Version 1.1.0 • Last updated: May 27, 2026
Dotlane, is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR) as a European company. Our platform provides an enhanced AI interaction experience, integrating multiple models such as Claude, Grok, Deepseek, and others within a single interface. Data security is our priority, and all personal data is encrypted to safeguard your information. This Privacy Policy outlines how we collect, process, and protect your Personal Data.
In simple terms: your prompts, uploaded files, conversation content, and generated outputs are processed to provide the service you ask for. They are not sold, and they are not used by Dotlane to train AI models. When a request must be sent to an AI model provider, we use available contractual, technical, and account-level protections designed to prevent your content from being stored longer than necessary or used for model training.
To receive information about your Personal Data, the purposes, and the parties with whom the Data is shared, contact the Data Controller.
Dotlane AI
165 avenue de Bretagne
59000 Lille, France
Contact email: contact@dotlane.ai DPO contact email: contact+dpo@dotlane.ai
We collect the following types of Personal Data, either provided by you or collected automatically:
Unless specified otherwise, all Data requested by Dotlane is mandatory to provide our services. Failure to provide this Data may prevent us from delivering the full functionality of the platform. Where Data is optional, this will be clearly indicated, and non-provision will not affect service availability. Users uncertain about mandatory Data may contact the Data Controller.
We process Personal Data with robust security measures, including encryption at rest and in transit, to prevent unauthorized access, disclosure, modification, or destruction. Processing is carried out using secure IT systems, following strict organizational procedures aligned with the purposes outlined in this policy. Access to Data is restricted to authorized personnel (e.g., system administrators, customer support) and trusted third-party processors (e.g., hosting providers, analytics services) appointed under GDPR-compliant agreements. An updated list of these processors is available upon request.
We process Personal Data under the following GDPR-compliant legal bases:
We will clarify the specific legal basis upon request, including whether Data provision is a statutory or contractual requirement.
Data is processed at our operating offices in France and by third-party processors located within the European Economic Area (EEA). If Data is transferred outside the EEA (e.g., to AI model providers), we ensure GDPR-compliant safeguards, such as Standard Contractual Clauses (SCCs) or adequacy decisions, are in place. Details on transfer locations are available upon request.
Dotlane integrates several AI model providers to let users choose between different models and capabilities. Depending on the selected model, prompts, conversation context, uploaded files, and generated outputs may be transmitted to the relevant provider solely to generate the requested answer.
Dotlane focuses on two main guarantees for prompts and user content processed through Dotlane:
Dotlane may use models and infrastructure from providers such as OpenAI, Anthropic Claude, Google Gemini, Mistral, xAI Grok, DeepSeek, Moonshot/Kimi, Meta Llama, Qwen, Minimax, Perplexity, and image-generation infrastructure providers. Their exact legal terms and technical implementations differ, but Dotlane's operating rule is consistent: use the strongest available no-training, limited-retention, and confidentiality settings for each provider or model route.
Where a provider must keep short-lived operational or abuse-prevention logs, those logs are limited to what is necessary for security and service integrity and are deleted within the provider's stated retention window, generally no longer than 30 days unless a legal or security exception applies.
Dotlane uses Zero Data Retention where supported by its AI model providers. In practice, this means requests sent to those providers are processed to generate the answer and are not retained by the provider for training or long-term storage. Where a provider uses a different enterprise privacy mechanism, Dotlane uses the strongest available no-training and limited-retention setting for the relevant API or business account.
Because each AI provider maintains its own technical and contractual framework, Dotlane currently publishes this as a general Zero Data Retention commitment rather than a detailed provider-by-provider legal terms table. This keeps the documentation readable while reflecting how the protection is applied operationally. You may contact our DPO at contact+dpo@dotlane.ai for more information about the providers used for your account or about a specific model.
Some models available in Dotlane may include advanced reasoning capabilities. The model list may present providers and models without always separating "reasoning" and "non-reasoning" categories in the legal documentation. This does not change the privacy treatment of your Data: reasoning-capable models are subject to the same confidentiality, GDPR, security, and training-use commitments described in this Privacy Policy.
Reasoning traces, intermediate reasoning steps, or internal model deliberations may be generated by providers as part of producing an answer. Dotlane processes only the content necessary to provide, display, store, secure, and improve the service. We recommend that you avoid entering special categories of Personal Data or highly confidential information unless necessary for your use case.
Personal Data is retained only for as long as necessary to fulfill the purposes for which it was collected, unless a longer retention is required by law or based on your consent. Specifically:
After the retention period, Personal Data is securely deleted or anonymized, rendering rights such as access or erasure unenforceable.
Dotlane provides in-app controls that let users delete their conversation history and user Data directly from their account interface in one click. This gives you immediate control over the content stored in your Dotlane account without needing to contact support.
You can also request deletion of your account Data by contacting our DPO at contact+dpo@dotlane.ai. Some limited information may be retained where required for security, fraud prevention, accounting, dispute handling, or legal compliance.
Dotlane uses cookies and trackers to enhance functionality and user experience. For details, consult our Cookie Policy.
Under the GDPR, you have the following rights regarding your Personal Data, subject to applicable law:
To exercise these rights, contact our DPO at contact+dpo@dotlane.ai. Requests are free and will be addressed within one month, with information provided as required by law. We will notify any recipients of your Data about rectification, erasure, or restrictions unless this is impossible or involves disproportionate effort.
You may object to processing for direct marketing at any time without justification. If you object, your Data will no longer be used for such purposes.
We implement state-of-the-art encryption (e.g., AES-256 for data at rest, TLS 1.3 for data in transit) to protect your Personal Data. Regular security audits and access controls ensure ongoing protection.
Your Personal Data may be used for legal purposes (e.g., in court or to prevent misuse of our services). We may also disclose Data to public authorities if required by law.
For operational purposes, we collect system logs (e.g., IP addresses) to monitor and maintain service performance. These logs are securely stored and only used for legitimate purposes.
We may update this policy to reflect legal or operational changes. Updates will be communicated via our platform or by direct notification (if feasible). Continued use of Dotlane after changes implies acceptance. If changes require new consent, we will obtain it as needed.
Latest update: May 27, 2026