Last Updated: 2026-01-23

Privacy Policy

Last Updated: 2026-01-30

1. General Information

This Privacy Policy applies to the website www.cyranosales.com ("Website"), the application app.cyranosales.com, and our Chrome Extension (collectively, the "Service"), operated by Histack, Inc. ("we," "us," "our").

Responsible Controller:

Histack, Inc.

1111B S Governors Ave STE 21755, Dover, DE 19904, USA

Email: info@histack.io

2. Data Collection on our Website (Marketing)

When you visit www.cyranosales.com, we process the following data:

  • Server Logs: Your IP address, browser type, and timestamp are processed technically to ensure site stability and security.
  • Privacy-First Analytics: We use Plausible Analytics (via rpcld.com) for web analytics. This tool is configured to be "cookieless" and does not store personal data profiles.
  • Booking Strategy Sessions (Cal.com): If you book a meeting via our embedded calendar, your name, email, and appointment details are processed by Cal.com, Inc. (USA) to schedule the call.

3. Data Collection in our Application & Extension

When you register for or use app.cyranosales.com or install our Chrome Extension, we process data to provide our SaaS product:

  • Account Data: We collect your name, email address, password (hashed), and login method (e.g., Google/Microsoft SSO) to create and manage your account.
  • Contextual Data (LinkedIn): When you actively use the Chrome Extension Sidekick features, we process public information from the page you are viewing (specifically LinkedIn public profiles, posts, and feed items) to provide relevant, context-aware AI assistance. This data is processed to generate suggestions and is not used to build independent databases of LinkedIn users.
  • User Content: To provide our AI sales training service, we process the texts, instructions, and other content you explicitly upload or generate.
  • Authentication & Security: We use strictly necessary cookies and local storage tokens solely to keep you logged in and ensure the security of your session.
  • Payment Data: We do not store full credit card details. Payments are processed by our PCI-compliant provider, Stripe, Inc.
  • AI Observability & Tracing: We use Langfuse (hosted in the EU) to monitor the performance and accuracy of our AI features. This processes user interactions and technical logs to identify errors, hallucinations, and improve model quality.

Purpose & Legal Basis

  • Purpose: To provide the Service, deliver context-aware AI suggestions (Sidekick), and, if included in your subscription plan, to train AI models specific to your account.
  • Legal Basis: Performance of Contract (Art. 6(1)(b) GDPR).

4. Hosting & International Data Transfer

  • Database Location: Supabase (Frankfurt, Germany). Your core user data resides in the European Union.
  • AI Tracing Location: Langfuse (Ireland). Your AI interaction logs and performance data reside in the European Union.
  • Hosting Provider: Vercel Inc. (USA/Global). The frontend is delivered via a global CDN (Content Delivery Network).

Note on International Transfers:

While your core database is located in Germany, our company (Histack, Inc.) and some of our sub-processors (e.g., Vercel, Stripe, Resend, OpenRouter) are based in the USA. Therefore, data may be accessed from or transferred to the USA. We ensure appropriate safeguards by relying on Standard Contractual Clauses (SCCs) and the EU-US Data Privacy Framework (DPF) where applicable.

5. Third-Party Sub-processors

To provide our service, we use the following third-party service providers who may process your data:

  • Stripe, Inc. (USA) - Payment Processing
  • Cal.com, Inc. (USA) - Meeting Scheduling
  • Resend, Inc. (USA) - Transactional Emails
  • OpenRouter (USA) - AI Model Gateway
  • Langfuse (EU Cloud) - AI Observability & Error Tracing

Data Processing Agreement (DPA): For B2B customers requiring a DPA under GDPR Art. 28, please contact us at info@histack.io.

6. Your Rights

Depending on your location (e.g., EU/GDPR), you may have the right to access, correct, delete, or restrict the processing of your personal data. To exercise these rights, please contact us at info@histack.io.