Privacy
Privacy Policy.
This policy explains how SustematiQ processes website inquiries, cookie preferences, optional analytics data, and early SustematiQ Vector-related data.
Legal review required: this text is an implementation-ready draft and should be reviewed by Polish legal counsel for GDPR/RODO compliance before public launch.
1. Controller
The controller of personal data processed through this website is SustematiQ. Full legal company details should be added here after incorporation. For privacy-related questions, contact: dpo@sustematiq.com.
2. Scope of this policy
This Privacy Policy covers the SustematiQ public website, contact forms, guided inquiry forms, cookie preferences, analytics configuration, and early information about SustematiQ Vector. It should be reviewed by legal counsel before public launch.
3. Contact and inquiry data
When you use the contact form or guided inquiry, we may process your name, email address, organization, inquiry type, timeline, message, and your consent to be contacted. This data is used to respond to your inquiry and manage possible cooperation.
4. Consent to be contacted
By submitting a form, you confirm that SustematiQ may process the information you provide in order to respond to your inquiry and contact you about the matter you described. This is not consent to receive unrelated marketing communications.
5. Website analytics
SustematiQ uses Google Analytics only if you accept optional analytics cookies. Analytics is disabled by default through consent mode. If you reject analytics, only necessary preference storage remains active.
6. Necessary cookies
Necessary cookies and local storage are used to remember your cookie preference and support proper functioning of the website. These are not used for advertising or optional analytics.
7. SustematiQ Vector data
SustematiQ Vector is intended to support stakeholder workshops, ecosystem mapping, research impact intelligence, and post-workshop analysis. Depending on the project, Vector may process participant input, workshop responses, stakeholder categories, survey responses, notes, coded claims, validation status, reports, and dashboard data. Project-specific notices, consent forms, access rules, and data processing arrangements should be provided before Vector is used in a live client or research setting.
8. AI-assisted analysis
SustematiQ may use AI-assisted methods to support claim extraction, clustering, summarization, and report drafting. Final research-grade outputs should require human validation. Raw data, AI-assisted outputs, validated data, and final analytics should be stored separately where feasible.
9. Legal bases
The legal basis for responding to inquiries may include taking steps before entering into a contract, legitimate interest in responding to professional inquiries, or consent where applicable. Optional analytics is based on consent.
10. Data recipients and processors
SustematiQ may use service providers for hosting, analytics, email, form handling, database storage, security, and product infrastructure. Where required, these providers should be covered by data processing agreements.
11. International transfers
Some service providers may process data outside the European Economic Area. Before public production deployment, appropriate safeguards and provider documentation should be reviewed.
12. Retention
Contact inquiry data should be kept only as long as necessary to respond and manage the relationship, unless longer retention is required by law or legitimate business needs. Vector project data should be governed by project-specific retention rules.
13. Your rights
Subject to applicable law, you may have rights to access, rectify, erase, restrict, object to processing, request portability, and withdraw consent where processing is based on consent.
14. Contact for data protection
For privacy, GDPR, or RODO-related questions, contact: dpo@sustematiq.com.
See also: Cookie Policy and Terms of Use.