Privacy Policy

1. Data Controller

AMAI Solutions (hereinafter referred to as the "Controller") is responsible for processing the personal data of the User and informs you that this data will be processed in accordance with the provisions of Regulation (EU) 2016/679 of April 27 (GDPR) and Organic Law 3/2018 of December 5 (LOPDGDD).

  • Identity: AMAI Solutions
  • Postal Address: Madrid, España
  • Email: info@amai.solutions
  • Phone: +34 614 72 41 73

2. Personal Data We Collect

Depending on the services you use, we may collect the following types of personal data:

  • Identifying Data: first name, last name, email address, phone number
  • Professional Data: company, position, industry
  • Browsing Data: IP address, browser type, pages visited, time spent
  • Communication Data: content of messages sent through contact forms

3. Purpose of Data Processing

We process the information provided by users for the following purposes:

  • Manage information and contact requests
  • Provide contracted artificial intelligence and automation services
  • Send commercial communications about our products and services (with prior consent)
  • Conduct statistical analysis of website usage
  • Improve our services and user experience
  • Comply with applicable legal obligations

4. Legal Basis for Processing

The legal basis for processing your personal data is:

  • Contract Execution: when processing is necessary for the provision of services
  • Consent: for sending commercial communications
  • Legitimate Interest: for improving our services and statistical analysis
  • Legal Obligation: for compliance with tax and legal obligations

5. Data Retention Period

The personal data provided will be retained:

  • As long as the commercial or contractual relationship is maintained
  • Until the user requests its deletion
  • For the time necessary to comply with legal obligations (typically between 4 and 6 years depending on the type of data)

6. Recipients of the Data

Personal data may be communicated to:

  • Competent public administrations, when required by law
  • Technology service providers necessary for the provision of our services (hosting, email, AI voice processing, transcription, payments), some of them located outside the European Economic Area (primarily in the United States)
  • Collaborating entities for the provision of specific services, always under confidentiality agreements

IMPORTANT NOTICE (draft pending legal review): to provide the AI voice service, the content of calls —audio, recordings and transcripts— as well as certain account data are processed by providers (sub-processors) located outside the European Economic Area, primarily in the United States. International data transfers therefore DO take place. Our sub-processors include, without limitation: VAPI, OpenAI, Deepgram and ElevenLabs (AI voice processing, transcription and synthesis), Stripe (payment processing) and Supabase (database and infrastructure), as well as our hosting and file-storage providers. These transfers must be covered by the appropriate safeguards required under the GDPR (for example, the European Commission Standard Contractual Clauses or the EU-US Data Privacy Framework where applicable). You can request the up-to-date list of sub-processors and details of these safeguards by writing to info@amai.solutions. This section must be reviewed and validated by legal counsel before final publication.

7. User Rights

Users can exercise the following rights:

  • Right of Access: to know what personal data we hold about you
  • Right of Rectification: to request the correction of inaccurate data
  • Right of Deletion: to request the removal of your data
  • Right of Opposition: to oppose the processing of your data
  • Right of Limitation: to request the limitation of processing
  • Right to Portability: to receive your data in a structured format
  • Right to Withdraw Consent: to revoke the consent given at any time

To exercise these rights, you can contact us at: info@amai.solutions

You also have the right to file a complaint with the Spanish Data Protection Agency (www.aepd.es) if you believe that the processing does not comply with current regulations.

8. Data Security

AMAI Solutions has implemented appropriate technical and organizational security measures to protect personal data against unauthorized or unlawful processing, as well as against accidental loss, destruction, or damage. These measures include:

  • Data encryption in transit (SSL/TLS)
  • Role-based access control
  • Regular backups
  • System monitoring
  • Staff training in data protection

9. Changes to the Privacy Policy

AMAI Solutions reserves the right to modify this privacy policy to adapt it to legislative or jurisprudential developments. In such cases, we will announce the changes made on this page with reasonable advance notice before they take effect.

10. Contact

For any inquiries related to this Privacy Policy, you can contact us:

  • Email: info@amai.solutions
  • Phone: +34 614 72 41 73
  • Address: Madrid, España

Last updated: December 2024