/ Legal
Privacy policy
Last updated: July 11, 2026
1. Introduction
This privacy policy describes how Sennova Labs (“Sennova Labs”, “we”, “us”, or “our”) collects, uses, shares, and protects personal information when you visit https://sennovalabs.com(the “Site”), request an AI audit, or otherwise communicate with us. It also explains the rights you have over your personal information and how to exercise them.
For the purposes of the EU and UK General Data Protection Regulation (“GDPR”), Sennova Labs is the data controller of personal information collected through the Site. You can contact us about anything in this policy at hello@sennovalabs.com.
2. Information we collect
Information you provide directly
- Contact and inquiry details — when you request an AI audit or email us: your name, work email address, company name, company website, team size, and the description you give of your business processes.
- Business and engagement information — if you become a client: billing details, contract information, and information reasonably required to deliver the services you engage us for.
- Communications — the contents of emails, calls, and messages you exchange with us.
Information collected automatically
- Usage data — pages visited, referring pages, time on page, browser type, device type, operating system, and approximate location derived from IP address, collected through analytics tooling where enabled.
- Log data — standard server logs, including IP address, request time, and requested URL, retained by our hosting provider for security and diagnostics.
We do not intentionally collect special categories of personal data (such as health or biometric data), and we ask that you do not include such data in form submissions.
3. How we use your information
- To respond to your inquiry and conduct the audit or services you requested.
- To prepare proposals, contracts, and communications related to services you have expressed interest in.
- To deliver, administer, and improve our services and this Site.
- To send service-related notices and, only where you have not objected, occasional relevant communications about our services — every such message includes a way to opt out.
- To protect the security and integrity of the Site and our systems, and to prevent fraud and abuse.
- To comply with legal obligations, enforce agreements, and establish or defend legal claims.
We do not sell personal information, and we do not share it with third parties for their own marketing. We do not use the contents of your inquiries or audit submissions to train AI models.
4. Legal bases for processing (GDPR)
Where the GDPR applies, we rely on the following legal bases:
- Performance of a contract (Art. 6(1)(b)) — responding to your request, conducting audits, and delivering services.
- Legitimate interests (Art. 6(1)(f)) — operating and improving the Site, securing our systems, and communicating with business contacts in ways they would reasonably expect. You may object at any time.
- Consent (Art. 6(1)(a)) — where we ask for it specifically, such as optional analytics cookies. You may withdraw consent at any time without affecting prior processing.
- Legal obligation (Art. 6(1)(c)) — record-keeping, tax, and compliance requirements.
5. Cookies and analytics
The Site uses only the cookies and similar technologies necessary for it to function, plus, where enabled, privacy-respecting analytics to understand aggregate usage. Where analytics or any non-essential cookies requiring consent are used, we will request consent through a notice before setting them. You can also control cookies through your browser settings; blocking essential cookies may affect Site functionality.
6. How we share information
We share personal information only with service providers (processors) who help us operate, under contracts that restrict their use of it to providing services to us:
- Website hosting and content delivery providers.
- Email and communications providers.
- Customer relationship management (CRM) and scheduling tooling.
- Workflow and form-processing tooling used to route your inquiry to us.
- Analytics providers, where enabled.
- Professional advisers (legal, accounting, insurance) where reasonably necessary.
We may also disclose information where required by law, regulation, or valid legal process; to protect the rights, safety, or property of Sennova Labs, our clients, or others; or in connection with a merger, acquisition, or sale of assets, in which case this policy will continue to apply to your information until amended as described below.
7. International transfers
Our service providers may process information in countries other than the one in which you reside, including countries not deemed to provide an adequate level of data protection. Where we transfer personal data subject to the GDPR outside the EEA or UK, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses (and the UK equivalents) or transfers to countries with an adequacy decision.
8. Data retention
- Inquiries and audit submissions — retained while we have an active relationship or a reasonable prospect of one, and deleted no later than 24 months after our last substantive contact, unless you ask us to delete them sooner.
- Client engagement records — retained for the duration of the engagement and thereafter as required for legal, tax, and accounting purposes.
- Server logs and analytics — retained for short rolling periods set by the relevant provider, and in aggregate form thereafter.
9. Security
We apply technical and organizational measures appropriate to the risk, including encryption of data in transit, access controls and least-privilege scoping, reputable infrastructure providers, and logging. No method of transmission or storage is completely secure; if we become aware of a breach affecting your personal data, we will notify you and the relevant authorities where required by law.
10. Your rights
If you are in the EEA, UK, or a jurisdiction with similar laws
You have the right to:
- Access the personal data we hold about you and receive a copy.
- Correct inaccurate or incomplete data.
- Request deletion of your data (“right to be forgotten”).
- Restrict or object to processing, including processing based on legitimate interests and any direct marketing.
- Receive your data in a portable, machine-readable format.
- Withdraw consent at any time, where processing is based on consent.
- Lodge a complaint with your local data protection supervisory authority.
If you are a California resident (CCPA/CPRA)
You have the right to know what personal information we collect, use, and disclose; to request deletion or correction; to opt out of the sale or sharing of personal information (we do not sell or share personal information as those terms are defined in the CCPA); and to not be discriminated against for exercising these rights.
To exercise any of these rights, email hello@sennovalabs.com. We will verify your request and respond within the timeframe required by applicable law (30 days under GDPR, 45 days under CCPA, extendable where permitted). You may use an authorized agent where applicable law allows.
11. Children's privacy
The Site is a business-to-business service and is not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us personal information, contact us and we will delete it.
12. Do Not Track and Global Privacy Control
Where our tooling supports it, we honor Global Privacy Control (GPC) signals as an opt-out of any sale or sharing of personal information. Because we do not sell personal information, browsing the Site with GPC or Do Not Track enabled does not change how it functions.
13. Third-party links
The Site links to third-party websites (for example, our social profiles). Their privacy practices are governed by their own policies, which we encourage you to review.
14. Changes to this policy
We will post any changes on this page and update the “Last updated” date above. For material changes, we will provide more prominent notice on the Site or, where appropriate, by email. Continued use of the Site after changes take effect constitutes acceptance of the updated policy.
15. Contact us
Sennova Labs
7901 4th St N, St. Petersburg, FL, USA
With offices in the UAE.
hello@sennovalabs.com