Legal

Privacy Policy

Effective: April 20, 2026

This policy covers the Dataken marketing website only. Data handling inside the OLi product — the activity graph, skills execution, and customer deployments — is governed by the enterprise agreement between Dataken and your organization. For a non-legal overview of OLi’s privacy architecture, see our privacy page.

This Privacy Policy describes how Dataken, Inc. (“Dataken,” “we,” “us”) collects, uses, and shares information when you visit our website at dataken.ai or communicate with us directly.

Who we are

Dataken, Inc. is incorporated in the State of Texas, United States. Our registered office is located in Dallas, Texas. For privacy inquiries, contact us at privacy@dataken.ai.

For the purposes of the EU General Data Protection Regulation (“GDPR”) and the UK GDPR, Dataken, Inc. is the “Controller” of the personal data described in this policy.

Information we collect

We deliberately keep data collection on the marketing site minimal. The information we collect falls into two categories.

A. Information you voluntarily give us

  • Email address if you contact us, request a demo, or sign up for our developer waitlist.
  • Name, title, and company if you provide them when communicating with us.
  • Meeting details when you book a demo through our calendar link. This information is processed by Microsoft Bookings (date, time, your contact details) and shared with us.

B. Limited technical information

  • Browser-local preferences. We store a single value, dataken-theme, in your browser’s localStorage so your dark-or-light theme preference persists between visits. This is set by your own browser at your request and is never transmitted to us or any third party.
  • Aggregate page-view analytics. We use Cloudflare Web Analytics to count aggregate page views. The beacon is cookieless, does not identify individuals, and does not enable cross-site tracking. See our Cookie Policy for details.
  • Server logs. Our hosting provider (Cloudflare) retains standard server request logs (IP address, user agent, request time) for security and operational purposes. These are not used for tracking or profiling.

We do not set cookies, use tracking pixels, deploy session replay or heatmap tools, run advertising trackers, or enrich visitor data from third-party sources.

How we use information

We use the information you provide to:

  • Respond to your inquiries, demo requests, and messages.
  • Send you updates about the service if you’ve asked to receive them (for example, via the developer waitlist).
  • Improve our website and services based on aggregated feedback.
  • Meet our legal and regulatory obligations.

Legal bases (GDPR)

For visitors in the EU, UK, and other GDPR-aligned jurisdictions, our legal bases for processing personal data are:

  • Consent— when you voluntarily send us a message, sign up for the waitlist, or book a demo, you consent to our use of that information for the purpose it was provided.
  • Legitimate interest — for responding to direct inquiries and operating our website securely.
  • Legal obligation — where we are required to retain or disclose data for compliance purposes.

Who we share information with

We do not sell personal data.

We share personal data only with the following categories of service providers, strictly as needed to operate our website:

  • Microsoft Corporation — we use Microsoft Bookings to schedule demo calls. Your scheduling information is processed by Microsoft as a data processor on our behalf.
  • Our email provider — direct email inquiries are routed through standard email infrastructure and retained in our mailboxes.
  • Cloudflare, Inc. — the site is served via Cloudflare Pages. Cloudflare maintains standard server request logs and provides the cookieless Web Analytics service described above.

We do not share visitor data with advertising networks, third-party analytics vendors, or data brokers — because we do not use those services.

If we are required by law, court order, or valid legal process to disclose information, we will do so only to the extent required.

International transfers

Dataken is based in the United States. If you are located in the EU or UK and communicate with us, your personal data will be transferred to the United States.

For such transfers we rely on appropriate safeguards, which may include the EU–US Data Privacy Framework, the UK extension to the Data Privacy Framework, or Standard Contractual Clauses, as applicable. [LEGAL REVIEW]

Data retention

We retain personal data only as long as necessary for the purpose for which it was collected:

  • Inquiry emails — retained in our mailboxes per our internal retention policy, typically up to 36 months, unless ongoing correspondence requires longer retention.
  • Waitlist signups — retained until you unsubscribe or the waitlist is retired.
  • Booking records — retained by Microsoft per their terms; our copies retained up to 36 months.
  • Server logs— retained by our hosting provider per their standard terms, typically 30–90 days.

Your rights

Depending on where you reside, you may have the following rights with respect to your personal data:

  • Right of access — request a copy of the information we hold about you.
  • Right to rectification — ask us to correct inaccurate data.
  • Right to erasure — ask us to delete your data.
  • Right to restrict or object to processing.
  • Right to data portability.
  • Right to withdraw consent at any time, where processing is based on consent.
  • Right to lodge a complaint with your local data protection authority.

To exercise any of these rights, contact us at privacy@dataken.ai. We will respond within 30 days.

If you are a California resident, you have additional rights under the CCPA/CPRA, including the right to know what personal information we collect, the right to delete, and the right to non-discrimination. We do not sell personal information.

Children's privacy

The Dataken website is not directed to children under 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, please contact us and we will promptly delete it.

Security

We implement reasonable technical and organizational measures appropriate to the limited personal data we handle on the marketing site. No method of transmission over the Internet or method of electronic storage is 100% secure; we cannot guarantee absolute security.

Changes to this policy

We may update this Privacy Policy from time to time. The “Effective” date at the top indicates when it was last revised. Material changes will be highlighted at the top of this page for at least 30 days.

Contact

Questions, concerns, or rights requests: