Overview
This Privacy Policy explains what personal information Dealio ("Dealio", "we", "us") collects when you visit our website, create an account, purchase credits, or use our AI services, and how we handle that information.
Dealio is the data controller for personal information processed through our website and dashboard. For any privacy question, contact [email protected].
Data we collect
We collect only what is needed to operate the service:
- Account data — first name, last name, email, hashed password.
- Order data — credits purchased, applied promo code, chosen payment method, invoice details.
- Usage data — services activated, credit balance and consumption logs.
- Technical data — IP address, browser type, device identifiers, pages viewed, referrer.
- Support data — messages, attachments and metadata you send when contacting us.
We do not sell personal data and we do not use it to train third-party models.
How we use data
We process personal data to:
- Create and secure your account.
- Process credit purchases and issue invoices.
- Deliver, monitor and improve AI services you activate.
- Provide customer support and respond to inquiries.
- Detect fraud, abuse and violations of our policies.
- Meet accounting, tax and other legal obligations.
Legal basis for processing
Where GDPR or equivalent laws apply, we rely on:
- Contract — to provide the services you purchase.
- Legitimate interests — to secure the platform, prevent fraud and improve our product.
- Legal obligations — for invoicing, tax and compliance duties.
- Consent — for optional analytics cookies and marketing communications.
Data retention
Account data is kept while your account is active and for up to 24 months after closure so we can respond to disputes and legal requests. Invoice and tax data is retained for the periods required by applicable accounting laws (typically 5–10 years). Support tickets are archived for up to 24 months. Technical logs are typically retained for 90 days.
Security
We use industry-standard controls including encryption in transit (HTTPS/TLS), encrypted database storage, role-based access, audit logs and least-privilege principles. Passwords are hashed using modern algorithms. No online service can be guaranteed 100% secure, but we continuously work to protect your data.
Your rights
Depending on your jurisdiction, you have the right to:
- Access the personal data we hold about you.
- Correct inaccurate or incomplete data.
- Erase your account and data, subject to legal retention.
- Restrict or object to processing.
- Receive a portable copy of your data.
- Withdraw consent at any time.
- Lodge a complaint with your local supervisory authority.
To exercise any right, email [email protected]. We respond within 30 days.
International transfers
Our infrastructure and subprocessors may be located outside your country. Where personal data is transferred internationally, we rely on Standard Contractual Clauses and appropriate supplementary measures to ensure equivalent protection.
Children
Dealio is not intended for children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will delete it.
Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be highlighted on this page and, where required, communicated by email. The "Last updated" date at the top reflects the latest revision.
Dealio sp. z o.o.
Solipska 3/5, 02-482 Warszawa, Poland
Email [email protected] · Phone +48 535 134 311
This page is maintained by Dealio and reflects our current app-visible practices. It is not a legal certification.