1. Who we are

Blindsight OÜ (registry no. 17224100), registered at Ahtri 12, Kesklinna linnaosa, 15551 Tallinn, Harju maakond, Estonia, is the controller of your personal data ("Blindsight", "we", "us", "our").For privacy questions, contact privacy@blindsight.io.Data‑Protection Officer (DPO): Filipe Azevedofilipe@blindsight.io

2. Scope

This Policy explains how we process personal data when you visit https://www.blindsight.io (the “Site”) or interact with our forms, marketing, or support channels. It does not cover third‑party sites we may link to.

3. Personal Data We Collect

Category
Examples
Source
Identifiers
name, business e‑mail address, company role/title
contact forms
Contact details (optional)
phone number
contact forms
Technical & usage data
IP address, device/browser info, pages visited, events, timestamps
cookies & Google Analytics 4
We do not collect sensitive (“special‑category”) data, nor do we knowingly collect data from children under 16.

4. How We Collect Your Data

Forms — when you submit a demo or newsletter request.
Cookies / SDKs — Google Analytics 4 default cookies (_ga, _gid, etc.) unless you opt out (see § 6).

5. Purpose & Legal Bases

Purposs
Legal Basis (GDPR Art.)
Account creation or demo fulfilment
Performance of a contract (Art. 6 (1)(b))
Marketing e‑mails
Consent (Art. 6 (1)(a)); you may withdraw at any time via the unsubscribe link or by e‑mailing us.
Analytics & site optimisation
Legitimate interests (Art. 6 (1)(f)) to understand and improve our services, balanced against your privacy.

6. Cookies & Similar Technologies

We use a lightweight consent banner powered by CookieConsent. Until you grant analytics consent, non‑essential cookies are blocked.
CookieProviderTypeExpiryPurpose_gaGoogle Analytics 4Analytics2 yearsDistinguishes unique visitors_gidGoogle Analytics 4Analytics2hSession Statistics_gatGoogle Analytics 4Analytics1minRate-limits requests
You can change or withdraw consent at any time through the banner’s “Cookie Settings” link in the Site footer.

7. Data Sharing & Processor

We share data only with vetted processors under GDPR‑compliant agreements:
ProcessorServiceRegionSafeguardAmazon Web Services (EU‑West‑1 / EU‑Central‑1)Text Cloud hostingEUData stored inside EEAGoogle LLC (GA4)AnalyticsUSAStandard Contractual Clauses + participation in EU‑U.S. Data Privacy FrameworkMailerLite UABE‑mail marketingEUData stored in EU datacentres
We do not sell or share personal data for behavioural advertising.

8. International Data Transfers

Where data is processed by Google LLC in the United States, we rely on:
European Commission Standard Contractual Clauses (SCCs); and
Google’s certification under the EU–U.S. Data Privacy Framework.

9. Data Retention

Contact & marketing data: 2 years after your last interaction or until you withdraw consent—whichever comes first.
Technical logs: up to 12 months for security and analytics.
We may retain records longer if required by law (e.g., accounting).

11. Your Rights (EU GDPR)

You may:
Access your data and receive a copy.
Rectify inaccurate or incomplete data.
Erase (“right to be forgotten”) or restrict processing.
Object to processing based on legitimate interest or direct marketing.
Port your data to another controller.
Withdraw consent at any time (affects future processing only).

We will respond within 1 month. If you believe we have failed, you may lodge a complaint with the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon) or your local supervisory authority.

12. Exercising Your Rights

E‑mail privacy@blindsight.io or filipe@blindsight.io with your request. We will verify your identity before acting.

13. Children

The Site is not directed at minors under 16, and we do not knowingly process their data.

14. Changes to This Policy

We may update this Policy from time to time. Material changes will be announced via e‑mail to registered users and a banner on the Site at least 14 days before they take effect.

15. Contact Us

Blindsight OÜ
Ahtri 12
15551 Tallinn
Estonia

E‑mail: privacy@blindsight.io
DPO: Filipe Azevedo, filipe@blindsight.io

early adopter

The poison is spreading,
heal you datasets

Discover More

Be among the first leaders to access next generation AI security:

We utilize a variety of advanced techniques ranging from frequency domain checks to attention-enhanced neural networks to secure your AI pipeline, from end-to-end.

early adopter

Apply to leverage next-generation AI security

Your Antidote early-access submission is in. Thank you!

©2025 Blindsight

Privacy Policy
info@blindsight.io