Privacy Policy
Effective Date: 22/05/2025
Effective Date: 22/05/2025
Uxia ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, store, and share your personal data when you interact with our platform, website, and related services. It also outlines your rights under applicable data protection laws, including the General Data Protection Regulation (GDPR).
1. Who We Are
Uxia is a company based in Spain that provides AI-powered UX testing tools. We are the data controller for the personal data processed under this Privacy Policy.
If you have any questions or concerns, you can contact us at:
Email: hello@uxia.app
2. Information We Collect
We may collect the following categories of information:
a. Information You Provide
Name, email address, and password
Company name and role (for team accounts)
Billing and payment details (via Stripe)
Uploaded test content or configurations
Feedback and communications
b. Information We Collect Automatically
IP address, browser type, and device data
Usage behavior (e.g. clicks, page views)
Anonymised session recordings and heatmaps (via Hotjar)
Cookies and tracking technologies
c. Payment Information
All payments are processed by Stripe, our secure payment gateway. Uxia does not store or process any sensitive cardholder data directly. Stripe handles this in accordance with PCI-DSS standards.
3. How We Use Your Data
We use your data to:
Provide and maintain the Uxia platform
Authenticate users and manage accounts
Generate test results using AI models
Analyze behavior to improve the user experience (e.g. using Hotjar)
Respond to support requests and feedback
Process payments and manage subscriptions
Send marketing emails (with your consent)
Ensure platform security and legal compliance
4. Legal Basis for Processing (GDPR)
Our data processing is based on the following legal grounds:
Contractual necessity – to provide the service you've signed up for
Legitimate interest – for improving the platform, support, and security
Legal obligation – for tax and regulatory compliance
Consent – for marketing communications and optional cookies
5. Sharing Your Information
We do not sell your data. We may share your personal information with:
Stripe, to process payments securely
Cloud infrastructure providers (e.g., AWS) for hosting
Analytics tools (e.g., Plausible) to improve performance
CRM/email service providers, for sending newsletters or product updates
Legal authorities, when required to comply with law or protect rights
All third parties are bound by GDPR-compliant data processing agreements.
6. Marketing Communications
If you opt in, we may send you CRM-based email communications, including product updates, tips, and special offers. You may unsubscribe at any time by clicking the link in the footer of any marketing email or contacting us directly.
Transactional emails (e.g. password resets, invoices, important app updates) will still be sent regardless of your marketing preferences.
7. Cookies and Tracking
We use cookies and similar technologies to:
Keep you logged in securely
Analyze usage and improve the platform
Track user behavior
You can manage your cookie preferences through your browser settings or the cookie banner displayed on our website.
8. International Data Transfers
Some of our service providers (like AWS, OpenAI, or Stripe) may store or process data outside the EU. In such cases, we ensure appropriate safeguards are in place, such as:
Standard Contractual Clauses (SCCs) approved by the European Commission
Data processing agreements ensuring GDPR-level protection
9. Data Retention
We retain your personal data only as long as necessary to:
Provide services to you
Fulfill legal and regulatory obligations
Resolve disputes or enforce our agreements
When your data is no longer needed, we delete or anonymize it.
10. Your Rights
Under GDPR, you have the right to:
Access your personal data
Correct inaccurate or incomplete information
Request deletion ("right to be forgotten")
Restrict or object to processing
Receive your data in a portable format
Withdraw consent at any time
Lodge a complaint with a data protection authority
To exercise your rights, contact us at hello@uxia.app.
11. Security
We take data security seriously and use:
TLS encryption for data in transit
Role-based access control
Secure infrastructure and encryption at rest (where applicable)
Regular audits and vulnerability scanning
However, use Uxia responsibly and keep your login credentials safe.
12. Children's Privacy
Uxia is not intended for individuals under 18 years of age. We do not knowingly collect data from children. If you believe a child has submitted personal data, please contact us so we can delete it.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Material changes will be communicated to you via email or through the Service. Continued use of Uxia after the updated policy takes effect constitutes your acceptance.
14. Contact Us
For questions or concerns regarding your privacy or this policy, please contact: hello@uxia.app
Uxia ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, store, and share your personal data when you interact with our platform, website, and related services. It also outlines your rights under applicable data protection laws, including the General Data Protection Regulation (GDPR).
1. Who We Are
Uxia is a company based in Spain that provides AI-powered UX testing tools. We are the data controller for the personal data processed under this Privacy Policy.
If you have any questions or concerns, you can contact us at:
Email: hello@uxia.app
2. Information We Collect
We may collect the following categories of information:
a. Information You Provide
Name, email address, and password
Company name and role (for team accounts)
Billing and payment details (via Stripe)
Uploaded test content or configurations
Feedback and communications
b. Information We Collect Automatically
IP address, browser type, and device data
Usage behavior (e.g. clicks, page views)
Anonymised session recordings and heatmaps (via Hotjar)
Cookies and tracking technologies
c. Payment Information
All payments are processed by Stripe, our secure payment gateway. Uxia does not store or process any sensitive cardholder data directly. Stripe handles this in accordance with PCI-DSS standards.
3. How We Use Your Data
We use your data to:
Provide and maintain the Uxia platform
Authenticate users and manage accounts
Generate test results using AI models
Analyze behavior to improve the user experience (e.g. using Hotjar)
Respond to support requests and feedback
Process payments and manage subscriptions
Send marketing emails (with your consent)
Ensure platform security and legal compliance
4. Legal Basis for Processing (GDPR)
Our data processing is based on the following legal grounds:
Contractual necessity – to provide the service you've signed up for
Legitimate interest – for improving the platform, support, and security
Legal obligation – for tax and regulatory compliance
Consent – for marketing communications and optional cookies
5. Sharing Your Information
We do not sell your data. We may share your personal information with:
Stripe, to process payments securely
Cloud infrastructure providers (e.g., AWS) for hosting
Analytics tools (e.g., Plausible) to improve performance
CRM/email service providers, for sending newsletters or product updates
Legal authorities, when required to comply with law or protect rights
All third parties are bound by GDPR-compliant data processing agreements.
6. Marketing Communications
If you opt in, we may send you CRM-based email communications, including product updates, tips, and special offers. You may unsubscribe at any time by clicking the link in the footer of any marketing email or contacting us directly.
Transactional emails (e.g. password resets, invoices, important app updates) will still be sent regardless of your marketing preferences.
7. Cookies and Tracking
We use cookies and similar technologies to:
Keep you logged in securely
Analyze usage and improve the platform
Track user behavior
You can manage your cookie preferences through your browser settings or the cookie banner displayed on our website.
8. International Data Transfers
Some of our service providers (like AWS, OpenAI, or Stripe) may store or process data outside the EU. In such cases, we ensure appropriate safeguards are in place, such as:
Standard Contractual Clauses (SCCs) approved by the European Commission
Data processing agreements ensuring GDPR-level protection
9. Data Retention
We retain your personal data only as long as necessary to:
Provide services to you
Fulfill legal and regulatory obligations
Resolve disputes or enforce our agreements
When your data is no longer needed, we delete or anonymize it.
10. Your Rights
Under GDPR, you have the right to:
Access your personal data
Correct inaccurate or incomplete information
Request deletion ("right to be forgotten")
Restrict or object to processing
Receive your data in a portable format
Withdraw consent at any time
Lodge a complaint with a data protection authority
To exercise your rights, contact us at hello@uxia.app.
11. Security
We take data security seriously and use:
TLS encryption for data in transit
Role-based access control
Secure infrastructure and encryption at rest (where applicable)
Regular audits and vulnerability scanning
However, use Uxia responsibly and keep your login credentials safe.
12. Children's Privacy
Uxia is not intended for individuals under 18 years of age. We do not knowingly collect data from children. If you believe a child has submitted personal data, please contact us so we can delete it.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Material changes will be communicated to you via email or through the Service. Continued use of Uxia after the updated policy takes effect constitutes your acceptance.
14. Contact Us
For questions or concerns regarding your privacy or this policy, please contact: hello@uxia.app