Konsa, Inc. Website Privacy Notice

Effective date: October 6, 2025

This privacy notice explains how Konsa, Inc. ("Konsa", "we", "us") collects, uses and shares personal data when you visit or interact with our website at konsa.io and its subdomains (the "Site").

By using the Site, you agree to this privacy notice. If you do not agree, please stop using the Site.

1. Who we are

Konsa, Inc. is a Delaware corporation with its principal place of business in San Diego, California, USA. We provide AI solutions focused on healthcare, finance, engineering, and education.

We operate the Site and act as the "controller" for personal data we collect through it. You can contact us at: info@konsa.io.

2. Scope of this privacy notice

This privacy notice covers:

  • Visitors to the Site
  • People who contact us through web forms or email
  • People who sign up for updates, marketing or events

It does not cover:

  • Data processed when we provide our products or services under a contract with a customer (e.g., data ingested by our AI models).
  • Data processed by third-party sites or services that link to or from the Site.

Those activities may be governed by separate agreements or notices.

3. Personal data we collect

3.1 Data you provide directly

You may give us personal data when you:

  • Fill out the "Get in Touch" form (for example: name, email, company, message)
  • Ask for a demo or proposal
  • Subscribe to newsletters or updates
  • Apply for a role or contact us about careers (through the "Join Our Team" section or linked application tools)
  • Contact us by email or other channels

This data can include:

  • Identification and contact details: Name, email address, company, job title, phone number.
  • Business information: Company name, sector, and use case details.
  • Content of your communications: Messages, questions, feedback, and any other information you decide to include in free-text fields.
Note: Please avoid sending more personal data than needed to handle your request. In particular, avoid including sensitive data (for example health details about identifiable individuals) in contact forms or emails unless we explicitly ask for it and you have the right to share it.

3.2 Data we collect automatically

When you visit or use the Site, we automatically collect certain information, mainly through cookies and similar technologies:

  • Technical data: IP address, browser type and version, device type, operating system settings, language, and screen resolution.
  • Usage data: Pages visited, time spent on each page, clicks, scrolls, navigation patterns, and referring URL.
  • Approximate location: Country or city inferred from your IP address.

We use tools such as Google Analytics and other similar analytics software, as well as spam filtering services to collect some of this information.

3.3 Data from other sources

We may receive data about you from:

  • Business partners, event organizers, or referrers.
  • Publicly available sources (for example LinkedIn profiles for B2B outreach).
  • Job platforms or recruitment partners, if you apply for a role through them.

4. How we use your personal data

We use your personal data for these purposes:

  • Operating and improving the Site: To provide, maintain and update the Site; monitor performance; run analytics to improve content.
  • Responding to you: To respond to contact forms, emails, schedule demos, and manage prospective customer relationships.
  • Marketing and communication: To send updates about Konsa (events, product news) when permitted by law, and to track email performance.
  • Recruitment: To process job applications and communicate with candidates.
  • Security and spam protection: To protect the Site against fraud, abuse, and attacks (including spam filtering).
  • Legal and compliance: To comply with legal obligations, enforce our terms, and protect our rights.

5. Legal bases (EEA / UK visitors)

If you are in the European Economic Area or the United Kingdom, we rely on these legal bases under the GDPR / UK GDPR:

  • Legitimate interests: Operating and protecting the Site, running analytics, and handling B2B sales/relationships.
  • Consent: For non-essential cookies and certain marketing communications where consent is required.
  • Contract: Communicating with you when you ask us to take steps before entering into a contract (e.g., a demo request).
  • Legal obligations: Record-keeping and responding to lawful requests.

6. Cookies and similar technologies

We use cookies and similar technologies to remember your settings, understand site usage, and protect against spam.

Types of cookies:

  • Strictly necessary: Needed for basic site operation and security.
  • Analytics: Help us understand traffic patterns (including Google Analytics).
  • Functional: Remember choices you make.

You can control cookies through your browser settings, and in some regions through a cookie banner on the Site. Blocking certain cookies may affect how the Site works.

7. How we share personal data

We do not sell your personal data. We share personal data with:

  • Service providers (processors): Hosting/cloud infrastructure, analytics providers (including Google Analytics), email platforms, spam-filtering tools, and HR tools. We require them to handle data only according to our instructions.
  • Business partners: For example, when we co-host a webinar and you register for it.
  • Professional advisers: Lawyers, accountants, and auditors.
  • Authorities and legal parties: When required by law or to protect the rights and safety of Konsa or others.
  • Corporate transactions: In the event of a merger, acquisition, financing, or asset sale.

8. International transfers

Konsa is a Delaware corporation based in the United States. If you access the Site from outside the US, your personal data will be transferred to, stored, and processed in the United States. When required by law, we use safeguards such as Standard Contractual Clauses (SCCs) approved by regulators.

9. Data security

We use technical and organizational measures to protect personal data (e.g., HTTPS encryption, access controls). However, no system is perfectly secure; you are responsible for keeping your devices secure.

10. Data retention

We keep personal data only as long as needed for the purposes described here.

  • Contact/Business data: Kept while we have an active relationship and for 36 months afterward for business record-keeping.
  • Marketing data: Kept while you stay subscribed.
  • Candidate data: Kept for the recruitment process and for 12 months afterward for future opportunities (if permitted).

11. Your rights

You can exercise your rights by contacting us at info@konsa.io.

11.1 General Rights

Access, correction, objection, deletion, withdrawal of consent, and lodging a complaint with a data protection authority.

11.2 EEA / UK Specific Rights

Rights under GDPR including access, rectification, erasure ("right to be forgotten"), restriction, portability, and objection to processing based on legitimate interests.

11.3 California (CCPA / CPRA) Rights

If you are a California resident:

  • Right to know: Categories and specific pieces of data collected.
  • Right to delete: Subject to legal exceptions.
  • Right to correct: Inaccurate personal information.
  • Right to opt-out: We do not sell personal information or share it for cross-context behavioral advertising.
  • Non-discrimination: You will not be treated differently for exercising these rights.

12. Children

The Site is aimed at business users. We do not knowingly collect personal data from children under 16.

13. Links to other sites

The Site may contain links to third-party websites. We are not responsible for their privacy practices.

14. Changes to this privacy notice

We will post updated versions on this page and change the "Effective date." Continued use of the Site implies acceptance.

15. Contact us

If you have questions, requests or complaints:

© 2025 KONSA. All rights reserved.