Privacy Policy

1. Introduction Welcome to QuickInsight (“QuickInsight”, “we”, “us”, “our”). We are committed to protecting your privacy and handling your personal information in a responsible, transparent way.

This Privacy Policy explains how we collect, use, store and share information about you when you:

- Visit our website (including quickinsight.co and any subpages). - Use our AI assistant (gatekeeper chatbot / AI Assistant). - Book or participate in human micro-consultation sessions. - Interact with us via forms, email, scheduling links or other channels.

By using our services or accessing our website, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Who we are QuickInsight is currently operated by an individual founder based in Buenos Aires, Argentina. For the purposes of data protection laws, QuickInsight is the “controller” of your personal data (meaning we decide why and how it is processed). If we later operate the service through a legal entity (for example, an Estonian OÜ or another company), we will update this Privacy Policy accordingly.

3. Information we collect

We collect three main categories of information:

3.1 Information you provide directly

- **Contact details**: such as your name and email address when you contact us, request a session, subscribe to updates or ask to receive your action plan by email. - **Account details (if enabled)**: if we enable sign-in (for example, Google sign-in), we may process your account identifier, email address and basic profile information provided by the sign-in provider. - **Booking details**: information you provide when booking a micro‑consultation (for example, via Cal.com), such as preferred time, time zone and a short description of your situation. - **Chat content**: the text you enter into the AI assistant (gatekeeper chatbot / AI Assistant) or share during a human session, which may include context about your work, business, finances or relationships. - **Feedback**: any feedback, testimonials or support requests you send to us. - **Charity-related communications**: if you contact us about our charity allocation, we may process the information you provide (for example, questions about transfer timing or the chosen charity).

We ask you **not** to share more personally identifiable information (PII) than is necessary for the purpose at hand (for example, avoid full legal names of third parties, detailed financial account numbers or sensitive health data).

3.2 Payment information

For paid micro‑consultations, payments are processed by third‑party payment providers (for example, Gumroad or similar providers). Depending on the provider, they may act as the payment processor and/or the merchant of record. We do **not** collect or store your full payment card details.

- We may receive limited information from the payment provider, such as your email address, transaction ID, amount paid, currency, payment status, refund status, and chargeback/dispute metadata. - The processing of your payment information is governed by the payment processor’s own privacy policy.

3.3 Information collected automatically

When you visit our website, we may automatically collect certain information, for example:

- IP address, device identifiers (where available), browser type, operating system, and approximate location (derived from IP). - The pages you visit and the time spent on them. - Referring URLs and other usage statistics.

This data may be collected using cookies or similar technologies (or via cookie-less analytics) and is generally used in aggregated form for analytics and security purposes. Where possible, we prefer to use privacy-friendly, cookie-less analytics solutions that do not rely on invasive tracking.

4. How we use your information

We use the information we collect for the following purposes:

- **To provide and operate our services**: - Delivering the AI assistant experience. - Enabling you to book and attend human micro‑consultation sessions. - Recording acceptance of our Terms and key disclosures (for example, the version accepted, timestamp, and technical identifiers such as IP address and user agent) to help administer the service and reduce fraud/chargebacks. - Sending you your action plan or related follow‑up where requested (for example, via an “Email my plan” feature). Where we use automation tools (such as Make or Zapier) for this purpose, we configure them to process and deliver the email without keeping long‑lived logs of the email content beyond what is operationally or legally necessary.

- **To communicate with you**: - Responding to inquiries or support requests. - Sending confirmations, reminders, or relevant information about booked sessions.

- **To process payments**: - Facilitating payments through third‑party processors such as Gumroad. - Recording transactions for internal accounting and donation reporting. - Administering our charity allocation policy (for example, calculating aggregate amounts and tracking transfer dates).

- **To improve and protect our services**: - Analysing how visitors use the site and the AI assistant to improve the experience. - Reviewing internal session logs (for example, in Google Sheets during the MVP stage) to identify recurring decision types, improve prompts, and prepare manual human-session handoffs. - Monitoring for abuse, misuse, security incidents or rate‑limit violations. - Enforcing our policies (for example, restricting or redirecting requests that appear to seek regulated professional advice).

- **To comply with legal obligations**: - Keeping certain records for tax, accounting or regulatory purposes. - Responding to lawful requests from authorities where required.

We do not sell your personal data to third parties.

5. Legal basis for processing (where applicable)

Where data protection laws require a legal basis (for example, in the EU/EEA or UK), our legal basis depends on the context and may include:

- **Performance of a contract**: when we provide the AI assistant or a booked micro‑consultation that you requested. - **Legitimate interests**: for improving our services, preventing abuse, and maintaining security, provided these interests are not overridden by your rights and interests. - **Consent**: for certain optional uses, such as sending you your plan via email or any future newsletter you choose to subscribe to. - **Legal obligations**: for keeping certain records required by law.

6. How we share your information

We may share your information with third‑party service providers (“processors”) that help us deliver and secure the services. These include:

6.1 AI providers

- Large Language Model (LLM) providers such as **OpenAI** or **Google (Gemini)**, which process the text you submit to the AI assistant in order to generate responses. - Where possible and supported by the provider, we use privacy‑protective settings (for example, limiting use of submitted content for model training), subject to the options they make available and the specific product plan we use.

6.2 Payment processors

- Services such as **Gumroad**, which handle payment collection and related communications. - They receive the information necessary to process your payment and comply with their own legal obligations.

6.3 Scheduling and calendar tools

- **Cal.com** or similar platforms, which handle slot selection, booking confirmations and calendar invitations. - They may receive your name, email and any short description you provide when scheduling.

6.4 Automation and integrations

- Tools such as **Make** or **Zapier**, which we may use to connect services (for example, to log AI session metadata/content, payments and bookings into Google Sheets, or to send a summary email). Where these tools are used to send you a copy of your plan or similar emails, we aim to configure them so that they process the message and do not retain detailed logs of the email content longer than needed.

6.5 Google and analytics

- **Google Workspace** tools (such as Google Sheets or Google Calendar) for internal operations and simple logging (e.g. AI session logs, payment records and bookings). - Analytics tools (preferably privacy‑friendly, cookie-less solutions such as Cloudflare Web Analytics or Vercel Analytics) to understand aggregate usage of the site. If we ever use cookie-based analytics tools such as Google Analytics, we will implement any legally required consent mechanisms, especially for users in regions like the EU/EEA.

6.6 Hosting and infrastructure We use hosting and infrastructure providers (for example, Vercel, Cloudflare, Supabase or similar services) to run and secure the website and application. These providers may process technical logs and limited personal data as needed to deliver the infrastructure.

6.7 Legal and safety

We may disclose information where we believe it is reasonably necessary to:

- Comply with applicable law, regulation or legal process. - Protect the rights, property or safety of QuickInsight, our users or the public. - Detect, prevent or address fraud, security or technical issues.

We do not authorise third‑party processors to use your personal data for their own marketing purposes.

7. Data retention We retain personal information only for as long as reasonably necessary for the purposes described in this Privacy Policy (including legal, accounting, security and dispute-resolution needs).

Our current retention approach for the MVP is:

- **Checkout/consent records (Terms acceptance, key disclosures)**: up to 6 years (to help address chargebacks, fraud and legal claims). - **Booking metadata (name, email, scheduling details)**: up to 24 months after the session (for support, service quality and dispute resolution), unless a longer period is required by law. - **Payment metadata (transaction IDs, amounts, currency, status, refunds/chargebacks)**: typically 6–10 years (tax/accounting and audit requirements may vary by jurisdiction and provider). - **AI chat content and session text**: typically up to 90 days for debugging, abuse prevention and quality improvement, after which we delete or de-identify it where reasonably possible. - **De-identified patterns / internal case library**: we may retain de-identified, non-attributable patterns and aggregated statistics longer-term to improve the product.

If you request deletion of your personal data (where applicable), we will make reasonable efforts to honour your request, subject to legal retention requirements and legitimate needs such as security and dispute resolution.

8. International data transfers

We are based in Argentina, and many of our third‑party processors (for example, OpenAI, Google, Gumroad, Cal.com) may process data in other countries.

By using our services, you acknowledge that your information may be transferred to and processed in countries outside your country of residence, including places that may have different data protection rules. We take reasonable steps to work with reputable providers and, where applicable and available, to rely on appropriate safeguards (for example, contractual protections) for international transfers.

9. Security

We use reasonable technical and organisational measures to protect your personal information against loss, misuse and unauthorised access, disclosure, alteration or destruction.

As part of our MVP architecture, some internal operational logs may be stored in tools such as Google Sheets. We aim to limit access to those logs, avoid unnecessary personal identifiers, and migrate to a more structured system as the product matures.

However, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security, and you use the services at your own risk.

10. Children QuickInsight is not intended for children. If you are under 18, you may not use the Services. If we learn that we have collected personal information from a child, we will take reasonable steps to delete it.

11. Your rights and choices

Depending on your location and applicable law, you may have certain rights regarding your personal information, including:

- **Access**: to request a copy of the personal data we hold about you. - **Rectification**: to request correction of inaccurate or incomplete data. - **Deletion**: to request deletion of your personal data, subject to legal retention requirements. - **Restriction**: to request restriction of processing in certain circumstances. - **Objection**: to object to certain types of processing based on legitimate interests. - **Portability**: to request a machine‑readable copy of data you have provided to us, where technically feasible.

To exercise any of these rights, you can contact us using the details in section 12. We may need to verify your identity before responding to your request. We aim to respond within 30 days where required by law, and sooner where reasonably possible.

If you are located in the EU/EEA or another jurisdiction with comprehensive data protection laws, you may also have the right to lodge a complaint with your local data protection authority.

12. Contact us

If you have any questions, concerns or requests regarding this Privacy Policy or our handling of your personal data, you can contact us at:

- Email: privacy@quickinsight.co (or another dedicated contact address as listed on our website) - Phone / SMS: (optional; if listed on the website, subject to availability)

We may update these contact details from time to time on our website.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations or practices.

When we do so, we will update the “Last updated” date at the top of this page and, where appropriate, provide additional notice (for example, via the website). Your continued use of the services after any change constitutes your acceptance of the updated Privacy Policy.

← Back to home