Privacy Policy for Finjex AI Services
Last Updated: 19.04.2025
This Privacy Policy describes how Finjex ("we," "us," or "our") collects, uses, discloses, and processes personal information through our AI-powered financial services. Applies to: finjex.com and finjex.ai.
Legal Basis for Processing (GDPR Article 6)
We process your data based on:
- Contractual necessity for service delivery
- Legitimate interest in service improvement
- Legal compliance with financial regulations
1. AI-Specific Data Processing
Current AI Service Provider
We utilize Hugging Face's AI models through their Inference API (Free Tier) for financial analysis. Data shared:
- Anonymous financial parameters
- Age-range demographic data
- Session ID for request processing
Data Protection: Hugging Face processes data under their DPA (Data Processing Agreement).
Planned AI Enhancements
We may integrate additional services including:
- OpenAI GPT-4 for financial advisory services
- Specialized financial LLMs (Large Language Models)
For new providers, we will:
- Complete GDPR-compliant DPAs
- Implement strict data anonymization
- Provide opt-out mechanisms
2. Information Collection & AI Processing
AI Processing Architecture
Our system ensures:
- Input data anonymization before API transmission
- No storage of raw queries by third-party AI services
- Regular model output auditing
Enhanced Protections for AI Processing
- ✅ All AI inputs pseudonymized
- ✅ Model outputs encrypted at rest
- ✅ Regular bias audits of AI recommendations
3. Data Retention
- Session Data: 45 days maximum
- AI Training Data: Not retained by third parties
- Financial Parameters: Anonymized after 90 days
4. Third-Party Processors
| Processor | Purpose | GDPR Status |
|---|---|---|
| Hugging Face | AI Model Hosting | EU-based (Adequacy Decision) |
| Future OpenAI Services | Advanced Financial Analysis | SCCs with EU Standard Clauses |
5. Your Rights (GDPR Chapter 3)
- Access/Portability: Request AI decision logic
- Rectification: Correct input parameters
- Erasure: Delete session data
- Restrict Processing: Opt-out of AI features
- Object: Challenge automated decisions
6. Automated Decision Making
Our AI systems may produce automated financial suggestions. You have the right to:
- Request human review of decisions
- Obtain explanation of AI logic
- Opt-out of automated profiling
7. Data Security and Encryption
We are committed to safeguarding your personal data and privacy. In compliance with the General Data Protection Regulation (GDPR), we implement strong technical and organizational measures to ensure the security of your information.
All sensitive user data, including email addresses and other personal identifiers, is encrypted using industry-standard encryption techniques both in transit and at rest.
This ensures that even in the unlikely event of unauthorized access, your data remains protected and unreadable without the appropriate decryption keys, which are securely managed and accessible only to authorized personnel.
8. Contact & Compliance
- Email: contact@finjex.com
- Web: Contact Form
- Supervisory Authority: EDPB