AiDome is built on the principle that your data belongs to you — and only you. This policy explains what personal data we collect, why we collect it, and how we protect it.
Company: AiDome Technologies OÜ
Registered in: Estonia (EU)
Email: privacy@aidometech.ai
Website: aidometech.ai
Applicable law: General Data Protection Regulation (EU) 2016/679, Estonian Personal Data Protection Act (Isikuandmete kaitse seadus)
Lead Supervisory Authority: Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon) — aki.ee
We collect only the data necessary to provide our services and improve your experience. Here is a complete overview of the personal data we process, organized by context.
When you submit our contact form, we collect:
When you create a PRISM account, we collect:
With your consent, Google Analytics collects:
Our servers automatically collect:
Every data processing activity has a specific purpose and a legal basis under GDPR Article 6.
| Purpose | Data Involved | Legal Basis (Art. 6 GDPR) | Retention |
|---|---|---|---|
| Respond to your inquiries | Name, email, message | Consent Art. 6(1)(a) |
Until request is fulfilled, max 12 months |
| Provide PRISM platform access | Name, email, password, usage data | Contract Art. 6(1)(b) |
Duration of account + 30 days after deletion |
| Process documents in PRISM | User-uploaded documents, AI interactions | Contract Art. 6(1)(b) |
Until user deletes or account closes |
| Improve website experience | Analytics data (anonymized) | Consent Art. 6(1)(a) |
26 months (Google Analytics default) |
| Ensure website security | IP address, access logs | Legitimate Interest Art. 6(1)(f) |
90 days |
| Legal compliance | As required by law | Legal Obligation Art. 6(1)(c) |
As required by applicable law |
PRISM is designed from the ground up with data sovereignty as its core principle.
All documents, conversations, and AI-generated content within PRISM remain on EU-based infrastructure. No data is sent to third-party AI providers (OpenAI, Google, Anthropic, etc.). PRISM uses self-hosted, open-source language models running on dedicated GPU instances.
All PRISM infrastructure is hosted by Scaleway in their fr-par-1 data center (Paris, France), within the European Union.
Every PRISM user's data is completely isolated from other users:
Our marketing website (aidome.tech) is hosted by Hostinger International Ltd., with servers in the European Union. Hostinger acts as a data processor for the technical data (server logs, IP addresses) generated when you visit our website.
Hostinger privacy policy: hostinger.com/privacy-policy
We use a limited number of third-party services. Each one is listed here with its purpose and data handling.
| Service | Purpose | Data Shared | Location | Legal Basis |
|---|---|---|---|---|
| Google Analytics 4 | Website usage statistics | Anonymized browsing data | EU (Google Ireland Ltd.) | Consent |
| Hostinger | Website hosting | Server logs, IP addresses | EU | Legitimate Interest |
| Scaleway | PRISM platform hosting | Platform data (encrypted) | EU (Paris, France) | Contract |
No data transfers outside the EU. All our service providers process data within the European Economic Area. We do not transfer personal data to countries outside the EU/EEA. Google Analytics uses IP anonymization by default in GA4 and processes EU data through Google Ireland Limited.
You are always in control of your personal data
You can request a copy of all personal data we hold about you, free of charge, in a commonly used format.
You can ask us to correct or update any inaccurate or incomplete personal data we hold about you.
You can request we delete your personal data. We will comply unless we have a legal obligation to retain it.
You can ask us to limit how we use your data while a concern is being resolved.
You can receive your data in a structured, machine-readable format and transfer it to another service.
You can object to processing based on legitimate interest. We will stop unless we have compelling grounds.
Where we rely on consent, you can withdraw it anytime. This does not affect prior lawful processing.
You have the right not to be subject to decisions based solely on automated processing that affect you significantly.
Send your request to privacy@aidometech.ai
We will respond within 30 days as required by GDPR. We may ask you to verify your identity before processing your request. All requests are free of charge unless manifestly unfounded or excessive.
Security is not an afterthought — it's our architecture
All data is encrypted using industry-standard protocols. TLS 1.3 for transit, AES-256 for storage. Database connections are encrypted end-to-end.
PRISM enforces strict multi-tenant isolation. Each user's data is partitioned at the database, vector store, and storage level. No user can access another user's data.
Role-based access control (RBAC) ensures only authorized personnel can access infrastructure. All access is logged and auditable.
PRISM uses self-hosted, open-source language models. Your documents and conversations are never sent to OpenAI, Google, Anthropic, or any other external AI provider.
AiDome Technologies OÜ is registered in Estonia. Our lead supervisory authority is:
Andmekaitse Inspektsioon (Estonian Data Protection Inspectorate)
Tatari 39, 10134 Tallinn, Estonia
Website: aki.ee
Email: info@aki.ee
Under Art. 77 GDPR, you also have the right to lodge a complaint with the data protection authority in your country of residence. For example, if you are based in Italy, you may contact the Garante per la protezione dei dati personali at garanteprivacy.it.
Questions about how we handle your data? We're here to help. Transparency isn't just policy — it's how we build trust.
Contact UsThis privacy policy may be updated periodically to reflect changes in legislation or our data practices. We encourage you to review this page regularly. The "Last updated" date at the top indicates the most recent revision.