← Back to Home

Privacy Policy

Last Updated: October 18, 2025

DeepSensi ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

1. What Information We Collect

1.1 Information You Provide

We collect information that you voluntarily provide to us:

• Contact Information: Email address (for waitlist registration and notifications)
• Communication Data: Any information you provide when contacting us via email or forms

1.2 Automatically Collected Information

When you visit our website, we automatically collect:

• Device Information: Browser type, operating system, device type
• Usage Data: Pages visited, time spent, navigation patterns
• Technical Data: IP address (anonymized), language preferences, timezone
• Cookie Data: Stored through cookies and similar technologies (see Section 4)

1.3 Future Medical Data (Not Currently Collected)

Important: We do NOT currently collect any medical data, biomarker data, or health information through our waitlist. When our service launches, any medical data will be:

• Collected only with explicit, informed consent
• Anonymized through secure user ID assignment (no real names required)
• Encrypted using AES-256 end-to-end encryption
• Stored on secure, GDPR-compliant servers within the EU
• Never sold, rented, or shared with third parties for marketing purposes

1.4 Language Preferences

We store your selected language preference (EN, PL, FR, ES, DE, RU) locally on your device to provide a personalized experience across visits.

1.5 Mission Acknowledgment

When you first visit our site, we request your acknowledgment of our mission statement and service nature through a consent modal. This acknowledgment is stored locally on your device (localStorage) and helps ensure you understand:

• DeepSensi's informational purpose
• That we don't diagnose, prescribe, or replace medical expertise
• Our role as an evidence intelligence tool that democratizes access to research

This data never leaves your device and is not transmitted to our servers. You can clear this acknowledgment at any time by clearing your browser's localStorage.

2. How We Use Your Information

We use the collected information for:

• Service Delivery: Providing access to our waitlist and future services
• Communications: Sending launch notifications, updates, and important service information
• Website Improvement: Analyzing usage patterns to enhance user experience
• Security: Detecting and preventing fraud, abuse, and security incidents
• Legal Compliance: Complying with applicable laws and regulations (GDPR, etc.)
• Analytics: Understanding how users interact with our platform (via Google Analytics 4)

3. Legal Basis for Processing (GDPR)

Under GDPR, we process your data based on:

• Consent: For email marketing and analytics cookies (you can withdraw consent anytime)
• Contractual Necessity: To provide the services you request
• Legitimate Interests: To improve our services, prevent fraud, and ensure security
• Legal Obligations: To comply with applicable laws and regulations

4. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Essential Cookies: Required for website functionality (language preferences, consent status)
• Analytics Cookies: Google Analytics 4 to understand user behavior (only with consent)
• Preference Cookies: Remember your settings (theme, language)

You can control cookies through our cookie consent banner and your browser settings. Declining analytics cookies will not affect website functionality.

5. How We Share Your Information

We will never sell, rent, or trade your personal information to third parties.

5.1 Service Providers

We may share data with trusted service providers:

• Email Service: For delivering notifications (e.g., Mailchimp, SendGrid)
• Analytics: Google Analytics 4 (anonymized data only)
• Hosting: Cloud infrastructure providers (GDPR-compliant, EU-based)
• Security: Services that help protect against fraud and abuse

All service providers are contractually obligated to protect your data and use it only as directed.

5.2 Legal Requirements

We may disclose information if required by law, court order, or to:

• Comply with legal processes
• Protect our rights, property, or safety
• Prevent fraud or security threats
• Respond to government requests

6. Data Security

We implement industry-standard security measures:

• Encryption: AES-256 encryption for data at rest and in transit (SSL/TLS)
• Access Controls: Role-based access, multi-factor authentication for staff
• Regular Audits: Security assessments and vulnerability testing
• Data Minimization: We collect only necessary information
• Secure Infrastructure: EU-based servers with GDPR compliance

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security, but we continuously work to protect your data.

7. Your Rights Under GDPR

Under GDPR, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data ("right to be forgotten")
• Restriction: Limit how we process your data
• Portability: Receive your data in a machine-readable format
• Object: Object to processing based on legitimate interests
• Withdraw Consent: Withdraw consent for marketing or analytics anytime
• Lodge Complaint: File a complaint with your data protection authority

To exercise these rights, contact us at: privacy@deepsensi.com

8. Data Retention

We retain your data only as long as necessary:

• Waitlist Data: Until service launch + 12 months, or until you request deletion
• Analytics Data: Anonymized data retained for 26 months (Google Analytics default)
• Communication Records: 3 years for legal compliance
• Future Medical Data: Retention period will be specified upon service launch

9. International Data Transfers

Your data is primarily stored in the European Union (Poland). If we transfer data outside the EU, we ensure adequate safeguards through:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions (for countries deemed adequate by the EU)
• Your explicit consent for transfers

10. Children's Privacy

Our services are not intended for individuals under 18 years old. We do not knowingly collect data from children. If we discover that we have collected data from a child, we will delete it immediately.

If you believe we have collected data from a child, please contact us at: privacy@deepsensi.com

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices. Please review their privacy policies before providing any information.

12. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights:

• Right to Know: What personal information we collect and how it's used
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt-out of the "sale" of personal information (we don't sell data)
• Non-Discrimination: We won't discriminate against you for exercising your rights

To exercise CCPA rights, contact us at: privacy@deepsensi.com

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. Material changes will be communicated via email to registered users.

Continued use of our services after changes constitutes acceptance of the updated policy.

14. Do Not Track (DNT)

Some browsers support "Do Not Track" (DNT) signals. We respect DNT signals and will not track users who have enabled this feature.

15. Relationship with Terms of Service

This Privacy Policy should be read in conjunction with our Terms of Service, which define:

• The nature of our service as an evidence intelligence platform
• Our limitations and what we do NOT provide (diagnoses, prescriptions, medical advice)
• Your responsibilities as a user
• Limitation of liability
• Informed consent requirements

Together, these documents form the complete legal framework governing your use of DeepSensi.

16. Contact Us

If you have questions about this Privacy Policy, please contact us:

• Email: privacy@deepsensi.com
• General Inquiries: lab@deepsensi.com
• Legal/Terms Questions: legal@deepsensi.com

For GDPR-related inquiries, you can contact our Data Protection Officer at: dpo@deepsensi.com

If you believe we have not addressed your concerns, you have the right to lodge a complaint with your local data protection authority.