Privacy Policy

This privacy policy describes how Krops GmbH (operating as "Sophia AI", "we", "us", or "our") collects, uses, and shares your personal information when you visit our website www.gosophia.ai or use our services.

We are committed to protecting your privacy and handling your data in accordance with the General Data Protection Regulation (GDPR) and applicable German data protection laws.

1. Data Controller

The data controller responsible for your personal data is:

Krops GmbH
Gustav-Adolf-Str. 142a
12013 Berlin, Germany
Email: hello@gosophia.ai

2. What Information Do We Collect?

Information you provide to us

We collect personal information that you voluntarily provide when you:

• Fill out a contact form or request a demo
• Subscribe to our newsletter
• Apply for a job
• Communicate with us via email

This may include your name, email address, company name, phone number, and job title.

Information collected automatically

When you visit our website, we automatically collect certain technical information, including:

• IP address (anonymized)
• Browser type and version
• Operating system
• Referring website
• Pages visited and time spent
• Date and time of access

3. How Do We Use Your Information?

We process your personal data for the following purposes:

• To respond to your inquiries and provide customer support
• To send you information about our products and services (with your consent)
• To improve our website and services
• To comply with legal obligations
• To protect our legitimate business interests

The legal bases for processing under GDPR are: your consent (Art. 6(1)(a)), performance of a contract (Art. 6(1)(b)), compliance with legal obligations (Art. 6(1)(c)), and our legitimate interests (Art. 6(1)(f)).

4. Who Do We Share Your Information With?

We may share your personal data with the following categories of recipients:

• Infrastructure providers: Cloud hosting and server providers located in the EU
• Analytics services: To understand website usage patterns (anonymized data only)
• Email service providers: To send newsletters and communications you have opted into
• Legal and regulatory authorities: When required by law

We do not sell your personal data to third parties. All service providers are contractually bound to process your data only on our behalf and in accordance with GDPR requirements.

5. Cookies and Tracking

Our website uses cookies and similar technologies to enhance your experience. We use:

• Essential cookies: Required for the website to function properly
• Analytics cookies: Help us understand how visitors interact with our website (only with your consent)

You can manage your cookie preferences at any time through your browser settings or our cookie consent banner.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. When your data is no longer needed, we will securely delete or anonymize it.

• Contact form submissions: 12 months after last interaction
• Newsletter subscriptions: Until you unsubscribe
• Job applications: 6 months after the application process concludes
• Website analytics data: 26 months (anonymized)

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These include encryption in transit and at rest, access controls, and regular security assessments.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security.

8. International Data Transfers

Your personal data is primarily processed and stored within the European Union. In the event that data needs to be transferred outside the EU/EEA, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission.

9. Children's Privacy

Our services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child under 16, we will take steps to delete that information promptly.

10. Your Privacy Rights

Under the GDPR, you have the following rights regarding your personal data:

• Right of access: Obtain a copy of the personal data we hold about you
• Right to rectification: Request correction of inaccurate or incomplete data
• Right to erasure: Request deletion of your personal data under certain circumstances
• Right to restriction: Request that we limit the processing of your data
• Right to data portability: Receive your data in a structured, machine-readable format
• Right to object: Object to the processing of your data based on legitimate interests
• Right to withdraw consent: Withdraw your consent at any time where processing is based on consent

To exercise any of these rights, please contact us at hello@gosophia.ai. We will respond to your request within 30 days.

You also have the right to lodge a complaint with the Berlin Commissioner for Data Protection and Freedom of Information (Berliner Beauftragte für Datenschutz und Informationsfreiheit) or any other competent supervisory authority.

11. Do-Not-Track Signals

Some browsers include a Do-Not-Track (DNT) feature. We currently do not respond to DNT signals, as there is no industry standard for compliance. We will update this policy if a standard is established.

12. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on this page with a revised "Last updated" date. We encourage you to review this policy periodically.

13. Contact Us

If you have any questions about this privacy policy or our data practices, please contact us:

Krops GmbH
Gustav-Adolf-Str. 142a
12013 Berlin, Germany
Email: hello@gosophia.ai
Website: www.gosophia.ai