Tijgersoftware ("SmartLoop", "we", "us", or "our"), registered in Belgium under VAT BE0790322148, is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share your information when you use our AI-powered marketing platform, in compliance with the General Data Protection Regulation (EU) 2016/679 ("GDPR") and applicable Belgian and EU legislation.
1. Data Controller
Tijgersoftware is the data controller responsible for your personal data. For questions about this policy or to exercise your rights, contact us at:
- Email: privacy@smartloopmarketing.com
- Address: Barones Ludwina De Borrekenslaan 73, 2630 Aartselaar, Belgium
- VAT: BE0790322148
- Data Protection Officer: dpo@smartloopmarketing.com
2. Personal Data We Collect
2.1 Data you provide directly
- Account data: name, email address, password (hashed), company name, billing address
- Payment data: processed securely by our payment processor (Stripe). We do not store full card details.
- Content data: prompts, brand guidelines, images, and other inputs you provide to our AI services
- Communications: support requests, feedback, and correspondence with us
2.2 Data collected automatically
- Usage data: features used, session duration, interactions with AI-generated content
- Device data: browser type, operating system, screen resolution, IP address
- Cookies and similar technologies: see Section 7 below
2.3 Data from third parties
- Social media platform analytics (when you connect accounts for AI influencer management)
- Advertising platform data (when you connect ad accounts)
3. Legal Basis for Processing
We process your personal data based on the following lawful bases under Article 6(1) GDPR:
- Contract performance (Art. 6(1)(b)): to provide our platform services, manage your account, and process payments
- Legitimate interest (Art. 6(1)(f)): to improve our services, ensure platform security, and prevent fraud
- Consent (Art. 6(1)(a)): for marketing communications and non-essential cookies. You may withdraw consent at any time.
- Legal obligation (Art. 6(1)(c)): to comply with tax, accounting, and regulatory requirements
4. How We Use Your Data
- Provide, operate, and maintain the SmartLoop platform
- Generate AI influencer content, advertisements, and blog posts as requested by you
- Process payments and manage subscriptions
- Send transactional emails (account confirmations, billing receipts, service updates)
- Send marketing communications (only with your explicit consent)
- Analyze usage to improve our AI models and platform features
- Detect, prevent, and address technical issues and security threats
5. AI-Specific Processing
SmartLoop uses artificial intelligence to generate influencer personas, advertising content, and blog posts. In accordance with the EU AI Act (Regulation (EU) 2024/1689):
- All content generated by our AI is clearly labelled as AI-generated
- AI influencer profiles created through our platform are disclosed as virtual/synthetic personas
- Your input data (prompts, brand assets) is used to generate content for your account only
- We do not use your content data to train foundation models without your explicit, separate consent
6. Data Sharing and Sub-Processors
We share personal data only with the following categories of recipients, under appropriate Data Processing Agreements (DPAs):
- Cloud infrastructure: for hosting and data storage (EU-based servers)
- Payment processors: for billing and subscription management
- Analytics providers: for aggregated, pseudonymised usage analysis
- AI model providers: for content generation (data sent with appropriate safeguards)
We do not sell your personal data. We do not transfer personal data outside the European Economic Area (EEA) unless adequate safeguards are in place (e.g., Standard Contractual Clauses or an adequacy decision by the European Commission).
7. Cookies
We use cookies and similar technologies in accordance with the ePrivacy Directive:
- Strictly necessary cookies: required for the platform to function (no consent needed)
- Analytics cookies: to understand how you use our platform (opt-in consent required)
- Marketing cookies: to deliver relevant communications (opt-in consent required)
You can manage your cookie preferences at any time through our cookie settings panel. Non-essential cookies are not set until you provide affirmative consent.
8. Data Retention
- Account data: retained for the duration of your account, plus 30 days after deletion request
- Content data: retained while your account is active. Deleted within 90 days of account closure.
- Billing records: retained for 7 years as required by tax and accounting regulations
- Usage logs: retained for 12 months in pseudonymised form
9. Your Rights Under GDPR
You have the following rights regarding your personal data:
- Access (Art. 15): request a copy of the personal data we hold about you
- Rectification (Art. 16): correct inaccurate or incomplete data
- Erasure (Art. 17): request deletion of your personal data ("right to be forgotten")
- Restriction (Art. 18): request that we limit how we process your data
- Portability (Art. 20): receive your data in a structured, machine-readable format
- Objection (Art. 21): object to processing based on legitimate interest
- Withdraw consent: withdraw any previously given consent at any time
To exercise these rights, email privacy@smartloopmarketing.com. We will respond within 30 days. You also have the right to lodge a complaint with the Belgian Data Protection Authority (Gegevensbeschermingsautoriteit) at www.gegevensbeschermingsautoriteit.be, or with your local supervisory authority.
10. Security
We implement appropriate technical and organisational measures to protect your data, including encryption in transit (TLS) and at rest, access controls, regular security audits, and incident response procedures.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email or an in-app notification at least 30 days before they take effect. Continued use of the platform after the effective date constitutes acceptance of the updated policy.