Privacy Policy

Your privacy is important to us. Learn how we collect, use, and protect your data.

Last Updated: November 5, 2025

Introduction

Welcome to Kantos ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered CRM platform.

Information We Collect

Information You Provide

Account information (name, email address, company details)
Billing information (processed securely through Stripe)
Customer data you upload to the CRM (leads, contacts, messages)
Communication preferences and settings

Automatically Collected Information

Usage data (features used, time spent, interactions)
Device information (browser type, IP address, operating system)
Cookies and similar tracking technologies
Log data (access times, pages viewed, errors)

How We Use Your Information

We use your information to:

Provide, maintain, and improve our CRM services
Process transactions and send transactional emails
Send service updates, security alerts, and administrative messages
Provide customer support and respond to inquiries
Analyze usage patterns to improve our platform
Detect and prevent fraud, abuse, and security incidents
Comply with legal obligations and enforce our terms

Email Communications

Transactional Emails

We send transactional emails necessary for the operation of our service, including:

Account verification and password resets
Billing notifications and receipts
Trial expiration reminders
Important service updates and security alerts
CRM-related notifications (new leads, automated workflows)

Marketing Emails

With your explicit consent, we may send marketing emails about new features, product updates, and educational content.

You can opt out of marketing emails at any time by clicking the "Unsubscribe" link or by managing your preferences in your account settings.

Data Sharing and Disclosure

We share your information only in the following circumstances:

Service Providers

Supabase

Database and authentication services

OpenAI

AI-powered features and chatbot functionality

Stripe

Payment processing

SendGrid

Email delivery services

Vercel

Hosting infrastructure

Legal Requirements

We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

Data Security

We implement industry-standard security measures to protect your information:

Encryption in transit (TLS/SSL) and at rest
Row-level security (RLS) policies in our database
Multi-tenant data isolation
Regular security audits and monitoring
Role-based access controls
Secure API key management

Data Retention

We retain your information for as long as your account is active or as needed to provide services. When you close your account, we will delete or anonymize your data within 90 days, except where we are required to retain it for legal, tax, or regulatory purposes.

Your Rights and Choices

You have the right to:

Access

Request a copy of your personal information

Correct

Update inaccurate or incomplete information

Delete

Request deletion of your account and data

Export

Download your data in a portable format

Opt-out

Unsubscribe from marketing communications

Object

Object to processing of your information

To exercise these rights, please contact us at privacy@kantos.ai or through your account settings.

Cookies and Tracking

We use cookies and similar technologies to:

Remember your preferences and settings
Authenticate your account sessions
Analyze site traffic and usage patterns
Improve our services and user experience

You can control cookies through your browser settings. Note that disabling cookies may affect the functionality of our platform.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable laws.

Children's Privacy

Kantos is not intended for use by children under 16 years of age. We do not knowingly collect personal information from children. If we learn that we have collected information from a child under 16, we will delete it promptly.

GDPR & CCPA Compliance

For users in the European Union and California, we comply with GDPR and CCPA requirements. You have additional rights under these regulations, including:

Right to data portability
Right to be forgotten
Right to restrict processing
Right to object to automated decision-making
Right to know what data is collected and sold

To exercise these rights, please contact us at privacy@kantos.ai.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@kantos.ai

Support: support@kantos.ai

Address:
Waldemar Thranes Gate 3
0172 Oslo, Norway