1. Inledning

This data and privacy policy describes how user data is handled within the services provided on this website. Our work is built on a fundamental principle: protecting user privacy by refraining from any form of permanent data storage.

2. Fundamental principle: no data storage

The core of our service is a strict policy of not saving any user data. All data, including the answers the user provides and all internally processed information, is deleted immediately and permanently after the analysis has been generated and presented. No information is stored on our servers or in any other database.

3. Data processing to generate the analysis

The process of generating a user's personality analysis involves several steps and is designed to remain entirely temporary:

• Data entry: The user provides answers to the personality test questions.
• Internal processing: The user's answers are processed immediately on our server by our in-house software. The software calculates aggregated data in the form of domains and facets. This processing happens in real time without saving any intermediate results.
• Compilation of the input: The internally calculated domains and facets are combined with the user's answers to the additional personal questions. This compiled dataset forms the complete input required for the final analysis.
• Secure transfer: The compiled dataset is transferred in real time through an encrypted API to an external provider's AI service.
• External processing and generation: The AI service processes the input solely to generate the text-based analysis.
• Permanent deletions: Immediately after the analysis has been created and returned to the user's browser, all data (initial answers, internally calculated data, and the compiled input) is removed from all systems, ours and the third party's.

4. Use of third-party provider

To create the text analysis you request, we send only what is needed to our AI provider. The transfer is necessary for us to deliver your service. This is important for you to know:

• We never sell your information.
• Our provider does not train its models on your content. What you send is only used to produce your analysis.
• No unnecessary storage. Information may be kept for a very short time (up to 30 days) to run the service and prevent abuse. Then it is deleted. When possible we use modes where the data is not stored at all afterwards.
• Encrypted and protected. Everything is sent over a secure, encrypted connection.
• We delete your answers on our side once delivery is complete.

5. Omfattning av behandlade uppgifter

The processed data consists of the answers the user actively provides, along with the aggregated data (domains and facets) that are internally and automatically generated from those answers.

We do not collect, process, or store any personally identifiable information (PII), including but not limited to: names, email addresses, IP addresses, or geographic data.

6. Use of cookies

The website uses technically necessary session cookies. Their purpose is to maintain functionality during an ongoing test session. These cookies are temporary and are deleted automatically when the browser is closed.

The website does not use cookies for tracking, analytics, or marketing.

7. User rights under the GDPR

Under GDPR, individuals have rights regarding their personal data, such as access, rectification, and erasure. Because our service does not store any personal data after a session ends, there is no data to access, correct, or delete.

The legal basis for the temporary data processing is the user's consent, given by actively using the service.

8. Changes to the policy

This policy may be updated. The current version is always published on this page, with the date of the latest change noted.

9. Kontaktinformation

For questions about this data and privacy policy, please contact us at: support@exora.se