and process data only on Keak’s instructions.

7 • INTERNATIONAL TRANSFERS

Personal Information may be stored or accessed in countries outside your own (notably Canada, the United States, the EU, and the UK). We rely on:

• Adequacy decisions (e.g., Canada↔EU)

• Standard Contractual Clauses (2021)

• Data Privacy Framework self-certification

8 • DATA RETENTION

Longer retention may apply to comply with law or defend legal claims.

9 • SECURITY

Keak implements ISO-27001-aligned controls: encryption in transit & at rest, role-based access, MFA, continuous monitoring, secure software-development lifecycle.

10 • YOUR RIGHTS & CHOICES

Depending on your jurisdiction, you can:

• Access a copy of your data

• Correct or update it

• Delete it (“right to be forgotten”)

• Restrict or object to processing (incl. direct marketing)

• Opt-out of “sale” or “sharing” for targeted ads (California, Virginia, etc.)

• Withdraw consent at any time

• Lodge a complaint with a supervisory authority

How to exercise – email privacy@keak.com. We will verify your identity (e.g., two data points, login auth) before acting.

11 • CHILDREN

Keak Services are not directed to anyone under 16. If we discover we have collected such information, we will delete it promptly.

12 • THIRD-PARTY WEBSITES & SERVICES

Our Sites may link to, or integrate with, third-party sites or services. Their privacy practices are independent of Keak; please review their notices.

13 • CONTACT

Keak AI, Inc.

651 North Broad Street, Middletown, DE 19709

Email: privacy@keak.com

DPO: dpo@keak.com

14 • CHANGES

We may update this Notice periodically. Material changes will be announced via dashboards, email, or on this page. Review regularly; continued use after the “Last updated” date means acceptance.

SCHEDULE A – KEAK GROUP ENTITIES