Protecting your privacy and personal data is very important to us. We therefore only use your personal data within the scope of legal regulations, in particular the General Data Protection Regulation (GDPR). With this privacy policy, we would like to inform you about the nature, scope and purposes of the collection, use and processing of your personal data by QInsights B.V. regarding the use of our AI-Powered software application.
QInsights B.V.
Britsezoom 24
2912 Niewerkerk aan den Ijssel
Netherlands
Email: contact@qinsights.ai
At the heart of our operations, QINSIGHTS, our premier AI-powered software application, is designed with an unwavering commitment to data privacy and security. Utilizing advanced large language models, our infrastructure and operational practices are meticulously crafted to align with the highest standards of data protection, particularly within the European context. This entails choosing services that fulfil the following criteria:
Security: Ensuring data is protected against unauthorized access, disclosure, and destruction.
Availability: Ensuring systems are available for operation and use as agreed upon.
Processing Integrity: Ensuring that system processing is complete, valid, accurate, timely, and authorized.
Confidentiality: Ensuring that confidential information is protected.
Privacy: Addressing the collection, use, retention, disclosure, and disposal of personal information.
Our Responsibility
At QInsights, we understand that the integrity and confidentiality of your research data are paramount. Safeguarding the privacy of your research participants and ensuring their information remains secure is a responsibility we embrace with utmost seriousness. We are dedicated to continuously advancing our security measures and refining our privacy practices to uphold and surpass the most stringent standards for data protection, specifically catering to the unique needs of researchers and research organizations
Our operational base in Europe signifies more than just a geographical location; it represents our dedication to upholding the stringent data privacy standards set by the European Union. QInsights is supported by a robust infrastructure, with our main application hosted on Digital Ocean servers in Frankfurt, Germany. For GDPR compliance, see here. If you are looking for California-specific information, check out their CCPA Privacy Notice.
Their Data Processing Agreement (DPA) can be accessed here.
Location of the data centre: Frankfurt (FRA1)
Digital Ocean’s processes have been vetted by independent audits. You can view their certification reports here.
We combine various LLM models with custom-built algorithms to achieve optimal results. The custom-built algorithms run on our own server (see above). We use Microsoft Azure Cloud to access large language models (LLMs) for processing data.
Azure is a secure cloud computing platform that provides a wide range of services, including data storage and machine learning tools. When using our services, your data may be processed through Azure Cloud, which complies with strict security and privacy standards to ensure the protection and confidentiality of your information.Learn how Microsoft cloud services protect your data: Service Trust Portal
All Azure services can be used in compliance with the GDPR. See here.
Location of data centre: Germany West Central, Frankfurt.
The privacy and security of your data are paramount at every stage of your interaction with QInsights. We implement advanced encryption, strict access controls, and continuous surveillance to prevent unauthorized access and potential data breaches. See our compliance document here.
As users of QINSIGHTS, you may submit data to the Services ("Input") and, in turn, receive results generated from your Input ("Output"). Collectively, Input and Output constitute "Customer Content." You maintain full ownership rights over the Input and are granted exclusive ownership of the Output.
Any data you provide while using our service is processed securely and never used to train or improve the underlying language models. We are committed to ensuring that your data remains confidential and is solely used to provide the services you need, not for model training or any other unintended purpose.
You are in charge of all the information you provide (Input) and must ensure you have the necessary rights, licenses, and permissions to share this Input with our services. You alone are accountable for how you use the results (Outputs) the services give you. It's up to you to check if these outputs are accurate and suitable for your needs, which might include getting them reviewed by a person when needed.
We offer webinars for our users and existing or prospective customers. The webinars are interactive events on the products we offer, conducted by our staff. External speakers may also be invited to the webinars. We point this out accordingly before registration.
We use a service provided by Zoom Video Communications, Inc. ("Zoom"), 55 Almaden Blvd. Suite 600, San Jose, CA 95113, USA, on whose platform the webinars are held. Registration for our webinars takes place via a corresponding landing page of Zoom. We have concluded a data processing agreement with Zoom and Zoom may only process personal data according to our instructions and not for its own purposes. We would like to point out that if you access Zoom's website, Zoom is responsible for the personal data processed through your use of the website. If you have entered into a contractual relationship with Zoom, we have no influence on the personal data collected and processed in this context as part of our webinars. Further information on the handling of personal data at Zoom - in particular also in relation to webinars - can be found here.
In the event of registration for a webinar on a landing page provided by Zoom, we collect and process all personal data that you provide when registering for one of our webinars (first and last name, email address, company (optional), position (optional)). We process your data to fulfil the free participation contract concluded between you and us on the basis of Art. 6 para. 1 sentence 1 lit. b) GDPR. We store your data on this basis for the duration of the existence of our contractual relationship, i.e. until the conclusion of the webinar, and subsequently for the duration of the statutory retention periods where this is required. If you have a QInsights account and it is possible for us to assign the webinar registration to this account, the processing of your personal data in the context of our customer database and the analyses of our customer-related processes until the end of the webinar is based on Art. 6 para. 1 sentence 1 lit. f) GDPR, as this is in our legitimate interest to record the demand for webinars and in this context to improve the services for our customers. After completion of the webinar, we note in our customer database under your account that you participated in the webinar. The name and e-mail address given during registration will not be noted and - if they do not match the details in the QINSIGHTS account created - will be deleted by us after the webinar has ended. Should personal data be processed at all in this note in the customer database beyond the webinar, we base this on Art. 6 para. 1 sentence 1 lit. f) GDPR, as this is in our legitimate interest to specifically identify whether customers understand our products in order to provide them with support more quickly in individual cases, or in order to provide certain customers with extended webinars and training.
When participating in a webinar and using Zoom, the following additional personal data is processed:
Please note that it is also possible to participate in the webinar without having a Zoom account. In this case, the collection and processing of data is limited to the minimum necessary to be able to maintain the service for you. We have chosen settings so that the collection and processing of the communication content generally takes place on servers in the European Union. As Zoom is based in the USA, we cannot exclude the possibility that data processing (in particular meeting metadata) may also take place in the USA when using the service. A collection and processing of your data through the use of Zoom takes place on the basis of Art. 6 para. 1 sentence 1 lit. b) GDPR (participation contract). We store the data collected and processed by Zoom on our behalf for the duration of the Zoom webinar and subsequently for the duration of the statutory retention periods, if this is required. We have no influence on the duration of the data processed by Zoom under its own responsibility. Please contact Zoom directly for information in this regard. Automated decision-making pursuant to Art. 22 GDPR does not take place.
Please note that we may record Zoom webinars and publish them afterwards on our website or social media channels. Participants will not be visible or identifiable in these recordings. If, contrary to expectations, personal data of the participants is visible during the recording, it will be made unrecognisable before publication. The recording and storage of the webinar is based on Art. 6 para. 1 sentence 1 lit. f) GDPR, as these processing operations are in our legitimate interest to improve the quality of our webinars. When the webinars are published, no further processing of personal data will take place, as we will make them unrecognisable beforehand - if they can be viewed at all.
We offer webinars for our users and existing or prospective customers. The webinars are interactive events on the products we offer, conducted by our staff. External speakers may also be invited to the webinars. We point this out accordingly before registration.
We use a service provided by Zoom Video Communications, Inc. ("Zoom"), 55 Almaden Blvd. Suite 600, San Jose, CA 95113, USA, on whose platform the webinars are held. Registration for our webinars takes place via a corresponding landing page of Zoom. We have concluded a data processing agreement with Zoom and Zoom may only process personal data according to our instructions and not for its own purposes. We would like to point out that if you access Zoom's website, Zoom is responsible for the personal data processed through your use of the website. If you have entered into a contractual relationship with Zoom, we have no influence on the personal data collected and processed in this context as part of our webinars. Further information on the handling of personal data at Zoom - in particular also in relation to webinars - can be found here.
In the event of registration for a webinar on a landing page provided by Zoom, we collect and process all personal data that you provide when registering for one of our webinars (first and last name, email address, company (optional), position (optional)). We process your data to fulfil the free participation contract concluded between you and us on the basis of Art. 6 para. 1 sentence 1 lit. b) GDPR. We store your data on this basis for the duration of the existence of our contractual relationship, i.e. until the conclusion of the webinar, and subsequently for the duration of the statutory retention periods where this is required. If you have a QInsights account and it is possible for us to assign the webinar registration to this account, the processing of your personal data in the context of our customer database and the analyses of our customer-related processes until the end of the webinar is based on Art. 6 para. 1 sentence 1 lit. f) GDPR, as this is in our legitimate interest to record the demand for webinars and in this context to improve the services for our customers. After completion of the webinar, we note in our customer database under your account that you participated in the webinar. The name and e-mail address given during registration will not be noted and - if they do not match the details in the QINSIGHTS account created - will be deleted by us after the webinar has ended. Should personal data be processed at all in this note in the customer database beyond the webinar, we base this on Art. 6 para. 1 sentence 1 lit. f) GDPR, as this is in our legitimate interest to specifically identify whether customers understand our products in order to provide them with support more quickly in individual cases, or in order to provide certain customers with extended webinars and training.
When participating in a webinar and using Zoom, the following additional personal data is processed:
Meeting metadata and telemetry data (This technical data is, among other things, data relating to the use of the service, including when and how sessions were conducted (IP address, event logs, session information, etc.), as well as device and hardware information that Zoom needs to access in order for features such as camera, microphone, etc. to be operational in the context of participation).
Please note that it is also possible to participate in the webinar without having a Zoom account. In this case, the collection and processing of data is limited to the minimum necessary to be able to maintain the service for you. We have chosen settings so that the collection and processing of the communication content generally takes place on servers in the European Union. As Zoom is based in the USA, we cannot exclude the possibility that data processing (in particular meeting metadata) may also take place in the USA when using the service. A collection and processing of your data through the use of Zoom takes place on the basis of Art. 6 para. 1 sentence 1 lit. b) GDPR (participation contract). We store the data collected and processed by Zoom on our behalf for the duration of the Zoom webinar and subsequently for the duration of the statutory retention periods, if this is required. We have no influence on the duration of the data processed by Zoom under its own responsibility. Please contact Zoom directly for information in this regard. Automated decision-making pursuant to Art. 22 GDPR does not take place.
Please note that we may record Zoom webinars and publish them afterwards on our website or social media channels. Participants will not be visible or identifiable in these recordings. If, contrary to expectations, personal data of the participants is visible during the recording, it will be made unrecognisable before publication. The recording and storage of the webinar is based on Art. 6 para. 1 sentence 1 lit. f) GDPR, as these processing operations are in our legitimate interest to improve the quality of our webinars. When the webinars are published, no further processing of personal data will take place, as we will make them unrecognisable beforehand - if they can be viewed at all.
Your connections to our website and our apps are protected with encryption techniques in line with the current state of the art. The level of protection also depends on which encryption your Internet browser and/or mobile device supports. You can tell whether an individual page of our website is transmitted in encrypted form by looking at the closed key or lock symbol in the status bar of your browser. We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
The following rights are granted by European Union directives and regulations. If you wish to exercise any of the rights listed below, please contact us at the above address.
In addition, you can object to the further processing of your data if we process your data based on our legitimate interest (Art. 6 para. 1 sentence 1 lit. f), Art. 21 GDPR). If we process your data for the purpose of direct advertising, you have a general right to object. If we do not process your data for advertising purposes, the objection must be based on your particular situation.You also have the right to lodge a complaint regarding the processing of your personal data with a supervisory authority at the Dutch Data Protection Authority.
QInsights B.V., October 23, 2024