Privacy Policy
Last updated: October 2025
In summary: Lamadeep is committed to protecting your privacy and personal data in accordance with GDPR and European laws. You maintain full control over your data and can modify or delete it at any time.
1. Introduction
Lamadeep ("we", "our") is a collective intelligence platform based in Europe. We take the protection of your personal data very seriously and are committed to respecting the General Data Protection Regulation (GDPR) and all applicable data protection laws.
This privacy policy explains how we collect, use, store and protect your personal data when you use our platform.
2. Data Controller
Lamadeep
European company
Email: privacy@lamadeep.com
3. Personal Data Collected
3.1 Data You Provide Directly
- Account information: name, first name, email address, password (encrypted)
- Organization information: organization name, logo, custom settings
- User content: documents, files, chat messages, conversations with AI assistant
- Payment information: processed via Stripe (we do not store your banking data)
- Communications: emails you send us, support requests
3.2 Automatically Collected Data
- Connection data: IP address, browser type, operating system
- Usage data: pages viewed, features used, time spent
- Cookies and similar technologies: see section 9
- Technical logs: to ensure security and proper functioning
4. Legal Basis and Processing Purposes
| Purpose | Legal Basis |
|---|---|
| Provision and management of services | Contract performance |
| Account creation and management | Contract performance |
| Payment processing | Contract performance |
| Customer support and assistance | Contract performance |
| Platform improvement | Legitimate interest |
| Security and fraud prevention | Legitimate interest / Legal obligation |
| Marketing communications (with consent) | Consent |
| Compliance with legal obligations | Legal obligation |
5. Data Sharing
5.1 We Never Sell Your Data
Lamadeep does not sell, rent or share your personal data for commercial purposes with third parties.
5.2 Limited Sharing with Service Providers
We share certain data with trusted providers for:
- Hosting: European clouds
- Payments: Stripe (secure payment processing)
- AI Services: Orchestration with major AI providers (see section 12)
- Email: Transactional email services
- External tools: Via Automate-Lamadeep, on-demand user connections
Independent AI Orchestrator: Lamadeep is an artificial intelligence orchestrator that guarantees independence through arbitration between responses from different AI systems. The platform can work with major commercial AI providers (OpenAI, Anthropic, Mistral AI, Cohere, Google AI) and open-source LLMs (Llama 3.1, 3.2, 3.3, Mixtral, Falcon, Bloom), according to your preferences and sovereignty needs.
These providers are contractually bound to protect your data and can only use it for specified purposes.
5.3 Sharing Within Your Organization
Data you share within your organization (documents, conversations) is accessible to members of your organization according to the permissions you define.
5.4 Legal Obligations
We may disclose your data if required by law or to protect our legal rights.
6. International Data Transfers
Your data is primarily stored and processed in Europe. Some providers may be located outside the European Economic Area (EEA).
In this case, we ensure that appropriate safeguards are in place (European Commission's standard contractual clauses, Privacy Shield certifications, etc.) to protect your data in accordance with GDPR.
7. Retention Period
| Data Type | Retention Period |
|---|---|
| Account data | Duration of your account + 30 days after deletion |
| Documents and content | Until deletion by user or account closure |
| Connection logs | 12 months |
| Billing data | 10 years (legal obligation) |
| Support conversations | 3 years after last interaction |
8. Your Rights (GDPR)
In accordance with GDPR, you have the following rights:
8.1 Right of Access
You can request a copy of all personal data we hold about you.
8.2 Right of Rectification
You can correct or update your inaccurate or incomplete data directly in your account or by contacting us.
8.3 Right to Erasure ("Right to be Forgotten")
You can request the deletion of your personal data under certain conditions.
8.4 Right to Restriction of Processing
You can request the restriction of processing of your data in certain cases.
8.5 Right to Data Portability
You can receive your data in a structured and commonly used format, and transmit it to another controller.
8.6 Right to Object
You can object to the processing of your data for direct marketing purposes or based on our legitimate interest.
8.7 Right to Withdraw Consent
When processing is based on your consent, you can withdraw it at any time.
8.8 Right to Lodge a Complaint
You have the right to file a complaint with your data protection authority.
To exercise your rights:
Send an email to privacy@lamadeep.com with a copy of your ID.
We will respond within a maximum of one month.
9. Cookies and Similar Technologies
9.1 Types of Cookies Used
Strictly Necessary Cookies (mandatory)
- Authentication and session management
- Security and fraud prevention
Performance Cookies (with consent)
- Analysis of platform usage
- Feature improvement
Functional Cookies (with consent)
- Remembering your preferences
- Interface personalization
9.2 Cookie Management
You can manage your cookie preferences via the banner that appears on your first visit, or by configuring your browser to refuse certain cookies.
10. Data Security
We implement robust security measures:
- Encryption: SSL/TLS for all communications, encryption of sensitive data at rest
- Authentication: encrypted passwords, option to enable two-factor authentication
- Access control: limited access to data according to the principle of least privilege
- Monitoring: access logs, anomaly detection
- Audits: regular security reviews
- Training: raising awareness among our teams about data security
In the event of a data breach likely to result in a high risk to your rights, we will inform you within 72 hours and notify the competent authority.
11. Children's Data
Our service is not intended for persons under 16 years of age (or the minimum legal age in your country). We do not knowingly collect personal data from children.
If we learn that a minor has provided us with personal data, we will delete it immediately.
12. Artificial Intelligence and Data Processing
12.1 Lamadeep: Independent AI Orchestrator
Lamadeep is an artificial intelligence orchestrator that coordinates and arbitrates responses from multiple AI systems to provide the best results (conversational assistant, semantic analysis, recommendations).
This orchestration architecture guarantees independence through arbitration: the platform compares and selects the best responses from different models, thus avoiding dependence on a single provider.
12.2 Compatibility with AI Systems and LLMs
Lamadeep can orchestrate major artificial intelligence systems:
- Commercial AI: OpenAI (GPT-4, GPT-5), Anthropic (Claude), Mistral AI, Cohere, Google AI
- Open-source LLMs: Llama 3.1, Llama 3.2, Llama 3.3 and future versions, Mixtral, Falcon, Bloom
You choose models according to your performance, cost and sovereignty needs. This flexibility allows deployment on European private cloud with the models of your choice, guaranteeing complete sovereignty over your data and your AI infrastructures.
12.3 Content Processing
Documents and messages you submit are processed by the AI models configured in your orchestration to respond to queries. This data is used only to provide you with the service and is not used to train external models without your explicit consent.
12.4 European Private Cloud Deployment
For organizations with strict data sovereignty requirements, Lamadeep can be deployed on European clouds or your on-premise infrastructure with open-source models like Llama, ensuring your data never leaves your environment.
12.5 Connection to External Tools via Automate-Lamadeep
The Automate-Lamadeep platform allows users to connect external tools on demand (CRM, ERP, databases, third-party APIs) to enrich collective intelligence.
These connections are made only at the explicit request of users and according to their authorizations. Data exchanged with these external tools is governed by the same protection principles as your other data.
12.6 Data Protection with AI Services
When orchestration uses third-party AI services, we have established strict data protection agreements (DPA - Data Processing Agreements) with each provider. Data is processed securely and is not used for model training without your agreement.
13. Policy Modifications
We may modify this privacy policy from time to time. In case of significant changes, we will inform you by email or via a notification on the platform.
The updated version will always be available on this page with the last update date.
14. Contact
For any questions regarding this privacy policy or your personal data:
Email: privacy@lamadeep.com
Support: support@lamadeep.com
We are committed to protecting your privacy and respecting your rights. Your trust is essential to us.