Privacy Policy

KotioAI is the controller of the personal data described here. For any privacy question or to exercise your rights, contact joonas@kotioai.com.

Account data: your name, email address, and a securely hashed password.

Content you provide: the listings you enter, documents you upload, your notes, search criteria and preferences, and any shared workspace you create or join.

Technical data: minimal server logs and a few values stored in your browser (interface language, selected market, and your session) needed to run the service.

We do not buy data about you, and we never contact or scrape listing portals — every property detail comes from you, on your device.

To provide the service: score listings against your criteria, analyse the documents you upload, generate buyer-agent reviews, and keep your account and workspace working.

To keep the service secure: prevent abuse, fraud and excessive use.

We do not sell your data or use it for third-party advertising.

To generate analysis, the text of the listings and documents you submit is sent to our AI provider (OpenAI) for processing. Your content is not used to train their models.

Other processors help us run the service: our hosting provider, and an email provider used for transactional messages such as password resets.

Some processing may take place outside Finland (within the EU/EEA or under appropriate safeguards for transfers, e.g. the EU Standard Contractual Clauses).

We process your data to perform our contract with you (providing the service), on the basis of our legitimate interest in operating and securing the service, and on your consent where it applies. You can withdraw consent at any time.

We keep your data while your account is active. Guest sessions are short-lived and cleared automatically. When you delete your account, your personal data and content are deleted.

Under the GDPR you have the right to access, correct, delete, export, restrict, and object to the processing of your data, and to withdraw consent. You can delete your account and data at any time in Settings, or contact us.

You also have the right to lodge a complaint with the Finnish Data Protection Ombudsman (Tietosuojavaltuutetun toimisto).

Passwords are stored hashed, access is restricted, and the documents you upload are read to produce your analysis and are not shared with other users.

We use only the storage needed to run the app (your language, market and session). We do not use third-party advertising or cross-site tracking cookies.

KotioAI is intended for adults and is not directed at children under 18.

We may update this policy; material changes will be reflected here with a new date.