Privacy Policy

The Data Controller processes the following personal data:

• Booking data (name, email, scheduling details, and any notes you add to the booking form): processed when you book a discovery call through the embedded Cal.com scheduler, for the purpose of organizing and confirming the meeting – GDPR Article 6(1)(b) (steps prior to entering into a contract). Booking data is held by Cal.com on our behalf; Anatic does not store it in its own database.
• Technical data (IP address, browser user agent, request headers, timestamps): processed in server logs by our hosting provider when serving pages – legitimate interest of the Data Controller in operating and securing the website – GDPR Article 6(1)(f).
• Aggregate analytics data (pageviews, referrer, country, device type, browser): collected by our self-hosted Plausible Community Edition instance in a cookieless and anonymous manner. Plausible does not set cookies and does not collect personal data; it processes such data on the basis of legitimate interest – GDPR Article 6(1)(f).

The following third-party data processors are engaged in operating the anatic.ai website:

• Cal.com, Inc. (USA) — Embedded discovery-call scheduler. When you book a meeting, the booking form (name, email, scheduling details, any notes you add) is submitted directly to Cal.com, which processes it on our behalf to create and confirm the calendar event.
• Vercel Inc. (USA) — Web application hosting and content delivery (CDN). Vercel processes technical data (IP address, HTTP headers, request metadata) when handling page requests and writes them to short-lived server logs.
• Plausible Community Edition — Privacy-friendly, cookieless web analytics, self-hosted by the Data Controller. No cookies are set and no personal data (such as IP addresses in identifiable form) is stored; only aggregate, anonymous metrics are processed.
• Google Ireland Limited (Ireland) / Google LLC (USA) — Google Analytics 4 and Google Ads conversion tracking. We use the Google Consent Mode v2 framework: marketing cookies (e.g. _gcl_aw, _gcl_au) are only activated with the user’s prior consent. Without consent, Google receives anonymous, cookieless pings that contain no personal identifiers.
• Meta Platforms Ireland Limited (Ireland) / Meta Platforms, Inc. (USA) — Meta Pixel for advertising conversion measurement and audience building. The Meta Pixel is only activated with the user’s prior consent. Without consent, no data is transmitted to Meta.

The hosting provider (Vercel), the scheduling provider (Cal.com), Google (Analytics, Ads), and Meta (Pixel) are headquartered in the United States. Google Ireland Limited and Meta Platforms Ireland Limited operate within the EU. EU–US data transfers are carried out on the basis of the EU–U.S. Data Privacy Framework and Standard Contractual Clauses (SCCs) approved by the European Commission. The self-hosted Plausible Community Edition instance is operated directly by the Data Controller and does not involve third-country transfers.

Booking data is retained by Cal.com for the duration of the business relationship and for a reasonable period thereafter to maintain a record of communications, or until you request deletion. Server logs containing technical data are retained by Vercel for a short period (typically up to 30 days) for operational and security purposes. Aggregate analytics data processed by Plausible Community Edition contains no personal identifiers and is retained for trend analysis. Following a valid deletion request, personal data will be permanently deleted within 30 days, unless a longer retention period is required by law (e.g. accounting obligations).

Under the GDPR, you are entitled to the following rights:

• Right of access: you may request information about what personal data we process about you.
• Right to rectification: you may request the correction of inaccurate data.
• Right to erasure (“right to be forgotten”): you may request the deletion of your personal data.
• Right to data portability: you may request your data in a machine-readable format.
• Right to object: you may object to the processing of your personal data.
• Right to withdraw consent: where processing is based on consent, you may withdraw your consent at any time.

To exercise your rights, please write to: info@brth.io

The website uses the following cookies and local-storage entries:

• Cookie consent flag (necessary): a small entry stored in the browser’s local storage to remember your cookie preference (anatic.cookie-consent), so the banner does not reappear on every visit.
• Cal.com cookies (functional): when you interact with the embedded scheduler, Cal.com sets cookies inside its iframe (e.g. session and locale cookies) that are required for the booking flow to operate. No marketing cookies are set by Cal.com.
• Plausible Community Edition: our self-hosted analytics does not set any cookies; pageviews are measured anonymously and in aggregate.
• Google Ads cookies (marketing): cookies used for Google Ads conversion measurement (_gcl_aw, _gcl_au). These are only placed with the user’s prior consent, in accordance with Article 6(1)(a) of the GDPR.
• Meta Pixel cookies (marketing): cookies used for Meta (Facebook) advertising conversion measurement and audience building (_fbp, _fbc). These are only placed with the user’s prior consent, in accordance with Article 6(1)(a) of the GDPR.

Necessary and functional cookies do not require prior consent under the GDPR. Marketing cookies (Google Ads, Meta Pixel) are only activated with the user’s consent, which can be given or declined via the cookie banner.

If you believe that the processing of your personal data violates the provisions of the GDPR, you may file a complaint with the Hungarian National Authority for Data Protection and Freedom of Information (NAIH).

For questions regarding data protection, the Data Controller can be contacted at: