Privacy

Privacy notice

This notice describes how personal data is processed in connection with use of the aichat.nortinia.com website and the Nortinia AI Chat product line. It is written based on Regulation (EU) 2016/679 (GDPR).

Last updated: 22 May 2026

Controller

The controller is Nortinia Kft. — the Hungarian subsidiary of the Nortinia Ltd. group. Its GDPR-defined controller responsibility extends to any personal data collected via the aichat.nortinia.com website, the contact form, or product demo sessions. For live chat conversations operated by Nortinia AI Chat on behalf of customers, the customer is the controller and Nortinia Kft. acts as processor.

Controller
Nortinia Kft.
Registered office
1125 Budapest, Városkúti út 17/B.
Registration
01-09-390508
Tax number
22958451-2-43
Privacy contact
[email protected]
Phone
+36 20 492 5378

What we process and why

We only request personal data that is genuinely needed for the stated purpose.

  • Log data (IP, user-agent, request type, timestamp, response code) — safe operation of the site, abuse detection. Legal basis: legitimate interest (GDPR Art. 6(1)(f)). Retention: 90 days.
  • Contact form data (name, email, optional company, message) — replying to your inquiry, preparing a quote. Legal basis: pre-contractual measures (GDPR Art. 6(1)(b)). Retention: 3 years, or as long as the contractual relationship exists.
  • Marketing opt-in (if explicitly selected) — newsletter, product updates. Legal basis: consent (GDPR Art. 6(1)(a)). Retention: until withdrawal.
  • Cookie data — strictly necessary cookies storing language and theme preferences.

Retention

We retain personal data only as long as the purpose justifies.

Log data (IP, UA)
90 days
Contact form
3 years (or until end of contractual relationship)
Marketing opt-in
Until withdrawal
Invoice data
8 years (Hungarian Act on Accounting § 169)
Cookies — strictly necessary
End of session, max 12 months

Processors

For specific tasks we rely on technology partners that act as processors on our behalf and under our instruction.

  • Cloudflare, Inc. (USA) — CDN and WAF; transfer adequacy via the EU-US Data Privacy Framework.
  • Mailgun Technologies, Inc. (USA) — sending contact and quote-confirmation emails.
  • Nortinia Internal Platform (NIP) — our self-managed Kubernetes infrastructure in Hungary.

Your rights

Under GDPR Articles 12-22 you have the following rights regarding your personal data. To exercise any of them — at no cost — email [email protected].

  • Right of access, right to rectification, right to erasure, right to restriction, right to data portability, right to object, right to withdraw consent, right to lodge a complaint with NAIH.

Security

We protect personal data with technical and organisational measures: TLS 1.2+ in transit, AES-256-GCM at rest, role-based access control (RBAC), audit logging, regular access reviews.

Contact

For any privacy question or rights request, reach us at the channels below.

Privacy contact
[email protected]
General email
[email protected]
Phone
+36 20 492 5378
Postal address
Nortinia Kft. — 1125 Budapest, Városkúti út 17/B., Hungary