Back to klyo.com

Privacy Policy

How we collect, use, and protect your personal data.

Last updated: April 2026

Introduction

Klyo Technologies LLC (“Klyo”, “we”, “us”) is committed to protecting your privacy. We build the Enterprise AI Security Gateway, which means privacy and security are not features for us — they are the product. This Privacy Policy explains what personal data we collect when you visit klyo.com or interact with us, how we use it, and your rights under applicable data protection laws including the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

Our Privacy & Security Commitments

  • EU-only servers. All website and inquiry data is hosted exclusively on servers located in the European Union, primarily in Germany. No customer data is processed in the US.
  • End-to-end encryption. Data is encrypted in transit (TLS 1.3) and at rest (AES-256). Keys are managed under strict access controls.
  • Zero tracking. No analytics, advertising, or third-party trackers. We do not profile visitors or sell data — not now, not ever.
  • Data minimization. We only collect what is strictly necessary to respond to your inquiry. No hidden fields, no enrichment from third-party data brokers.
  • We dogfood our own product. The same zero-trust controls, audit trails, and PII redaction we sell to enterprises protect your data with us.
  • GDPR & Swiss DPA aligned. Built to meet EU GDPR, Swiss Federal Act on Data Protection (FADP), and EU AI Act requirements from day one.

Data we collect

Contact and demo form

When you submit our contact form or request a demo, we collect:

  • Your name
  • Your email address
  • Your company name (optional)
  • The message you send us

Technical data

When you visit klyo.com, our hosting provider may automatically log standard server data such as your IP address, browser type, referring page, and access timestamp. This data is used solely to operate the website securely and is not used for tracking or profiling.

Cookies

We use only essential cookies required for the website to function properly (e.g., remembering your language preference and dark-mode setting). We do not use tracking, advertising, or analytics cookies.

How we use your data

We use the personal data you provide to:

  • Respond to your inquiry or demo request
  • Schedule and conduct demo calls
  • Send relevant follow-up communications about your inquiry
  • Comply with legal obligations

Our legal basis for processing under the GDPR is your consent (Art. 6(1)(a)) and our legitimate interest in responding to inquiries (Art. 6(1)(f)).

Sharing with third parties

We do not sell your personal data. We share data only with carefully selected service providers who help us operate our website and respond to inquiries:

  • Cal.com — for scheduling demo calls (data: name, email, time slot)
  • Hosting and infrastructure providers — to deliver the website and process form submissions
  • Email providers — to deliver our responses to you

All processors are bound by Data Processing Agreements (DPAs) that require GDPR-equivalent safeguards.

Where your data is processed

Klyo Technologies LLC is incorporated in Delaware, United States, but all data collected through klyo.com is stored and processed exclusively on servers located in the European Union, primarily in Germany. We deliberately chose EU-based infrastructure to provide strong baseline protections under the GDPR and to keep your data within European jurisdiction. We do not transfer personal data to the United States. In the rare cases where a sub-processor (such as Cal.com) operates servers outside the EEA, we rely on Standard Contractual Clauses approved by the European Commission to ensure an adequate level of protection equivalent to the GDPR.

Data retention

We retain inquiry and demo-request data only as long as needed to respond to your request and for a reasonable follow-up period (typically up to 24 months), unless we are required by law to retain it longer. You can request deletion of your data at any time.

Your rights

Depending on your jurisdiction, you have the right to:

  • Access — receive a copy of the personal data we hold about you
  • Rectification — correct inaccurate data
  • Erasure — request deletion of your data
  • Restriction — limit how we process your data
  • Portability — receive your data in a structured format
  • Objection — object to processing based on legitimate interests
  • Withdraw consent — at any time, without affecting prior processing
  • Lodge a complaint — with your local data protection authority

To exercise any of these rights, contact us at privacy@klyo.com.

Data security

Security is the core of what we build. We apply the same controls to our own infrastructure that we sell to enterprise customers: TLS 1.3 encryption in transit, AES-256 encryption at rest, strict role-based access controls (RBAC), continuous infrastructure monitoring, immutable audit logs, regular security reviews, and PII redaction in any internal logging. Access to data is limited to a minimum number of authorized personnel on a need-to-know basis. Our infrastructure providers are SOC 2 Type II and ISO 27001 certified. While no method of transmission over the Internet can be guaranteed 100% secure, we engineer our systems on a zero-trust principle — assume breach, minimize blast radius, log everything.

Children’s privacy

Klyo is a B2B service intended for use by enterprises and their employees. Our website and services are not directed at children under 16, and we do not knowingly collect personal data from children.

Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top of this page indicates when it was last revised. Material changes will be communicated through our website or by email where appropriate.

Contact

For privacy-related questions or to exercise your rights, contact:

Klyo Technologies LLC
8 The Green #12897
Dover, DE 19901
United States of America
privacy@klyo.com