Privacy Policy
Version 001 - 001/2025
Neurana was created to transform how companies and systems connect. Our platform uses Artificial Intelligence to simplify and automate integrations, allowing users to interact through intuitive commands. By connecting different services and optimizing processes, we provide a more efficient, intelligent, and adaptable experience for everyday needs.
To ensure this technology operates safely, it's essential to establish clear guidelines for data processing. As part of this commitment, this Privacy Policy has been developed to objectively explain how Neurana handles user information, ensuring a reliable experience aligned with the best privacy and data protection practices.
1. What is the purpose of this Privacy Policy?
Neurana developed this Privacy Policy to explain how we collect, use, store, and protect personal data of users who utilize our services.
Our commitment is to ensure users understand what data is collected, why it's necessary, and how it's used to provide AI-driven integration services.
Additionally, this Policy establishes the rights of data subjects and provides guidance on how to exercise them, in accordance with applicable data protection regulations. By using Neurana's platform, users acknowledge awareness of the practices described herein.
2. Who does this Policy apply to?
This Privacy Policy applies to all individuals who interact with Neurana, including:
- Users who access and utilize the platform to perform integrations
- Third parties whose data may be processed as a result of integrations performed by users
- Suppliers who provide essential services for platform operation
- Partners who collaborate in improving and expanding the solutions offered
3. Key Terms and Definitions
Personal Data
Any information that allows identification of an individual, directly or indirectly, including name, email, phone number, IP address, and login credentials used for system and platform configurations.
Sensitive Data
Personal information requiring greater protection, such as racial or ethnic origin, religious beliefs, political opinions, union membership, health-related data, sexual life, as well as genetic or biometric data.
Data Subject
The natural person to whom personal data refers, including platform users, third parties impacted by integrations, or representatives of suppliers and partners.
Data Processing
Any operation performed with personal data, including collection, production, reception, classification, use, access, reproduction, transmission, distribution, processing, archiving, storage, elimination, evaluation, or control of information.
Data Controller
Neurana acts as the controller, responsible for defining the purposes and means of personal data processing necessary for platform operation.
Data Processor
Third parties contracted by Neurana to perform activities involving personal data processing on behalf of the company, such as technology infrastructure providers and payment processors.
4. Whose data do we process?
Neurana processes personal data from different categories of individuals based on their interaction with the platform:
- Users: People who access the platform to perform system integrations and configure connections through commands and AI interactions
- Third Parties: Individuals whose data may be entered into the platform by users when configuring integrations or connecting external services
- Visitors: People who access Neurana's websites or applications without creating an account but interact with the platform in some way
- Suppliers: Commercial representatives of companies providing services to Neurana, such as technology infrastructure and technical support
- Partners: Organizations or individuals who collaborate commercially with Neurana in developing and expanding solutions
5. When do we collect data?
Registration
When users create a Neurana account, we collect necessary information for identification and authentication, including name, email, phone, and login credentials. If access is through third-party services like Google or GitHub, we receive data shared by those platforms.
Service Usage
When interacting with AI and configuring integrations, users input commands, prompts, and files. This content is collected to enable platform functionality and improve machine learning technologies.
Payments
When users purchase paid services, payment data is collected and processed by third-party platforms like Stripe, including name, email, phone, address, and tax identification.
Navigation
During navigation on our websites and applications, we automatically collect technical information such as IP address, browser type, device configuration, and platform interactions using cookies and similar technologies.
Communication
When users contact support channels or interact with promotional campaigns, we may collect additional information to provide responses and continuous service improvement.
6. What data may be collected?
| Category | Data Collected |
|---|---|
| Registration | Name, email, phone, login credentials including password or authentication via Google or GitHub |
| Payment | Data processed by third-party services including name, email, phone, address, tax ID, payment data (card number, expiration date, security code) |
| Interaction | Prompts and commands provided to guide AI, uploaded files (documents, images, audio), information contained in system integrations |
| Credentials | User-provided credentials for external service configuration and integration, treated exclusively to enable requested connections |
| Navigation | Automatically collected: IP address, browser settings, date/time/duration of navigation and platform interaction |
7. Legal basis for data processing
Contract execution
Applied when data processing is essential for contracted services including account creation and management, integration configuration and operation, payment processing, and user support.
Legitimate interest
Allows data processing when there's a legitimate need that doesn't override data subjects' rights, including user experience improvement, AI enhancement, institutional communications, and fraud prevention.
User consent
Explicit consent is requested for specific situations such as cookie usage and additional information sharing beyond service requirements. Consent can be revoked at any time.
8. Why do we process your data?
- Platform provision and maintenance: account creation/management, user authentication, payment processing, and integration execution
- Service improvement and development: enhancing integration quality, AI optimization, and feature enhancement
- User communication: updates, platform changes, and technical support notifications
- Security and fraud prevention: monitoring suspicious activities and protecting against unauthorized access
- Legal and regulatory compliance: meeting fiscal, regulatory, and authority requirements
- Anonymized data analysis: research, statistics, and continuous platform improvement
9. Data retention
Personal data is stored for the period necessary to fulfill collection purposes, respecting contractual relationships and legal requirements:
- During platform use: Data is maintained while users have active accounts and use Neurana services
- After account closure: Some data may be retained to fulfill legal, regulatory, and contractual obligations
- Legal requirements: Data stored for minimum periods determined by applicable legislation
- Anonymized data: Information may be de-identified for analysis and platform improvement without user association
10. Use of Cookies
Cookies are small files stored in your browser or device, allowing the platform to recognize preferences and optimize navigation. You have full control over cookie usage through browser settings.
| Cookie Type | Purpose |
|---|---|
| Essential/Necessary | Enable navigation and use of all functionalities, essential for proper page loading |
| Performance | Provide better understanding of page interaction, information about visited areas, time spent, and error reporting |
| Functional | Remember user choices for personalized experience, access to posts, social tools, and form fields |
| Session | Stored only during browser use, permanently lost when browser is closed |
| Third-party | Used for integration with external services like OpenAI, Auth0, and RailwayApp |
11. Data storage
Data collected by Neurana is stored in secure and controlled environments, ensuring information integrity, confidentiality, and availability. We use cloud-based storage infrastructure offering scalability, high availability, and protection against unauthorized access.
Only authorized employees and third parties can access specific information, following the principle of least privilege. We apply practices such as two-factor authentication, periodic audits, and activity logging to identify and mitigate security risks.
12. Data sharing
Data sharing by Neurana occurs only when necessary for platform operation and service execution:
- Service providers: Companies responsible for technology infrastructure, cloud storage, payment processing, and technical support
- Integration platforms: To enable system connections through APIs, Webhooks, and native platform triggers
- Commercial partners: Organizations collaborating in developing new features and service improvements
- Legal compliance: Sharing with competent authorities when necessary to meet legal, regulatory, or security requirements
13. Your rights
Neurana respects and guarantees the exercise of data subject rights in accordance with applicable data protection regulations:
- Confirmation: Request confirmation about the existence of personal data processing
- Access: Access your personal data and understand how it's used
- Correction: Request correction of incorrect or outdated information
- Anonymization, blocking, or deletion: Request anonymization, blocking, or elimination of unnecessary or non-compliant data
- Portability: Request data transfer when technically feasible
- Information about sharing: Know which entities received your data
- Processing restriction: Opt not to provide consent and be informed of consequences
- Consent revocation: Revoke consent at any time when processing is based on consent
14. Our responsibility
Neurana is the company responsible for processing your personal data. To ensure protection and compliance with data protection regulations, we have a Data Protection Officer (DPO) who serves as the contact point for privacy and data protection matters.
For clarifications, to exercise your rights, or if you have questions about data processing, contact our Data Protection Officer. We're available to help you!
15. Contact us
If you have any questions or requests regarding this Privacy Policy, please contact us at contato@neurana.com.