Privacy Policy

Dialoqra is operated by KS Creating CommV, registered in Belgium. Contact email: support@dialoqra.com. For account registration, authentication, website operation, billing, platform security, abuse prevention, support, diagnostics, and service administration, KS Creating CommV acts as the operator of the service and, where applicable, the controller of personal data processed for those purposes.

Operator identification for this policy: KS Creating CommV, registered in Belgium, enterprise/VAT number BE 0802.256.712, contact email support@dialoqra.com. Because Dialoqra may be offered internationally, mandatory privacy rights and disclosures can vary by jurisdiction, but this policy describes the default way personal data is handled across the hosted service.

We may collect account and identity data such as name, email address, avatar, provider account identifiers, sign-in metadata, invitation history, workspace membership, role assignments, billing contact details, tax identifiers, invoice metadata, and profile information returned by identity providers such as Google or Apple.

We may also process workspace and technical data such as dialogue graphs, notes, uploads, comments, audit records, timestamps, IP address, browser and device information, session identifiers, cookie data, security events, anti-abuse markers, logs, diagnostics, usage signals, subscription activity, payment status metadata, refund or dispute metadata, and support information you send to us.

We collect personal data directly from you when you sign up, sign in, edit your profile, manage billing, invite collaborators, contact support, or otherwise use the service. We also collect data automatically from your browser, device, cookies, session activity, and security tooling when you interact with the website or hosted application.

Some personal data may come from third parties rather than directly from you, including identity providers, collaborators who invite you to a workspace, organizations that assign you a role, payment processors, anti-fraud services, analytics or monitoring tools, and service providers that help us operate the platform. Where law requires it, we provide additional notice about personal data obtained from those other sources.

We use personal data to provide Dialoqra, authenticate users, operate collaborative workspaces, process invitations, administer accounts, manage subscriptions, calculate or verify billing identity details, deliver support, secure the service, investigate incidents, prevent fraud or abuse, comply with law, enforce our agreements, issue invoices or credit notes, and improve reliability, performance, and product quality.

Depending on the context, we rely on contractual necessity, our legitimate interests in operating and protecting the service, compliance with legal obligations, and consent where consent is specifically required. Our legitimate interests may include service security, abuse prevention, infrastructure planning, internal reporting, troubleshooting, limited service analytics, enforcement of contractual restrictions, and defense of legal claims.

Some personal data is required for us to create or maintain an account, complete authentication, provide paid features, issue invoices, process taxes, investigate incidents, or comply with law. If you do not provide data that is necessary for those purposes, we may be unable to complete the registration, process a payment, keep the account active, or provide the relevant feature or support request.

Workspace content may include personal data that you or your organization choose to upload, structure, annotate, or share. In those cases, you or the organization that decides what personal data is uploaded, why it is uploaded, who can access it, and how long it should remain available may act as a controller or independent controller for that customer content, while Dialoqra acts as a processor or service provider where applicable in providing the hosted platform.

Regardless of role allocation, you are responsible for ensuring that you have a valid legal basis and any necessary notices, permissions, or approvals for personal data that you upload or share through Dialoqra. KS Creating CommV remains an independent controller for account management, billing, support, security, abuse prevention, service analytics, and compliance-related processing performed for operating Dialoqra itself.

Where customer-controlled personal data is processed through Dialoqra and Dialoqra acts as a processor for that content, the published Data Processing Addendum forms part of the legal framework for that processing unless a separate written agreement states otherwise.

Dialoqra uses cookies and related state technologies to keep users signed in, preserve security context, support navigation, prevent forgery, remember short-lived onboarding or registration state, and complete authentication flows with third-party identity providers. Some of these technologies are strictly necessary for the service to function.

We may also use temporary technical markers for anti-bot, anti-fraud, incident response, rate limiting, and abuse prevention. If optional analytics, preference, or marketing technologies are introduced later, we may ask for consent where the law requires it before enabling those non-essential technologies.

We may share personal data with service providers and subprocessors that help us operate Dialoqra, such as hosting and cloud providers, authentication providers, payment processors, email or notification systems, analytics or monitoring vendors, security tools, support systems, legal advisers, auditors, or professional consultants, but only where reasonably necessary for the operation, support, protection, or lawful administration of the service.

Because Dialoqra may use providers and infrastructure in different countries, personal data may be processed or transferred internationally where necessary to run the service. Where applicable law requires safeguards for those transfers, we aim to use mechanisms such as adequacy decisions, contractual safeguards, and supporting technical or organizational measures designed to support lawful cross-border processing. You may contact us to request information about the safeguards that apply to a relevant transfer where the law gives you that right.

If you buy or administer a paid plan, we may process billing names, company details, country and address information, VAT or tax identifiers, payment processor customer identifiers, subscription identifiers, invoice metadata, payment status information, refund records, and charge-dispute or anti-fraud signals. We use that information to create or update subscriptions, calculate taxes, issue invoices or receipts, verify billing identity, respond to payment failures, prevent abuse, and defend or resolve billing disputes.

Payment card details and comparable payment credentials are generally handled by the relevant payment processor rather than being stored directly in Dialoqra. We may still receive limited billing metadata from that processor, such as customer IDs, subscription IDs, invoice status, payment status, tax outcomes, and refund events, so that we can administer the service and maintain accurate organization billing records.

We retain personal data for as long as reasonably necessary to provide the service, maintain active accounts and workspaces, administer subscriptions, enforce our agreements, investigate misuse, resolve disputes, meet legal obligations, preserve essential security or audit records, and support resilience or migration of the platform. We determine retention periods by reference to the category of data, the purpose of the processing, legal or tax obligations, backup rotation, and the need to preserve evidence relating to security incidents, fraud, or contract disputes.

In practice, account and workspace data may remain available while an account or workspace is active and for a limited follow-up period after closure or deletion, billing and invoice records may be retained for the period required by tax, accounting, and commercial-record obligations, and security logs or abuse-related records may be retained for as long as reasonably needed to detect, investigate, and remediate misuse or incidents.

If content is deleted, an account is closed, access is terminated, or the service is shut down, some information may remain temporarily in backups, logs, replicated systems, legal holds, or residual operational records. Backup systems exist for resilience and operational continuity, not as a promise that every version of every item will remain recoverable. We may also determine that accounts, workspaces, or stored data are inactive, dormant, abandoned, or unmaintained under criteria chosen by us from time to time, and we may archive, anonymize, or permanently delete them in accordance with our operational retention policies. We may permanently delete personal data and workspace content when retention is no longer necessary or when we retire, migrate, or discontinue part or all of the service, subject only to non-waivable legal obligations.

We apply commercially reasonable technical and organizational measures designed to reduce the risk of unauthorized access, misuse, alteration, accidental loss, or unlawful disclosure of personal data processed through Dialoqra. These measures may include transport security, access restrictions, role-based controls, session management, logging, environment controls, and anti-abuse protections around registration, billing, and authentication.

No internet-connected system can guarantee absolute security or honestly promise that compromise is impossible. If we become aware of a personal data breach or other material security incident affecting Dialoqra, we may investigate, mitigate, restore, preserve evidence, and notify supervisory authorities, customers, or affected individuals where and when applicable law requires.

Depending on your location and the circumstances of the processing, you may have rights to request access, rectification, erasure, restriction, objection, portability, or withdrawal of consent where consent is the legal basis. You may also have rights to ask for information about recipients, sources of data that were not obtained directly from you, or safeguards used for international transfers where applicable law grants those rights. Some rights may be limited where honoring the request would adversely affect the rights of others, conflict with law, compromise security, or prevent us from enforcing our agreements or maintaining the service safely.

You may also have the right to lodge a complaint with the competent supervisory authority in your jurisdiction. For matters connected with an operator established in Belgium, that may include the Belgian Data Protection Authority, without prejudice to your right to contact another competent authority where the law allows it.

We may update this Privacy Policy from time to time to reflect changes in Dialoqra, its infrastructure, legal requirements, payment flows, risk posture, or data practices. If material changes are made, we may provide notice through the website, within the product, by email, or through another reasonable communication method.

Unless a more specific privacy contact is published by us in the product or on the website, privacy and legal requests should be sent to support@dialoqra.com. Operator identification for this policy: KS Creating CommV, registered in Belgium, enterprise/VAT number BE 0802.256.712, contact email support@dialoqra.com.