Privacy Policy for Kluk AI
Last Updated: August 1, 2025
1. Introduction
Kluk AI (“Kluk”, “we”, “us”, or “our”) is committed to protecting your privacy and safeguarding your personal data. This Privacy Policy explains in detail how we collect, use, disclose, and protect your personal information when you interact with our services. This includes visits to our website, interactions with our AI-powered widget embedded on client websites, and communications with our team. We encourage you to read this policy carefully. If you have any questions or concerns, you can reach us at hello@kluk.ai.2. Who We Are
Company Name
Kluk AI
Company Number
95584080
Contact Email
hello@kluk.ai
Company Address
Hertog Hendriksingel 24,
5216 BB, 's-Hertogenbosch,
The Netherlands
Data Protection Officer
The founder (pol [@] kluk.ai)
3. What Data We Collect
We may collect and process the following categories of personal data, depending on your relationship with us:
A. Visitors to our Website:
- Name and email address (if submitted through contact or scheduling forms)
- Any messages or information shared via forms or chat
B. End Users on Client Websites (via Kluk AI widget):
- Input provided via chat, scheduling, or client-specific forms (e.g. quote request forms, …)
- This may include: name, email, phone number, address, meeting notes, and any other client-specific information (e.g. energy consumption data, …)
C. Kluk Clients(Businesses Using Our Service):
- Company name and contact details
- Admin users's email addresses
- Team member details (names, emails) for scheduling integration with Cal.com
We do not collect or use sensitive personal data unless explicitly provided and necessary for a clear, disclosed purpose.
4. How We Collect Data
We collect data in the following ways:
- Directly from users via the widget, forms, or scheduling tools
- Automatically when users interact with the widget (e.g., logs of inputs, timestamps)
- Through third-party integrations, such as Cal.com for meeting scheduling
We currently do not use cookies or browser fingerprinting for analytics or tracking purposes.
5. Why We Collect Data (Purpose & Legal Basis)
We process your personal data for the purposes and legal bases set out below:
Purposes and legal bases for Kluk's processing of personal data| Purpose | Legal Basis (GDPR) |
|---|
| Scheduling meetings | Contractual necessity |
| Contacting leads and responding to inquiries | Consent |
| Providing insights via client dashboard | Legitimate interest |
| Improving performance of Kluk AI | Legitimate interest |
| Processing chat content using OpenAI | Legitimate interest / Consent |
Where consent is our legal basis, we consider user submission of data via forms or chat to constitute implied consent. Users can withdraw consent at any time by contacting us at hello@kluk.ai.
6. Data Sharing & Sub-Processors
We only share your data with trusted service providers necessary to deliver our services. These include:
Sub-processors and their purposes for Kluk AI| Vendor | Purpose | Location |
|---|
| OpenAI | Chat processing & data extraction | United States |
| NeonDB | Data storage | EU or US (client-based) |
| Vercel | Hosting Kluk AI widget | EU or US (client-based) |
| Cal.com | Embedded meeting scheduling | United States |
We do not sell or rent any personal data. When data is collected via the Kluk AI widget, it is shared only with the website owner (our client) and no third parties.
7. International Data Transfers
Some data may be transferred outside of the European Economic Area (EEA), notably to the United States:
- OpenAI, based in the US, processes data entered into the Kluk widget as part of AI functionality.
- These transfers are governed by Standard Contractual Clauses (SCCs)included in OpenAI's Data Processing Addendum, which Kluk has executed.
- While OpenAI is not currently certified under the EU–US Data Privacy Framework (DPF), Kluk assesses transfer risks under Schrems II and limits personally identifiable information where feasible.
8. Data Security
We implement a combination of technical and organizational measures to secure your data:
- Data encryption (at rest and in transit) provided by NeonDB
- Secure cloud infrastructure via Vercel
- Access controls and audit logs to restrict and monitor internal access
Despite these precautions, no method of transmission over the internet is 100% secure. Users should avoid entering sensitive personal data unless necessary.
9. Data Retention
Unless otherwise required by law or contractual obligation:
- We retain submitted data indefinitely to support client insights and service improvement.
- Individuals may request deletion of their data at any time viahello@kluk.ai.
10. Your Rights
Depending on your jurisdiction (e.g., EU, California), you may have the following rights:
- Access the personal data we hold about you
- Request correction or deletion of inaccurate or outdated information
- Withdraw consent previously given
- Object to processing under legitimate interest
- Request a copy of your data in a portable format
To exercise your rights, email us at hello@kluk.ai. We aim to respond within 30 days.
11. Children's Privacy
Kluk AI is not intended for use by individuals under the age of 16. We do not knowingly collect data from minors. If you believe a child has provided us with personal data, please contact us so we can delete it.
12. Changes to This Policy
We may update this Privacy Policy to reflect changes in legal, technical, or business developments.
- For material updates, we will provide prominent notice on our website or notify users via email where applicable.
- You are encouraged to review this page periodically for the latest version.
13. Contact Us
If you have any questions, concerns, or requests about this policy or how we process your data, contact us at hello@kluk.ai.