Privacy Policy
How we handle personal data — on this website and inside the product. Short version: we collect as little as possible, use no tracking cookies, and your recorded process data never leaves your systems.
Last updated: 14 July 2026
This Privacy Policy explains how Espai.AI handles personal data in connection with this website and the Espai.AI service. We are committed to data minimization and to complying with the EU General Data Protection Regulation (GDPR).
Data controller
The data controller responsible for your personal data is:
- Wallner Europa SL (trading as Espai.AI)
- Barcelona, Spain
- Email: hello@espai.ai
For any privacy question or to exercise your rights, contact us at the email above.
What data we collect
This website
We collect essentially no personal data through this website beyond what is strictly necessary to serve the pages to you. Our hosting provider processes standard server logs (such as IP address, request time, and user agent) for the limited purpose of delivering the site securely and diagnosing technical problems. We do not build advertising or behavioural profiles from this.
If you contact us — for example by email or via the contact form, which simply opens your own email client — we receive the information you choose to send us, such as your name, email address, company and message.
The Espai.AI product
The product records desktop and system events and user actions in order to understand and improve your business processes. This process-recording data is stored on the client's own infrastructure. It is processed by our AI solely to identify inefficiencies and build automations, is never seen by our staff in the ordinary course of business, and is never sold or shared with third parties. Where our customer is your employer, that customer acts as the controller for this data and Espai.AI acts as a processor under a data processing agreement.
Cookies
This website uses no tracking cookies and no advertising cookies, and we run no third-party analytics of any kind. We do not embed advertising pixels, social-media trackers, or behavioural analytics scripts. The site stores nothing on your device beyond what is strictly necessary for it to function.
Separately, the product's recorded process data stays on the client's own systems, is never sold or shared, and is used only to build the automations you have asked for.
Legal basis for processing
- Legitimate interests (Art. 6(1)(f) GDPR) — operating and securing this website, and responding to enquiries you send us.
- Performance of a contract (Art. 6(1)(b) GDPR) — providing the Espai.AI service to our customers.
- Consent (Art. 6(1)(a) GDPR) — where we ask for it explicitly, for example before using recorded data for any purpose beyond building your automations.
- Legal obligation (Art. 6(1)(c) GDPR) — where we must retain certain records to comply with the law.
Your rights
Under the GDPR you have the right to:
- Access — obtain a copy of the personal data we hold about you.
- Rectification — have inaccurate or incomplete data corrected.
- Erasure — ask us to delete your personal data where there is no overriding reason to keep it.
- Portability — receive your data in a structured, commonly used, machine-readable format.
- Restriction and objection — restrict or object to certain processing, including processing based on legitimate interests.
- Withdraw consent — at any time, where processing is based on consent.
To exercise any of these rights, email hello@espai.ai. You also have the right to lodge a complaint with your local supervisory authority; in Spain this is the Agencia Española de Protección de Datos (AEPD).
Data retention
We keep personal data only for as long as necessary for the purpose it was collected. Correspondence is kept for as long as needed to handle your enquiry and any resulting relationship. Product process-recording data is retained on the client's infrastructure according to the client's own configuration and our data processing agreement, and is deleted or returned when no longer needed.
Sharing and international transfers
We do not sell your personal data. We share it only with service providers strictly necessary to run our business (for example website hosting), under appropriate contractual safeguards, and where required by law. We aim to keep processing within the EU/EEA; where any transfer outside it is unavoidable, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses.
Security
We apply appropriate technical and organizational measures to protect personal data against unauthorized access, loss or misuse. Product recordings are processed within the client's own environment rather than shipped to us, which keeps that data under the client's control by design.
Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date above. Material changes will be communicated to affected customers where appropriate.
Contact
Questions about this policy or your personal data? Email hello@espai.ai and we'll be glad to help.