1) Who we are & scope

This Privacy Policy explains how Jakub Galik AI (“Jakub Galik AI”, “we”, “our”, “us”) processes personal data in connection with our products and websites.

Contact (controller/business): hello@g-sense.ai

When we provide our services directly to end-users, we act as a controller (EU) / business (US). When a business customer asks us to process data on their behalf, we act as a processor (EU) / service provider/contractor (US). See §12.

2) Notice at collection (California) & categories we collect

We may collect the following categories (examples in parentheses). We keep data only as long as needed for the purposes below (see §9). We do not sell personal information and do not share it for cross-context behavioral advertising. If that changes, we will update this Policy and provide opt-out links.

Identifiers (name, email, LinkedIn profile URL, device IDs)

Professional info (role, employer, event interests)

Commercial/interaction data (feature usage, bookings, lead capture events)

Internet activity (logs, IP, pages/events)

Inferences (recommendations, scores, or similar outputs generated through our services)

Lead data via integrations (e.g., LinkedIn lead forms you enable)

Sources: you, your organization, LinkedIn integrations you authorize, and our service providers.

3) Purposes & (EU) legal bases

We process data to:

Provide our services (accounts, service functionality, integrations you enable) — Contract (Art. 6(1)(b))

Operate, secure, and improve our services (analytics, fraud/abuse prevention) — Legitimate interests (Art. 6(1)(f)); you may object

Customer support & service communications — Contract/Legitimate interests

Marketing (optional) — Consent (Art. 6(1)(a)); you can withdraw anytime

Legal/compliance & defense — Legal obligation/Legitimate interests

4) Disclosures & recipients

We share data only as needed with: hosting, analytics, logging, email/support, and payment providers under appropriate contracts (DPAs/SCCs). When you connect LinkedIn, LinkedIn is an independent controller of its service; we receive only the fields needed for the features you enable.

We do not sell personal information and do not share it for cross-context behavioral advertising. We do not use or disclose “sensitive personal information” for purposes requiring a “Limit Use” link.

5) International transfers

Primary operations are in the EU. If data moves outside the EEA (e.g., to US vendors), we use Standard Contractual Clauses and additional safeguards where appropriate.

6) Cookies & similar technologies

Essential cookies run to operate our products and websites.

Non-essential/analytics cookies load only with consent in the EEA/UK.

In the US, you may opt out of non-essential cookies via “Cookie settings.”

We honor browser Global Privacy Control (GPC) signals where required. See Cookie Policy for details.

7) Automated decision-making & profiling

We may use models to rank, recommend, or prioritize suggested connections, content, actions, or time slots. These outputs help support user decision-making; they do not produce legal or similarly significant effects. You can object to profiling used under legitimate interests and request human review.

8) Your rights (EU/UK)

You can request access, correction, deletion, restriction, portability, and object to processing; and you can withdraw consent anytime.

Contact: hello@g-sense.ai

You may also lodge a complaint with the Polish supervisory authority UODO (Prezes UODO, ul. St. Moniuszki 1A, 00-014 Warszawa, kancelaria@uodo.gov.pl).

9) Retention

Account & profile data: for your account’s life + 12 months

Lead data (from integrations you enable): up to 24 months (or sooner on deletion)

Logs/security records: 12 months

Marketing contacts: until consent withdrawal or 12 months of inactivity

We may retain minimal data to comply with legal obligations or to establish/defend legal claims.

10) US state privacy disclosures (CA/CPRA, CO, CT, VA, UT, NV)

If you reside in a US state with privacy laws, you may have the following rights (subject to verification/exceptions):

Access/know, correct, delete, and portability

Opt out of: (a) “sale,” (b) “sharing” for cross-context behavioral advertising, and (c) targeted advertising or certain profiling

Non-discrimination for exercising rights

Authorized agents (CA): you may use one; we will verify authority

Appeals (e.g., VA/CO/CT): if we deny a request, email hello@g-sense.ai with subject “Appeal.”

Because we do not sell or share personal information for targeted advertising, our “Do Not Sell/Share” and “Limit Use of Sensitive PI” links are not required. If our practices change, we will add those links and honor GPC signals.

How to exercise rights: email hello@g-sense.ai. We will verify and respond within applicable timelines (generally 45 days).

Nevada: We do not sell covered information; Nevada residents may still submit opt-out requests at the same email.

11) Children

Our services are intended for professionals. We do not knowingly collect data from children: under 16 in the EEA/UK and under 13 in the US (COPPA). If you believe a child provided data, contact us to delete it.

12) Roles, processing on behalf of customers & DPAs

For business customers using our services for their teams, we act as a processor/service provider and process personal data only per our customer’s instructions and our Data Processing Addendum (DPA). When we act as processor, customers are the controller/business and are responsible for meeting their own transparency obligations.

13) Security

We employ appropriate technical and organizational measures (encryption in transit, access controls, least-privilege, monitoring, regular reviews). No method is 100% secure; we maintain incident response procedures.

14) Changes

We’ll update this Policy when practices or laws change. We’ll post the new date at the top and, if changes are material, provide additional notice (e.g., email or in-app).

15) Contact

Jakub Galik AI — Privacy Team

Email: hello@g-sense.ai