Legal

Privacy Policy

Effective date: 1 April 2026

1. Who we are

AclipA (“AclipA”, “we”, “us”, “our”) is the data controller responsible for your personal data. We are an AI-powered documentation platform incorporated and operating within the European Union.

Contact: contact form

2. What personal data we collect and why

We collect personal data only when you actively provide it to us or when it is technically necessary to deliver our services. Below is a description of each category.

Contact enquiries. When you submit the contact form on our website, we collect your name, email address, and the content of your message. We use this data solely to respond to your enquiry.

Job applications. When you submit a speculative application through our careers page, we collect your name, email address, a personal message, and an optional CV file. We use this data to evaluate your application and communicate with you during the recruitment process.

Waitlist signups. When you join our waitlist, we collect your email address. We use this to notify you of product updates, early access, and launch announcements.

Technical data. When you visit our website, standard server logs may record your IP address, browser type, and referring URL. This data is used solely for security and operational purposes and is not used to identify you individually.

3. Legal basis for processing

We process your personal data under the following legal bases as defined in Article 6 of the GDPR:

  • Legitimate interests (Art. 6(1)(f)) — responding to contact and job enquiries, maintaining website security.
  • Consent (Art. 6(1)(a)) — waitlist signups. You may withdraw your consent at any time by contacting us.
  • Pre-contractual measures (Art. 6(1)(b)) — processing job applications at your request.

4. How we share your data

We do not sell, rent, or trade your personal data. We may share it with the following categories of recipients only to the extent necessary:

  • Hosting and infrastructure providers — our website and email delivery rely on third-party servers, which may technically process data in transit.
  • Legal obligations — we may disclose data if required by law or a competent authority.

All processors we engage are contractually required to handle data in accordance with GDPR.

5. Data retention

  • Contact enquiries — retained for up to 12 months after the enquiry is resolved, then deleted.
  • Job applications — retained for up to 12 months after the recruitment process concludes, then securely deleted. We will ask for your consent before retaining applications for future roles.
  • Waitlist emails — retained until you unsubscribe or the waitlist is closed.
  • Technical/server logs — retained for up to 90 days.

6. Your rights under GDPR

If you are located in the European Economic Area, you have the following rights regarding your personal data:

  • Right of access (Art. 15) — you may request a copy of the personal data we hold about you.
  • Right to rectification (Art. 16) — you may ask us to correct inaccurate or incomplete data.
  • Right to erasure (Art. 17) — you may ask us to delete your data where there is no overriding legal basis to retain it.
  • Right to restriction (Art. 18) — you may ask us to limit processing in certain circumstances.
  • Right to data portability (Art. 20) — you may request your data in a structured, machine-readable format.
  • Right to object (Art. 21) — you may object to processing based on legitimate interests.
  • Right to withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, use our contact form. We will respond within 30 days. You also have the right to lodge a complaint with the Estonian Data Protection Inspectorate (www.aki.ee) or the supervisory authority in your country of residence.

7. Cookies

Our website currently uses only technically necessary functionality and does not deploy tracking cookies, advertising cookies, or third-party analytics cookies. If this changes, we will update this policy and, where required by law, seek your consent before setting any non-essential cookies.

8. International data transfers

We aim to process and store all personal data within the European Economic Area. Where any data is transferred outside the EEA — for example, via a third-party infrastructure provider — we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

9. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the effective date at the top of this page. We encourage you to review this policy periodically. Material changes will be communicated to you directly where we hold your contact details.

10. Contact us

If you have any questions about this Privacy Policy or how we handle your personal data, please use our contact form.