Legal

Privacy Policy

Last updated: May 7, 2026

Overview

AI360Layer provides AI business consulting, data integration and client portal services for companies. We process data only to deliver the service requested by the customer or account owner. We do not sell customer data.

Information we collect

We collect account details such as name, business email, company name, workspace or tenant configuration, support communications and information you submit through email or the client portal.

Where authorized by a customer, we may process business data from connected tools including accounting/ERP systems, e-commerce platforms, paid ads accounts, CRM, support, operations, inventory systems, third-party tools, APIs, CSV files and manual uploads.

How we use your data

We use your data to understand business context, connect and synchronize sources, build dashboards, generate daily briefs, detect anomalies, prioritize actions and provide AI-assisted analysis and recommendations.

Customer data is processed for that customer only and is not shared with other customers.

AI processing

AI360Layer may use AI models and related service providers to generate analysis, summaries, recommendations and operational briefs. We use customer data only to provide the contracted services and do not sell it or use it to build unrelated products.

Security

We apply technical and organizational safeguards designed to protect customer information, including HTTPS/TLS in transit, access controls, service-role separation, tenant isolation, limited access to production systems and operational logging.

Credentials and access tokens are handled with restricted access and stored only when required for service delivery.
Data access is limited to authorized personnel and systems that need it to provide the service.
We use data minimization principles and prefer read-only API access where technically possible.
We support deletion workflows upon valid customer request, subject to legal retention requirements.

Subprocessors and third-party services

We may use subprocessors for hosting, database, authentication, email delivery, CRM, monitoring, AI processing and related operational services. A current list of subprocessors is available upon request at contact@ai360layer.com.

Data retention

We retain customer data only for as long as necessary to provide the services, comply with legal obligations, resolve disputes and enforce agreements. You can request deletion of workspace data at any time. Backups may be retained for a limited period for operational recovery.

International transfers

Where personal data is transferred outside the EEA, UK or Switzerland, we rely on appropriate safeguards such as standard contractual clauses, data processing agreements or equivalent mechanisms required by applicable law.

Government and public authority requests

AI360Layer is operated by ROIG CERRUDO ANA 000950091R SL, MAO 22 B2, 08022 Barcelona, Spain. Requests from law enforcement or public authorities must be in writing and sent to contact@ai360layer.com for legal review.

We challenge or seek clarification for requests that are unlawful or overbroad.
We disclose only the minimum data required to comply with a valid request.
We document each request, our response and the legal basis for disclosure.
Where legally permitted, we notify affected customers.

Your rights

Depending on your jurisdiction, you may have rights to access, correct, delete, restrict or object to processing of your personal data. To exercise these rights, contact us at contact@ai360layer.com.

Contact

Questions about this policy can be sent to contact@ai360layer.com.