Privacy Policy

Last Updated: 1/11/2026

1. Introduction
CZAR AI (“CZAR AI”, “we”, “our”, or “us”) is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you access or use our services, in compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.

2. Company Information
Business Name: CZAR AI
Address: Rua Jorge da Cunha e Carmo, Lote 34, 3D, Lisbon, Portugal
Website: https://czar-ai.com
Email: [email protected]
Jurisdiction: Portugal (European Union)
Scope of Operation: Global

3. Information We Collect
We may collect the following categories of data:

Personal identifiers: name, email address, phone number

User-provided content: data submitted to configure or operate AI agents

Usage data: interactions with AI agents

Technical data: IP address, device type, browser, logs

Cookies and basic analytics data

4. Purpose of Data Processing
We process personal data for the following purposes:

Providing and operating AI agent services

Enabling AI voice automation and related functionalities

Customer support and communication

Security, fraud prevention, and abuse detection

Legal and regulatory compliance

5. AI-Specific Data Handling
CZAR AI primarily provides AI Voice Agents and may expand to other AI agents in the future.

Personal data is not used to train general-purpose AI models

Data used for service improvement is anonymised where applicable

AI outputs are generated automatically based on user inputs and configurations

Our services do not perform automated decision-making with legal or similarly significant effects

6. Legal Basis for Processing
We process personal data based on one or more of the following legal bases:

Performance of a contract

Legitimate business interests

Legal obligations

User consent, where required

7. Data Retention
We retain personal data for as long as necessary to provide our services or until a valid deletion request is received, unless a longer retention period is required by law.

8. Data Sharing and Third Parties
We do not sell personal data. Data may be shared only with trusted service providers, including:

Hosting provider: Namecheap

Where data is transferred internationally, appropriate GDPR-compliant safeguards are applied.

9. Security Measures
We implement appropriate technical and organisational measures to protect personal data, including encryption, access controls, and secure infrastructure practices.

10. Your Rights
Depending on your jurisdiction, you have the right to:

Access your personal data

Request correction or rectification

Request deletion

Restrict or object to processing

Request data portability

Requests can be made by contacting [email protected].

11. Cookies
We use essential and analytical cookies. You may manage or disable cookies through your browser settings.

12. Contact Information
For privacy-related questions or requests, contact:
[email protected]