Back to Home
GDPR

Privacy Policy

Last updated: April 09, 2026

1. Introduction

Star Vision Media ("we", "us", "our") provides high-quality Managed AI services and prioritizes your privacy without compromise. This policy explains how we protect your data in accordance with GDPR (Regulation 2016/679) and Swedish legislation. As a Managed Service Agency, we take full responsibility for the technical security of the environments we manage.

2. Data Controller & Processor Role

Star Vision Media Annandagsgatan 10, 415 44 Gothenburg, Sweden Email: hello@starvisionmedia.com When delivering Managed AI services, Star Vision Media acts as a data processor for our clients, who are the data controllers for their respective customer data. This is governed by a dedicated Data Processing Agreement (DPA).

3. Data Collection

We only collect data strictly necessary to operate and optimize your Nexus AI™ agent: • Contact details: For service delivery and invoicing. • Operational data: Logs from AI interactions used for quality assurance and proactive service optimization. • Technical data: IP addresses and device information to maintain security and protect against breaches.

4. Zero-Training Policy (Our Guarantee)

To protect your business, we enforce a strict **Zero-Training Policy**. No customer or interaction data generated within your Nexus AI™ instance is **ever** used to train public LLM models (such as Google Gemini or OpenAI). Your intelligence is isolated and remains your trade secret.

5. EU Hosting & Architecture

All data within our Managed Service is hosted exclusively on secure servers within the EU/EEA. We use Enterprise APIs with end-to-end encryption to ensure no data is exposed to unauthorized parties.

6. Storage & Deletion

Customer data is deleted or anonymized no later than 12 months after the managed service ends, except where law requires longer retention. We fulfill 'Right to be Forgotten' requests within 30 days.

7. AI-Specific Transparency & Security

We continuously monitor Nexus AI™ to prevent hallucinations and ensure performance. We use Role-Based Access Control (RBAC) and proactive threat monitoring to protect your managed infrastructure.

8. Supervisory Authority

In case of complaints, you have the right to contact the Swedish Authority for Privacy Protection (IMY), www.imy.se.