Privacy Policy

Last updated: March 6, 2025

Titanware SL ("Titanware", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you use our website (titanware.es), our mobile applications, and our services, including AI integration and custom agent development services.

Titanware SL is a company registered in Spain, located in Barcelona. For any questions regarding this policy, you can contact us at jesus@titanware.es.

1. Data Controller

The data controller responsible for your personal data is:

• Company: Titanware SL
• Location: Barcelona, Spain
• Email: jesus@titanware.es

2. Data We Collect

We may collect and process the following categories of personal data:

2.1 Information You Provide

• Contact information: Name, email address, and any message content you submit through our contact form.
• Account information: When you create an account in any of our apps, we may collect your name, email address, and authentication credentials.
• Client data: If you engage our services (app development, AI integration, ASO), we may collect business-related information necessary to provide those services.

2.2 Information Collected Automatically

• Usage data: Information about how you use our website and apps, including pages visited, features used, and interaction patterns.
• Device information: Device type, operating system, browser type, and language preferences.
• Log data: IP address, access times, and referring URLs.

3. Google Ads API Data Usage

Titanware uses an internally-developed campaign management tool that connects to the Google Ads API to manage user acquisition campaigns for our own published applications. Specifically:

• Purpose: We access Google Ads API data solely to manage, optimize, and report on advertising campaigns for apps published by Titanware SL.
• Data accessed: Campaign performance metrics, keyword data, bid information, ad creative content, audience data, and billing information as made available through the Google Ads API.
• Data use: Google Ads API data is used exclusively for the purposes of campaign management, bid optimization, keyword management, performance analysis, and internal reporting. We do not use this data for any other purpose.
• Data sharing: Google Ads data is not sold, rented, or shared with third parties.
• Data retention: We retain Google Ads performance data for as long as necessary for campaign analysis and optimization. Historical data older than 90 days may be aggregated or deleted.
• Compliance: Our use of the Google Ads API complies with the Google Ads API Terms and Conditions and the Google API Services User Data Policy.

4. AI Services Data Usage

Titanware provides AI integration and custom agent development services to its clients. As part of these services, our systems may process data on behalf of our clients. Specifically:

• Purpose: We process client data solely to design, build, and operate AI agents and intelligent automations as authorised by our clients.
• Data accessed: Client-provided data necessary for AI model integration, including business data, documents, and API credentials as required to build and operate custom agents.
• Data use: Client data is used exclusively for the purpose of delivering the agreed AI services. We do not use client data to train models or for any purpose outside the scope of our service agreements.
• Third-party AI providers: Our services may utilise third-party AI model providers (such as OpenAI, Anthropic, Google, or similar). Data shared with these providers is subject to their respective data processing agreements. We select providers that offer enterprise-grade data protection and do not use client data for model training.
• Data retention: We retain AI service-related data for as long as necessary to provide our services and comply with our contractual obligations. Upon termination of services, client data is deleted within 90 days unless retention is required by law.
• Security: AI agent systems are designed with security best practices, including encrypted communications, access controls, and audit logging.

5. How We Use Your Data

We process your personal data for the following purposes:

• To provide and maintain our services, including app development, AI integration, and ASO services.
• To respond to your enquiries and communicate with you.
• To improve our website, apps, and services.
• To comply with legal obligations.
• To protect our legitimate interests, including fraud prevention and security.

6. Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

• Consent: When you submit a contact form or opt into communications.
• Contractual necessity: When processing is necessary to fulfil our service agreements with you.
• Legitimate interest: For analytics, service improvement, and security purposes, provided these interests do not override your rights.
• Legal obligation: When we are required to process data to comply with applicable laws.

7. Cookies

Our website may use cookies and similar tracking technologies to enhance your browsing experience. Cookies are small text files stored on your device.

• Essential cookies: Required for the website to function properly. These cannot be disabled.
• Analytics cookies: Help us understand how visitors interact with our website. These are only placed with your consent.

You can control cookie preferences through your browser settings. Disabling certain cookies may affect website functionality.

8. Data Sharing and Third Parties

We do not sell your personal data. We may share your data with:

• Service providers: Third-party services that help us operate our business (hosting, email delivery, analytics), bound by data processing agreements.
• AI model providers: As described in Section 3, solely for delivering AI services authorised by our clients (e.g., OpenAI, Anthropic, Google Cloud AI).
• Legal requirements: When required by law, regulation, or legal process.

9. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When such transfers occur, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.

10. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes described in this policy, or as required by law. Contact form submissions are retained for up to 24 months. Service-related data is retained for the duration of the service agreement plus any legally required retention period.

11. Your Rights Under GDPR

If you are located in the European Economic Area, you have the following rights regarding your personal data:

• Right of access: You can request a copy of your personal data.
• Right to rectification: You can request correction of inaccurate or incomplete data.
• Right to erasure: You can request deletion of your personal data ("right to be forgotten").
• Right to restrict processing: You can request that we limit how we use your data.
• Right to data portability: You can request your data in a structured, machine-readable format.
• Right to object: You can object to data processing based on legitimate interests.
• Right to withdraw consent: Where processing is based on consent, you can withdraw it at any time.

To exercise any of these rights, please contact us at jesus@titanware.es. We will respond to your request within 30 days.

You also have the right to lodge a complaint with the Spanish Data Protection Agency (Agencia Española de Protección de Datos — AEPD) or any other competent supervisory authority.

12. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, and regular security assessments.

13. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last updated" date. We encourage you to review this policy periodically.

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Email: jesus@titanware.es
• Company: Titanware SL
• Location: Barcelona, Spain