Privacy Policy.

Natiq ("we", "our", "us") provides a real-time AI avatar platform. This Privacy Policy explains what personal information we collect, how we use it, who we share it with, and the choices you have about your data.

This policy applies to our APIs, dashboards, websites and managed services (collectively, the "Service").

We collect information you provide directly — for example, when you create an account, configure an agent, contact support, or submit content to be processed. This may include your name, email address, organisation details, payment information and the content of your requests.

We also collect information automatically when you use the Service, including device data, IP address, browser type, log files, and usage metrics needed to operate and secure the platform.

We use personal information to:

• Provide, maintain and improve the Service.
• Authenticate users, enforce limits, and prevent fraud or abuse.
• Process payments and manage subscriptions.
• Communicate about service updates, security alerts and support requests.
• Conduct internal research, analytics and product development.
• Meet legal, regulatory and contractual obligations.

Where the GDPR or similar laws apply, we process personal data on the bases of contract performance, our legitimate interests (such as securing and improving the Service), compliance with legal obligations, and, where required, your consent.

We share personal information only with: (i) service providers acting on our behalf, such as cloud infrastructure, payment processors and analytics vendors, under appropriate data protection terms; (ii) authorities when required by law or to protect rights and safety; and (iii) successors in connection with a merger, acquisition or sale of assets, subject to confidentiality.

We do not sell your personal data.

We use cookies and similar technologies for authentication, preferences, analytics and security. You can control non-essential cookies through your browser settings or our consent tooling where available.

We retain personal information only for as long as needed to provide the Service, comply with legal obligations, resolve disputes and enforce our agreements. Retention periods vary by data type and use case; specifics are available on request.

Depending on your jurisdiction, you may have rights to access, correct, delete or restrict processing of your personal data, as well as the right to portability and to object to certain processing.

To exercise these rights, contact us using the details below. We will respond within the timelines required by applicable law.

We apply administrative, technical and physical safeguards designed to protect personal data against unauthorised access, alteration, disclosure or destruction. No system is perfectly secure; we encourage strong account credentials and prompt reporting of any suspected compromise.

We may process personal data in countries other than the one in which it was collected. Where required, we put in place appropriate safeguards such as Standard Contractual Clauses to protect your data.

The Service is not directed to children under the age of 16, and we do not knowingly collect personal data from them. If you believe a child has provided us with personal information, please contact us so we can take appropriate action.

We may update this Privacy Policy from time to time. Material changes will be communicated through the Service or by email, and the "Last updated" date above will reflect the latest revision.

If you have questions about this policy or how we handle your data, please contact us through the channels listed on our contact page. For data protection requests, please mark your message accordingly.