Privacy Policy
Last updated: 14 June 2026
This policy explains how FrontChime processes the personal data collected through this website, its early-access form and the assistant demonstration, in accordance with Regulation (EU) 2016/679 (GDPR) and Spanish Organic Law 3/2018 (LOPDGDD).
Data controller
- Controller: FrontChime — operated by a private individual (España)
- Email: hi@frontchime.com
- Website: https://frontchime.com
- Full controller identification is available on request at hi@frontchime.com; the legal notice will be published once the economic activity is registered.
- Data Protection Officer: not appointed (the Art. 37 GDPR conditions do not apply). Data-protection contact: hi@frontchime.com.
Our dual role: controller and processor
For this website, the early-access form and the public demonstration, FrontChime acts as the data controller. When we provide the service to business customers in the future, those businesses will be the controllers of their end-customers’ data and FrontChime will act as a processor on their behalf (Art. 28 GDPR), governed by a data processing agreement.
Processing, purposes, legal basis and retention
| Processing | Data | Purpose | Legal basis | Retention |
|---|---|---|---|---|
| Assistant demonstration | The chat content you type; optionally your name and phone if you provide them | Show how the product works and improve the service | Legitimate interest (Art. 6(1)(f)) in demonstrating and improving the product | Max. 30 days, then deleted |
| Contact capture (real customers) | Name, phone, email and preferred time | Handle the appointment or callback request for the business | Pre-contractual steps / service performance (Art. 6(1)(b)) | For the duration of the relationship and applicable legal periods |
| Early access | Name, phone, business type and preferred time | Contact you about early access to FrontChime | Consent (Art. 6(1)(a)) | Until you withdraw consent, or max. 24 months |
| Security and abuse prevention | IP address | Rate limiting and protecting the service | Legitimate interest (Art. 6(1)(f)) in security | In memory only, transiently; not stored |
| Web analytics | Aggregated, anonymous usage data (no cookies) | Measure site traffic in aggregate | Legitimate interest (Art. 6(1)(f)); cookieless measurement | Aggregated; no persistent identifiers |
Special-category data (health)
The assistant does not request health data and is instructed not to record it. Please do not enter medical or sensitive information in the chat; for those matters we will refer you to a consultation with the specialist. We apply data minimisation and short retention periods to reduce any incidental exposure.
Recipients and processors
We do not sell your data. To provide the service we rely on providers acting as processors or sub-processors (hosting, database, AI model, email delivery and error monitoring). You can see the current list on the sub-processors page.
International transfers
Some providers process data outside the European Economic Area (e.g. in the US). In those cases, transfers rely on the European Commission’s Standard Contractual Clauses and, where the provider is certified, on the EU-US Data Privacy Framework. You may request a copy of the safeguards.
We do not train models on your conversations
Conversations with the assistant are not used to train AI models. Our AI provider (Anthropic) does not train its models on content submitted through its commercial API.
Automated decisions
We do not make automated decisions with legal or similarly significant effects within the meaning of Art. 22 GDPR. The decision to contact you or handle an appointment is always made by a person at the business.
Your rights
You can exercise your rights free of charge by writing to hi@frontchime.com:
- Access, rectification and erasure of your data.
- Objection to and restriction of processing.
- Portability of the data you have provided to us.
- Withdraw consent at any time (early access), without affecting the lawfulness of prior processing.
If you believe we have not handled your request properly, you may lodge a complaint with the Spanish Data Protection Agency (AEPD), www.aepd.es.
Minors
The site and service are aimed at adults and businesses. We do not knowingly collect data from minors.
Changes
We may update this policy to reflect legal or service changes. We will publish the current version on this page with its update date.