Privacy Policy

This Privacy Policy explains how your personal data is collected, used, disclosed, and protected when you use Afiaera, a platform developed and operated by Meaningful Technology UAB.

Your privacy is important to us. This policy complies with the General Data Protection Regulation (GDPR) and applicable laws of the Republic of Lithuania and the European Union.

We collect and process the following categories of personal data when you interact with Afiaera:

1.1. Account Data

• Full name

• Email address

• Phone number

• Company name

• Country and language preferences

1.2. Payment and Financial Data

• Transaction details (top-up history, usage-based charges)

• Partial payment identifiers (via third-party processors)

• Invoices and billing data (required for tax and compliance)

Note: All payment data is processed by certified third-party providers in compliance with PCI-DSS standards. We do not store your credit card or bank information.

1.3. Usage and Communication Data

• Call duration, timestamp, and metadata (not content of calls)

• Message logs (e.g., SMS, number of emails sent)

• AI configuration settings (custom scripts, triggers, workflows)

1.4. Technical and Log Data

• Device and browser type

• IP address and geolocation (approximate)

• Operating system and session data

• Activity logs and interaction history

We use your data lawfully, fairly, and transparently for the following purposes:

• To provide, operate, and improve Afiaera

• To authenticate your identity and manage account access

• To process payments and maintain your balance

• To detect and prevent fraud, misuse, or technical issues

• To respond to support requests and send service-related updates

• To analyze usage for performance and product improvements

• To comply with legal, tax, and regulatory obligations

We do not use your data for automated decision-making or profiling unrelated to Afiaera's intended service.

Under GDPR, we rely on the following lawful grounds:

• Contractual necessity: To fulfill our service obligations to you

• Legitimate interest: To monitor and maintain service performance

• Legal compliance: To fulfill tax, legal, and regulatory duties

• Consent: When required (e.g., for email marketing, optional cookies)

We do not sell, rent, or lease your data. However, we may share limited personal data with:

4.1. Third-Party Service Providers

• Payment processors (e.g., Stripe) to handle secure transactions

• Telecommunication providers for call routing and SMS delivery

• Cloud hosting services (e.g., AWS, Google Cloud) for infrastructure

4.2. Legal Authorities

• If required by law, court order, or regulatory investigation

• To protect the rights and safety of Meaningful Technology UAB, users, or the public

All third parties are bound by contractual obligations to protect your data in accordance with this policy.

If we transfer your data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:

• EU Commission-approved Standard Contractual Clauses

• Data processing agreements with non-EEA service providers

• Hosting on servers within the EU, where feasible

We retain personal data based on necessity:

• For as long as your account is active

• For legal compliance (e.g., accounting, tax) for up to 5 years

• For security and fraud detection for up to 12 months after account deletion

After this period, your data will be anonymized or securely deleted.

We take your data security seriously. Measures include:

• TLS/SSL encryption for all data in transit

• Access control and authentication for account and admin systems

• Firewall and intrusion detection systems

• Regular security audits and vulnerability assessments

Our team follows best practices in secure software development and GDPR-compliant data handling.

Under GDPR and other applicable data protection laws, you have the right to:

• Access your personal data

• Correct inaccurate or outdated data

• Request erasure ("right to be forgotten") under certain conditions

• Restrict processing of your data

• Object to data processing based on legitimate interest

• Withdraw consent at any time (where consent is the basis)

• Data portability – receive your data in a machine-readable format

• Lodge a complaint with a supervisory authority (see below)

To exercise your rights, email: legal@afiaera.com

Afiaera is intended for use by businesses and individuals aged 18 and over. We do not knowingly collect data from minors. If we become aware of such data, it will be deleted promptly.

We may update this Privacy Policy from time to time to reflect:

• Legal changes

• Service updates

• Security enhancements

We will notify you of significant changes via email or in-app notification at least 7 days before changes take effect. The "Effective Date" at the top will be updated accordingly.

If you have questions or concerns about this policy or your personal data, please contact us:

Email: legal@afiaera.com

If you believe your data rights have been violated, you may contact the State Data Protection Inspectorate of Lithuania.