InfiniteAny
Sign inGet started
← Back to Home

Privacy Policy

Last updated: March 5, 2026

This Privacy Policy explains how BLUE AUTOMATION S.R.L. ("InfiniteAny", "we", "us", "our") collects, uses, discloses, and protects personal information when you visit infiniteany.com and use our AI GTM platform and related services (the "Services").

1. Who We Are & Scope

Data controller (account, website, billing, support): BLUE AUTOMATION S.R.L., a Romanian company. For privacy inquiries: privacy@infiniteany.com.

This Policy covers our website, product dashboards, and your account usage. For data we process on your behalf when you use our AI specialists and generated content, we act as a processor under applicable data protection law.

2. What We Collect

A. Data You Provide (Controller)

  • Account & profile: name, email, company, role, password hash, and auth identifiers (e.g. Google if you use SSO).
  • Billing: payment is processed by Stripe; we do not store full card numbers. We may store billing-related metadata (e.g. subscription status, transaction references).
  • Support & feedback: tickets, chat, emails, and survey responses.
  • Marketing (optional): newsletter preferences, event registrations.

B. Data We Collect Automatically (Controller)

  • Usage & telemetry: page views, clicks, referrer, device/browser, OS, language, coarse region, session IDs.
  • Service metrics: API usage, errors, latency, and aggregate usage for billing and operations.
  • Security logs: auth events, IP addresses, user/role IDs, timestamps, audit trails.

C. Customer Content (Processor)

When you use our Services, we process content you provide or that our AI generates on your behalf: prompts, generated text (articles, landing pages, emails, reports), and related metadata. We process this solely to provide, operate, and support the Services. We may use aggregated or other data that does not include your content or generated outputs (for example, for other agents or service improvement). We do not use your content or generated outputs to train foundation models without your explicit opt-in.

3. How We Use Data

  • Provide and secure the Services (authentication, access control, fraud prevention, availability).
  • Billing and collections (contract; legal obligation).
  • Product operations (debugging, analytics, capacity planning, feature measurement, in aggregated/de-identified form where possible).
  • Service communications (notices, incidents, updates).
  • Marketing (where you have consented or we have a legitimate interest; you can unsubscribe at any time).
  • Compliance and dispute resolution (legal obligation; legitimate interests).

4. Data Sharing & Recipients

We share the minimum necessary with:

  • Authorities where required by law or to protect rights and safety.
  • Corporate transactions (e.g. M&A, reorgs) subject to safeguards.
  • Professional advisors (legal, audit, accounting).
  • Analytics (product analytics on controller data only; no Customer Content).
  • Support tools (ticketing, incident management).
  • Payments: Stripe (PCI-compliant; they are controller for payment data).
  • Infrastructure & subprocessors: hosting, databases, email, AI models, monitoring. Our current subprocessors are listed on our Security page.

AI model providers: To run our AI specialists, we send prompts and context to third-party AI providers (e.g. Anthropic, OpenAI). Their use of data is governed by their respective policies and our agreements with them.

User-connected integrations: When you connect your own tools (e.g. GA4, Search Console, Ahrefs, HubSpot, Stripe, email providers), we access only what is necessary to deliver the Services (e.g. analytics, SEO data, CRM data). Data flows through our systems only to perform the actions you request. We do not use this data for our own marketing or to train models.

5. International Transfers

We and our service providers may process data in countries outside your residence. Where personal data is transferred outside the EEA/UK, we rely on appropriate safeguards (e.g. EU Standard Contractual Clauses, UK Addendum). For details, contact privacy@infiniteany.com.

6. Retention

  • Account & billing: for the life of the account and as required by law (e.g. tax/audit, typically up to 7–10 years).
  • Security & audit logs: typically 12–36 months (longer if needed for security or compliance).
  • Support: 24–36 months.
  • Marketing: until you unsubscribe or request deletion.
  • Customer Content: as long as your account is active and per your settings; we delete per your instructions or after account termination following a reasonable grace period.

7. Your Rights

EEA/UK (GDPR): You may access, correct, delete, restrict, port, or object to processing of your personal data, and withdraw consent at any time (without affecting prior lawfulness). We will respond within one month (extendable by two months for complex requests). You may lodge a complaint with your supervisory authority (e.g. ANSPDCP in Romania).

US State Privacy (e.g. CA, VA, CO, CT, UT): Depending on your state, you may have rights to access, delete, correct, port, and opt out of certain sharing or profiling. We do not sell personal information. To exercise rights, contact privacy@infiniteany.com. We will verify requests and respond within the timeframes required by law.

8. Children

The Services are not directed to individuals under 16. We do not knowingly collect personal data from children. If you believe a child has provided data, contact us and we will delete it.

9. Security

We use technical and organizational measures to protect personal data (encryption in transit and at rest where applicable, access controls, audit logging, secure development practices). No method is 100% secure; please safeguard your credentials. For security incidents, contact security@infiniteany.com. More detail is in our Security page.

10. Cookies & Similar Technologies

We use cookies and similar tech for session security, authentication, preferences, and product analytics (e.g. Google Tag Manager). Where required, we present a cookie banner for non-essential cookies. You can adjust browser settings to manage cookies.

11. Third-Party Links & Services

Our Services may link to third-party sites or depend on third-party APIs. Their privacy practices are governed by their own policies. Review those before providing personal data.

12. Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will notify you (e.g. email, in-app, or website notice) and state the effective date. Your continued use after the effective date constitutes acceptance of the updated Policy.

13. Contact

Privacy: privacy@infiniteany.com
Security incidents: security@infiniteany.com