Privacy Policy

Last updated: 01.07.2025

1. Introduction

Akora SIA (“we,” “us,” or “our”) operates GrantMapper. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service. We are committed to protecting your privacy and complying with all applicable data protection laws, including the General Data Protection Regulation (GDPR).

2. Company Information/Data Controller

Company Name: Akora SIA

Registration Number: 40203566478

Address: Upes 11, LV-2008, Latvia

Contact: info@grantmapper.com

3. What Information We Collect

3.1 Personal Data

  • Email address (for account and session management)
  • Data, documents, and content you input or generate
  • Usage data and interaction logs with AI features
  • Payment information (processed securely via Stripe)

3.2 Technical Data

  • IP address, device, and browser info
  • Authentication/session tokens
  • Security and debugging logs

4. How We Use Your Data

  • To operate and improve the service
  • To authenticate and manage user sessions
  • To process payments and defend against fraud
  • To improve features, including integrated AI
  • For service announcements and customer support
  • To comply with legal obligations and defend our rights
  • For debugging, error resolution, and analytics

5. Legal Basis (GDPR compliance)

We process your personal data based on:

  • Contractual necessity
  • Legitimate interest (fraud prevention, improvement)
  • User consent (where required)
  • Legal requirements

6. Data Sharing & Disclosure

Service Providers: Stripe (payments), Supabase (database/storage), Google/OpenAI/other AI services

Legal & Regulatory: As required by law, regulation, or to defend Akora SIA's rights/interests

Business Transfer: If Akora SIA merges, sells, or transfers its business

We never sell, rent, or trade your personal data for marketing purposes.

7. Third-Party AI & International Transfers

Some features integrate with third-party AI/LLM providers under their own privacy policies. Akora SIA disclaims liability for third-party data handling or breach outside our control. Users agree to accept and review those third-party policies.

Data may be processed or stored outside the EU via service providers. Akora SIA ensures appropriate safeguards (standard contractual clauses, adequacy decisions).

8. Data Security & Storage

  • Data stored using industry-standard encryption and access controls
  • Regular security audits, monitoring, and disaster recovery
  • Database hosted securely with Supabase
  • Payment information handled and stored only by Stripe
  • Akora SIA cannot guarantee absolute security of internet transmissions, but applies best efforts

9. Data Retention

  • Account/data: until deletion or user request
  • Document/content: as long as session is active
  • Payment records: as required by law/tax
  • Logs: for up to 12 months for diagnostics, then purged

10. Customer Rights

You have the right to:

  • Access a copy of your data
  • Request corrections/rectification
  • Request erasure/deletion
  • Restrict processing or object to how we use your data
  • Request data portability (structured format)
  • Withdraw consent (where applicable)

To exercise rights, email us at info@grantmapper.com.

11. Liability & Indemnification

Akora SIA disclaims all liability for:

  • Unauthorized access arising from user negligence
  • Third-party integrations and AI provider breaches
  • Any data, document, or content loss due to user action or external service failures
  • Any compliance failures resulting from user-uploaded data, or customer use outside policy

Users warrant all uploaded data is lawful, authorized, and do not infringe third-party IP or privacy rights. Users will indemnify and hold Akora SIA harmless for any claim, damages, or losses resulting from user data or usage of integrated third-party services.

12. Cookies & Tracking

  • Essential cookies for login/authentication only
  • No cookies used for targeted advertising
  • Users can control browser cookie settings

13. Children's Privacy

GrantMapper is not intended for children under 16. We do not knowingly collect data from children under 16. If notified, we will promptly delete such data.

14. Updates to Privacy Policy

We may update this Privacy Policy. Significant changes will be notified by email or via our service. Continued use means acceptance of updated policy.

15. Supervisory Authority

You have the right to lodge a complaint with your local data protection authority if you believe we have not complied with applicable law.

16. Contact

If you have any questions about this Privacy Policy or our data practices, contact:

Akora SIA, Upes 11, LV-2008, Latvia

info@grantmapper.com