Privacy Policy
Last updated: December 2025
At SenderoX, we are committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, and safeguard your information in compliance with the General Data Protection Regulation (GDPR) and Irish data protection laws.
1. Data Controller
SenderoX is the data controller responsible for your personal data. If you have any questions about this policy or our data practices, please contact us:
Email: info@senderox.com
Location: Ireland
2. Information We Collect
Information you provide directly:
- Chat conversations: Messages you exchange with our AI assistant Santiago, including travel preferences, dates, and route choices
- Email address: When you purchase a premium report or contact us
- Payment information: Processed securely by our payment provider (we do not store card details)
- Contact form submissions: Name, email, and message content
Information collected automatically:
- Usage data: Pages visited, time spent on site, features used
- Device information: Browser type, operating system, device type
- IP address: For security and approximate location purposes
- Cookies: See our Cookie Policy section below
3. How We Use Your Information
We use your personal data for the following purposes:
| Purpose | Legal Basis (GDPR) |
|---|---|
| Provide personalized itinerary recommendations | Contract performance |
| Deliver purchased premium reports | Contract performance |
| Respond to your inquiries | Legitimate interest |
| Improve our AI assistant and services | Legitimate interest |
| Send service-related communications | Contract performance |
| Prevent fraud and ensure security | Legitimate interest |
| Comply with legal obligations | Legal obligation |
4. Data Sharing
We do not sell your personal data. We may share your information with:
- Payment processors: To process secure transactions (e.g., Stripe)
- Email service providers: To deliver your reports and communications
- Hosting providers: To operate our website securely
- Analytics services: To understand how our service is used (anonymized data)
All third-party providers are required to protect your data and only process it according to our instructions.
5. Data Retention
We retain your personal data only for as long as necessary:
- Chat conversations: 12 months, then anonymized for service improvement
- Purchase records: 7 years for tax and legal compliance
- Contact inquiries: 2 years or until resolved
- Account data: Until you request deletion
6. Your Rights (GDPR)
Under the GDPR, you have the following rights:
- Right to access: Request a copy of your personal data
- Right to rectification: Correct inaccurate or incomplete data
- Right to erasure: Request deletion of your data ("right to be forgotten")
- Right to restrict processing: Limit how we use your data
- Right to data portability: Receive your data in a portable format
- Right to object: Object to processing based on legitimate interests
- Right to withdraw consent: Where processing is based on consent
To exercise any of these rights, please contact us at info@senderox.com. We will respond within 30 days.
7. Cookie Policy
We use cookies and similar technologies to enhance your experience:
Essential Cookies
Required for the website to function properly. These cannot be disabled.
Analytics Cookies
Help us understand how visitors use our site. You can opt out of these through your browser settings or our cookie banner.
Functional Cookies
Remember your preferences and chat history for a better experience.
You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect website functionality.
8. International Transfers
Your data may be processed outside the European Economic Area (EEA). When this occurs, we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses approved by the European Commission
- Transfers to countries with adequate data protection laws
9. Data Security
We implement appropriate technical and organizational measures to protect your personal data, including:
- SSL/TLS encryption for data in transit
- Secure servers and access controls
- Regular security assessments
- Employee training on data protection
10. Children's Privacy
Our service is not directed to children under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on our website or sending you an email.
12. Complaints
If you have concerns about how we handle your data, please contact us first at info@senderox.com. You also have the right to lodge a complaint with the Irish Data Protection Commission:
Data Protection Commission
21 Fitzwilliam Square South, Dublin 2, D02 RD28, Ireland
Website: www.dataprotection.ie
13. Contact Us
For any privacy-related questions or to exercise your rights:
Email: info@senderox.com
Website: senderox.com