Privacy First. Always and Forever.

Privacy is one of the critical components to company-secure AI. Which is why we design our products and services to protect it. That’s the kind of responsibility we believe in.

We set out this page to directly address how make sure to be as responsible as we possibly can, putting your privacy first.

Introduction

Your privacy is important to us. This Privacy Policy explains our practices regarding the collection, use, and disclosure of information that we receive through our Services. This Privacy Policy does not apply to any third-party websites, services, or applications, even if they are accessible through our Services.

This Privacy Policy applies to all services provided by Generative Finance Technologies Ltd (GenFinance.AI), including, custom AI tool development, financial team training, and AI-powered financial analysis. By using our services, you agree to the terms of this policy. All matters relating to this policy shall be governed by and construed in accordance with the laws of the United Kingdom.

In this Privacy Policy:

  • We'll refer to you, the person or entity accessing our Site or using our Services, as "you" or "your" or (if you are a purchaser of our Services), our "Client"
  • We'll refer to all the products and services we provide, individually and collectively, as the “Services”.
  • We'll refer to our website as the “Site”.

Table of Contents


a/ Definitions
b/ How do we collect Personal Information?
c/ What information do we collect?
d/ What do we use your Personal Information for?
e/ Your Choices About Your Personal Information
f/ Protection of Personal Information
g/ Cookies
h/ Who at GenFinance.AI may access your Personal Information?
i/ Do we disclose any information to outside parties?
j/ How do we handle global transfers and processing of your Personal Information?
k/ Retention of your Personal Information
l/ Third-party Links
m/ Your Consent
n/ Your Rights
o/ Changes to our Privacy Policy
p/ Jurisdiction-specific Provisions
q/ Contacting Us
r/ Changelog

Privacy Policy
(12 min read)

a/ Definitions.

Data Controller: For general data protection regulation purposes, the "Data Controller" means the organization that decides the purposes for which, and the way in which, any Personal Information is processed. Our customers are the Data Controllers, for example, a finance team using our services to process their financial data.

Data Processor:
A "Data Processor" is an organization which processes Personal Information for a Data Controller. We are the Data Processor for our customers. As a Data Processor, we are bound by the requirements of the General Data Protection Regulations (the "GDPR").

Data Processing:
Data processing is any operation or set of operations (whether automated or not) performed upon Personal Information. Examples of data processing explicitly listed in the text of the GDPR are: collection, recording, organizing, structuring, storing, adapting, altering, retrieving, consulting, using, disclosing by transmission, disseminating or making available, aligning or combining, restricting, erasure or destruction.

Personal Information:
Personal Information is any information which is about you, from which you can be identified. Personal Information includes information such as an individual's name, address, telephone number, or e-mail address. Personal Information also includes information about an individual's activities, such as information about his or her activity on the Site or our Services, and demographic information, such as date of birth, gender, geographic area, and preferences, when any of this information is linked to personal information that identifies that individual. Personal Information does not include "aggregate" or other non-personally identifiable information. Aggregate information is information that we collect about a group or category of products, services, or users that is not personally identifiable or from which individual identities are removed.

Financial Data: Any data related to financial transactions, reports, or analyses processed by our services.

Client: Any individual or entity that engages our services.

AI: Artificial Intelligence, referring to computer systems capable of performing tasks that typically require human intelligence.

LLM (Large Language Model): A type of artificial intelligence model trained on vast amounts of text data, capable of understanding, generating, and manipulating human-like text. LLMs are used in our services for natural language processing tasks such as analysing financial documents, generating reports, and providing intelligent responses to queries.

Natural Language Processing (NLP): A branch of AI that focuses on the interaction between computers and human language. NLP is used in our services to understand and generate human-readable text, enabling more natural interactions with our AI tools.

Prompt Engineering: The practice of designing and refining input prompts to elicit desired outputs from AI language models. We use prompt engineering to optimize the performance of our AI tools for financial tasks.

AI Model: A computational representation trained on data to perform specific tasks. Our AI models are specialized in financial analysis, prediction, and decision-making support

Training Data: The dataset used to teach an AI model how to perform its intended tasks. In our services, this may include anonymized financial records, reports, and market data.

Digital Agent: An AI-powered software program designed to interact with users, answer questions, and perform tasks in a conversational manner. Our digital agents use natural language processing to understand and respond to user inquiries about financial matters.

Machine Learning: A subset of AI that enables systems to learn and improve from experience without being explicitly programmed.

b/ How do we collect personal information?

As a Data Processor, we collect Personal Information from Data Controllers in several ways:

1/ Information you provide to us directly.
2/ Information we may receive from third parties.


Examples may include, but not limited to:
- When you use our services or upload financial documents
- When you interact with our services and tools to complete financial, commercial and business-related tasks
- When you Intergrate our Service with third-party financial software and platforms
- When we automate collection through our website and services

We may receive information about you or your company, including Personal information, from other third parties, and may combine this information with other information we maintain about you. If we do so, this Privacy Policy governs any combined information that we maintain in personally identifiable format.

c/ What information do we collect?

We gather various types of information from you to help tailor our services for finance teams, especially when you're uploading financial documents to train your AI tools to give you the best service possible:

- Personal Identifiers: Your first and last name, username, and email address.
- Company Details: Your company’s name.
- Physical Address: Your (and/or your company’s) physical address.
- User-Provided Info: Information you choose to provide us through our Services (including, for example, your birthdate and/or phone number).
- Financial Documents and Information: Financial documents and data you upload to train AI tools, including but not limited to invoices, receipts, financial statements, transaction records, budgets, and other related documents.
- Service Interaction Data: We may collect information you post to, or collect from, users of the Services. We use this information to operate, maintain, and provide to you the features and functionality of the Services.
- AI Interaction Data: Information generated through your use of our AI tools, including queries and results.
- Training Data: Information used to train custom AI models specific to your organization's needs.

Other:
- Device and Browser Info: We may also collect and aggregate information about the use of our Site and our Services. That information includes browser and device data, such as IP address, device type, screen resolution, browser type, operating system name and version, language, as well as add-ons for your browser. The information may also include usage data, including the pages visited on and links clicked on our Site, the time spent on those pages, and the pages that led or referred you to our Site.

- Advertising Data: We may also permit third-party online advertising networks to collect information (through Cookies or similar tracking technology) about your and others’ use of our Services and any of your mobile or web applications, in order to allow those third-party networks to display ads that may be relevant to your interests on our Services as well as on other websites or apps.

d/ What do we use your Information for?

We will use your Personal Information, in compliance with this Privacy Policy, to help us deliver the Services to you.

Any of the information we collect from you may be used in the following ways:

- To operate, maintain, and provide to you the features and functionality of the Services.
- To compile statistics and analysis about the use of our Site and our Services.
- To personalize your service experience.
- To improve our Site and our Services — we continually strive to improve our site offerings based on the information and feedback we receive from you.
- To improve customer service — your Personal Information helps us to more effectively respond to your customer service requests and support needs.
- To send periodic emails — The email address you provide may be used to send you information, notifications that you request about changes to our Services, to alert you of updates, and to send periodic emails containing information relevant to your account.
- If you purchase our Services, then to enable you to purchase, renew and appropriately use a commercial license to our Services.

We may use Personal Information to send you email marketing about GenFinance.AI products and services, invite you to participate in events or surveys, or otherwise communicate with you for marketing purposes. We allow you to opt out from receiving marketing communications from us as described in the "Your Choices" section below.

We will cooperate with government and law enforcement officials or private parties to enforce and comply with the law. So, we may be lawfully required to share Personal Information where necessary for us to comply with a legal obligation, including to share information with government and regulatory authorities when required by law or in response to legal process, obligation, or request.

We may disclose your Personal Information to government or law enforcement officials or private parties as we believe necessary or appropriate: (i) to respond to claims, legal process (including subpoenas); (ii) to protect our property, rights and safety and the property, rights and safety of a third party or the public in general; and (iii) to stop any activity that we consider illegal, unethical, or legally actionable activity.

We will request your consent before we use or disclose your Personal Information for a materially different purpose than those set forth in this Policy.

e/ Your Choices About Information

We may use the information we collect or receive to communicate directly with you. We may send email marketing communications about GenFinance.AI. If you do not want to receive such email messages, you will be given the option to opt-out.

We will endeavour to comply with your request(s) as soon as reasonably practical. Additionally, even after you opt out from receiving marketing messages from us, you will continue to receive administrative messages from us regarding our Services (e.g., account verification, purchase and billing confirmations and reminders, changes/updates to features of the Service, technical and security notices).

In addition, you may opt out of allowing third-party online advertising networks to collect information from our Site by adjusting the browser settings on your computer or mobile device. Please refer to your mobile device or browser’s technical information for instructions on how to delete and disable cookies, and other tracking tools.

f/ Protection of Personal Information

(Including Company Information)

GenFinance.AI cares about the security of your Personal Information, and we make reasonable efforts to ensure a level of security appropriate to the risk associated with the processing of your Personal Information.

We maintain organizational, technical, and administrative procedures designed to protect your Personal Information against unauthorized access, deletion, loss, alteration, and misuse. GenFinance.AI cares about the security of your Personal Information. We use encryption, access controls, and secure servers to protect your data. You are responsible for maintaining your password and account information securely. If you suspect a breach, contact us immediately.

Industry knowledge, experience, and precedent has shown us that even the best organizations are not guaranteed to be 100% secure, whether it may be (but not limited to) mishaps in data transmission or storage system. If you believe that your interaction with us is not secure, please contact us immediately.

You are responsible for maintaining the secrecy of your unique password and account information, and for controlling access to your email communications from GenFinance.AI. Your privacy settings may also be affected by changes to the functionality of third-party sites and services that you add to the GenFinance.AI Service, such as single sign-on.

GenFinance.AI is not responsible for the functionality or security measures of any third party. Upon becoming aware of a breach of your Personal Information, we will notify you as quickly as we can and will provide timely information relating to the breach as it becomes known in accordance with any applicable laws

g/ Cookies (AKA: Stored Browser Info)

We use cookies to remember information so that you don’t have to re-enter it during your visit or the next time you visit the Site, to understand and save your preferences for future visits, and to compile aggregate data about site traffic and site interaction. This helps us provide you with personalized content and support.

Unlike persistent cookies, session cookies are deleted when you log off from the Services and close your browser. Although most browsers automatically accept cookies, you can change your browser settings to stop automatically accepting cookies or to prompt you before accepting cookies.

However, please note that if you don’t accept cookies, you may not be able to access all portions or features of the Site or the Services. At present, there is no industry standard for recognizing Do Not Track browser signals, so we do not currently respond to them.

Google Analytics and Google Tag Manager
We use Google Analytics and Google Tag Manager to collect:
Pages visited on our website
Time spent on each page
Links clicked
Your general location  (country/city level)
Device and browser information
IP address (anonymized)

3. How We Use Your Information
We use your information to:
Provide and improve our services
Process transactions
Send notifications about your account
Respond to your inquiries
Analyse website usage and trends
Comply with legal obligations

4. Data Processing and Storage
All data collected through     Google Analytics is anonymized. Data is typically transferred to and stored on Google servers in the USA. We retain anonymized analytics data for 26 months. Personal account information is retained as long as you maintain an account with us, and for a period thereafter as required by law.

.5. International Data Transfers
For users in the European Union (EU) or European Economic Area (EEA): We and Google rely on     Standard Contractual Clauses approved by the European Commission for transfers of data outside the EU/EEA.

For more information: Google Cloud Data Transfers

6. Your Rights and Choices
Depending on
your location, you may have the right to: Access your personal data Correct inaccurate data Request deletion of your data Object to certain data processing Data portability Withdraw consent (where applicable). To exercise these rights, please contact us at privacy@genfinance.ai.

Opting Out of Analytics
You can opt out of Google Analytics by: Adjusting your browser settings to reject cookies Using Google's opt-out     browser add-on: Google Analytics Opt-out

7. Data Security
We implement robust security measures to protect your data, including Encryption of sensitive     information Regular security audits Employee training on data     protection Limited access to personal     information

8. Third-Party Sharing
We do not sell your personal information. We may share data with: Service providers (e.g., hosting, analytics) Legal and regulatory  authorities when required by law Business partners with your consent

9. Children's Privacy
Our services are not intended for children under 13. We do not knowingly collect data from children under 13.

Microsoft Clarity
We improve our products and advertising by securely using Microsoft Clarity to see how you use our website. By using our site, you agree that we and Microsoft can collect and use this data.

We partner with Microsoft Clarity and Microsoft Advertising to capture how you use and interact with our website through behavioural metrics, heatmaps, and session replay to improve and market our products/services. Website usage data is captured using first and third-party cookies and other technologies to determine the popularity of services and online activity. Additionally, we use this information for site optimization, and fraud/security purposes. For more information about how Microsoft collects and uses your data, visit the Microsoft Privacy Statement

h/ Who at GenFinance.AI may access your Personal Information?

We seek to protect access to personal (including company information) at all times. We maintain strict access that only authorized, trusted and right personnel have access to your data and that they are trained to handle it securely.

Designated members of teams on both parties will have access to your Personal Information to assist with any questions you have, help you use our Services, investigate security issues, or follow up on bug fixes.

i/ Do we disclose any information to outside parties?

We do not sell, trade, or otherwise transfer to outside parties your Personal Information. We disclose information to ONLY the critical technology & payment platform partners necessary to operate our service to our clients:

Service Providers: We may disclose your Personal Information to third-party service providers (for example, payment processing and data storage and processing facilities such as: Open AI LLC, Amazon Web Services (AWS) Inc, Microsoft Inc. Stripe Inc, and Stack AI) that we use to provide the Services. We limit the Personal Information provided to these service providers to what is reasonably necessary for them to perform their functions and require them to maintain the confidentiality of such Personal Information.

Legal Compliance and Protection: We may release Personal Information, when necessary, comply with the law, enforce our site policies, or protect our or others’ rights, property, or safety. This includes responding to claims, legal processes (including subpoenas), and preventing illegal activities.

Business Transfers: If we enter into or intend to enter into a entity / shareholder transaction that alters the structure of our business, such as a merger, reorganization, joint venture, assignment, sale, or change of ownership, we may share Personal Information to facilitate and complete the transaction. We will notify you ahead of this matter.

j/ How do we handle global transfers and processing of your Personal Information?

Personal Information may be stored and processed in any country where we have operations or where we engage service providers. This means that your Personal Information may be transferred to and processed in countries outside of your residence, including the United States. We take steps to ensure that your privacy rights continue to be protected as outlined in this Privacy Policy, regardless of where the data is stored or processed.

If you are located in the European Union or other regions with laws governing data collection and use that differ from U.K. law, please note that your Personal Information may be transferred to a country and jurisdiction that does not have the same data protection laws as your jurisdiction. However, we transfer and process your Personal Information in compliance with applicable U.K. law.

k/ Retention of your Personal Information

We retain your Personal Information for as long as needed to fulfil the purposes outlined in this Privacy Policy and to provide our Services to you. Additionally, we may retain Personal Information after ceasing to provide Services to you, to comply with legal obligations, resolve disputes, and enforce our agreements. We do so in accordance with applicable law.

l/ Third-party Links

Our Services may provide links to other websites for your convenience and information. These websites may operate independently from us and have their own privacy policies and notices, which we suggest you review. If the linked website is not owned or controlled by us, we are not responsible for its content or the privacy practices.

We are not responsible for examining or evaluating the content or accuracy and we do not warrant and will not have any liability or responsibility for any third-party materials or websites, or for any other materials, products, or services of third-parties. We are not liable for any harm or damages related to the purchase or use of goods, services, resources, content, or any other transactions made in connection with any third-party websites.

Please review carefully the third-party's policies and practices and make sure you understand them before you engage in any transaction. Complaints, claims, concerns, or questions regarding third-party products should be directed to the third-party.

m/ Your Consent

By using our Site and Services, you consent to this Privacy Policy.

n/ Your Rights

You hold full rights under UK GDPR regarding your Personal Information, including the rights to:

Access: Ask for a copy of your Personal Information.
Correction: Request correction of your Personal Information that is inaccurate, incomplete, or outdated.
Transfer: Ask us to transfer your Personal Information to other organizations.
Erasure: Request erasure of certain categories or types of information.
Restriction: Ask us to restrict certain processing.
Objection: Object to processing of your Personal Information. Where we have asked for your consent to process information, you have the right to withdraw this consent at any time.

To exercise your rights, please contact us using the information provided below.

o/ Changes to our Privacy Policy

If we decide to change our privacy policy, we will post those changes on this page. If we are going to use Personal Data collected through the Site in a materially different manner than stated at the time of collection, we will notify users via email and/or by posting a notice on our Site for 30 days prior to such use or by other means as required by law.

p/ Jurisdiction-specific Provisions

All matters relating to this Privacy Policy are governed by the laws of the United Kingdom. Any disputes will be resolved under UK jurisdiction. For residents of the European Economic Area and Switzerland, the Data Protection Officer can be contacted at Support@GenFinance.AI

q/ Changelog

We remain the right to change this page without prior written notice. As you use our website and service, it remains your ultimate responsibility to check this page. We will intend to keep you informed if major changes are made.

Signed by Generative Finance Technologies Ltd (GenFinance.AI)

Support

If you would like to submit a data rights request (also known as a data subject access request), please email: Hello@GenFinance.AI For any other questions, comments, or concerns about this privacy policy, please contact us here:

Enquire