Data Privacy Policy for DemAI ApS

Last Updated: September 29, 2025

1. Introduction

Welcome to DemAI ApS ("we", "us", "our"). We are committed to protecting the privacy and security of your personal data.

This Privacy Policy explains how we collect, use, share, and protect your personal information when you:

use our service available at www.parl8.eu (the "Service"),
visit our company website at www.demai.tech (the "Website"),
subscribe to our newsletter,
or otherwise interact with us.

We process your personal data in compliance with the General Data Protection Regulation (GDPR) and applicable Danish data protection laws.

2. Data Controller

The entity responsible for the processing of your personal data (the data controller) is:

DemAI ApS

CVR: 45511731

Marken 30, 4000 Roskilde, Denmark

Email:

3. What Personal Data We Collect

We may collect and process the following types of personal data:

Identity and Contact Data:

Such as your name and email address when you create an account on the Service, subscribe to our newsletter, or contact us.

Technical Data:

Such as your Internet Protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access the Service or Website. This is often collected automatically via cookies and server logs.

Usage Data:

Information about how you use the Service and Website, including pages viewed, time spent on pages, links clicked, and navigation paths.

Marketing and Communications Data:

Your preferences in receiving marketing from us (like our newsletter) and your communication preferences.

4. How We Collect Your Personal Data

We use different methods to collect data from and about you, including through:

Direct Interactions:

You may give us your Identity and Contact Data by filling in forms on the Service or Website (e.g., account registration, newsletter sign-up, contact form) or by corresponding with us by email or otherwise.

Automated Technologies or Interactions:

As you interact with the Service or Website, we may automatically collect Technical Data and Usage Data. We collect this personal data by using server logs, cookies, and other similar technologies.

Third Parties:

We may receive Technical Data from analytics providers such as Google Analytics.

5. Legal Basis for Processing Your Personal Data

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data in the following circumstances:

Consent:

Where you have given us clear consent to process your personal data for a specific purpose (e.g., subscribing to our newsletter). You can withdraw your consent at any time.

Legitimate Interests:

Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests. This includes operating and improving the Service, understanding user behaviour, and responding to your inquiries.

Legal Obligation:

Where we need to comply with a legal or regulatory obligation.

6. How We Use Your Personal Data

We use the information we collect for various purposes, including:

To operate, maintain, and improve the Service and Website.
To send you our newsletter and other updates if you have subscribed (based on your consent).
To analyze usage patterns and understand how our Service and Website are used (based on legitimate interests or consent for analytical cookies).
To respond to your comments, questions, and requests.
To comply with legal obligations and protect our legal rights.

7. Newsletter

If you choose to subscribe to our newsletter, we will collect your name (optional) and email address. We use this information solely to send you newsletters containing updates about DemAI ApS, our work in AI and democracy, articles, and related information.

The legal basis for processing this data is your explicit consent, given at the time of subscription.

You can unsubscribe from our newsletter at any time by clicking the "unsubscribe" link provided in every email we send or by contacting us directly at .

We use Brevo to manage our newsletter distribution. This provider acts as a data processor on our behalf and is obligated to protect your data.

8. Data Sharing and Third Parties

We do not sell your personal data. We may share your personal data with trusted third parties only when necessary, such as:

Service Providers:

Companies that provide services on our behalf, such as website hosting, data analysis (e.g., Google Analytics), email delivery services (for the newsletter), and IT support. These providers are contractually bound to protect your data and use it only for the purposes we specify.

Legal Requirements:

If required by law, regulation, legal process, or governmental request.

Business Transfers:

In connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law.

9. Data Security

We have implemented appropriate technical and organizational security measures to prevent your personal data from being accidentally lost, used, accessed in an unauthorized way, altered, or disclosed. Access to your personal data is limited to those employees, agents, contractors, and other third parties who have a business need to know.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

10. Data Retention

We will only retain your personal data for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting, or reporting requirements.

Newsletter Data:

We retain your contact information as long as you are subscribed. If you unsubscribe, we will delete your data promptly, subject to any backup retention cycles.

Service and Website Analytics Data:

Typically retained for a period before being anonymized or deleted.

Correspondence Data:

Retained as long as necessary to address your inquiry and for any legally required archival period.

11. International Data Transfers

Some of our third-party service providers may be based outside the European Economic Area (EEA). If we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

The country has been deemed to provide an adequate level of protection by the European Commission.
We use specific contracts approved by the European Commission (Standard Contractual Clauses – SCCs).
Other legally recognized transfer mechanisms.

Please contact us if you want further information on the specific mechanism used when transferring your personal data out of the EEA.

12. Your Legal Rights (GDPR)

Under data protection law, you have rights including:

Right of Access: Request access to your personal data.
Right to Rectification: Request correction of inaccurate personal data.
Right to Erasure ('Right to be Forgotten'): Request deletion of your personal data.
Right to Restriction of Processing: Request restriction of processing your personal data.
Right to Data Portability: Request transfer of your personal data to you or a third party.
Right to Object: Object to processing of your personal data (e.g., for direct marketing).
Right to Withdraw Consent: Withdraw consent at any time where we rely on consent to process your data.

To exercise any of these rights, please contact us at .

You also have the right to lodge a complaint with the Danish Data Protection Agency (Datatilsynet), the supervisory authority for data protection issues in Denmark (www.datatilsynet.dk).

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. We encourage you to review this Privacy Policy periodically for any changes.

14. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us: