Privacy Policy

At Gamper, operated by TimeLab AI, S.L., we are committed to protecting and respecting the privacy of our users. This Privacy Policy details how we collect, use, store, and protect your personal information when you visit gamper.timelab.ai and use our services. By using this website, you accept the terms described in this policy.

Data controller

• Company name: TimeLab AI, S.L.
• Tax ID (NIF): B75994533
• Registered office: Carrer Gustavo Becquer 12 4t 1a, 08023, Barcelona, Espanya
• Privacy contact: privacy@timelab.ai

1. Information We Collect

We collect information in two main ways: information you provide directly and information collected automatically.

Information you provide directly

• Basic contact information (name, email)
• Company information
• Job title and role
• Any other information you choose to provide

Information collected automatically

• IP address
• Browser type and version
• Access times
• Pages viewed
• Navigation data
• Device information
• Usage patterns of our AI copilot

2. Use of Your Information

We use the collected information for:

• Service Delivery: to provide and improve Gamper, our AI copilot for investment management firms
• Product Development: to improve our services and develop new features
• Customer Support: to assist you with technical and service inquiries
• Communication: to send you important updates about our services
• Analytics: to understand how our services are used and improve them
• Legal Compliance: to meet regulatory requirements
• Business Operations: to manage our client relationships

Legal basis for processing (Art. 6 GDPR):

• Performance of a contract (Art. 6(1)(b)) — for service delivery and customer support.
• Consent (Art. 6(1)(a)) — for analytics cookies and commercial communications. You may withdraw consent at any time.
• Legitimate interest (Art. 6(1)(f)) — for product improvement, fraud prevention, and security.
• Legal obligation (Art. 6(1)(c)) — for the retention of tax and accounting records as required by law.

3. Sharing Your Information

We maintain strict controls over your information. We only share it with the following categories of recipients:

• Cloud infrastructure providers (hosting and storage)
• Google Ireland Limited / Google LLC, for Google Analytics (see Section 8 on international transfers)
• Calendly LLC — meeting-scheduling provider, when you request a demo through our booking link (see Section 8 on international transfers)
• Legal and accounting advisors when strictly necessary
• Competent authorities when required by law
• Acquirers or business partners in case of business transfer or merger, with prior notice to affected individuals

4. Data Security

We implement robust security measures including:

• Encryption of sensitive data
• Regular security assessments
• Access controls
• Secure data storage
• Regular security training for staff
• Incident response procedures

5. Your Rights

You have the following rights regarding your personal data:

• Access your data
• Correct inaccurate information
• Request deletion
• Restrict processing
• Data portability
• Object to processing
• Withdraw consent

Contact us at privacy@timelab.ai to exercise these rights.

Right to lodge a complaint: if you believe that the processing of your data infringes applicable regulations, you have the right to lodge a complaint with the Spanish Data Protection Agency (AEPD) at www.aepd.es.

6. Data Retention

We retain your data for the following periods:

• Leads and prospective customers: up to 24 months from last contact, or until you request deletion.
• Active customers: for the duration of the contract and, afterwards, for the applicable legal retention periods (up to 6 years for commercial and tax obligations).
• Analytics data (cookies): as per the durations stated in the Cookie Policy.
• Data subject to legal obligation: until the legally required retention period ends.

7. AI Processing

As an AI copilot for investment management firms, Gamper processes data to assist client outreach, generate proposals, schedule meetings, and answer portfolio inquiries on behalf of our customers. We:

• Process data using AI algorithms under human oversight
• Apply AI ethical guidelines and regularly audit our AI processes
• Keep customers’ processed data segregated and confidential
• Maintain transparency about how AI is used in each workflow

8. International Data Transfers

Some of our providers process data outside the European Economic Area (EEA). In particular:

• Google Analytics, operated by Google LLC (USA) — the transfer is covered by the EU-US Data Privacy Framework and, where applicable, by the Standard Contractual Clauses approved by the European Commission.
• Calendly, operated by Calendly LLC (USA) — when you book a demo through our link, the transfer is covered by the EU-US Data Privacy Framework and, where applicable, by the Standard Contractual Clauses approved by the European Commission.

In all cases we ensure the safeguards required by the GDPR to preserve the level of protection of your personal data and uphold the rights granted to you by applicable regulations.

9. Changes to This Policy

We may update this policy periodically. Significant changes will be communicated through:

• Website notifications
• Email communications
• Service announcements

10. Contact Us

For privacy-related inquiries:

Email: privacy@timelab.ai

Address: Carrer Gustavo Becquer 12 4t 1a, 08023, Barcelona, Espanya

Last updated: 20 May 2026