Privacy Policy

CognIQ ("we", "us", "our") respects your privacy and is committed to protecting the personal data you provide to us. This Privacy Policy explains what data we collect, how we use it, and your rights regarding your data.

We collect the following categories of data: (a) Account data: email address, name, hashed password; (b) Test data: question responses, response timing, question sequences, scores, cognitive ability estimates; (c) Behavioral data: response time patterns, navigation patterns, language preferences; (d) Technical data: IP address, browser type, device identifiers.

EXPLICIT CONSENT NOTICE: By using the CognIQ platform and creating an account, you expressly consent that your test responses, answer patterns, timing data, and behavioral data may be used to: (a) Improve our AI algorithms and adaptive testing models; (b) Train machine learning models to improve question accuracy and calibration; (c) Academic research on intelligence and cognitive abilities (anonymized form only); (d) Improve the overall platform experience. Data used for AI training is anonymized before processing — personal identifiers are removed. You may withdraw this consent at any time by deleting your account.

We process your data based on: explicit consent given at registration; our legitimate interests in improving our services; performance of the contract with you. Users in Romania and the EU have full GDPR rights including the right of access, rectification, erasure ("right to be forgotten"), data portability, and objection.

Account data is retained for the lifetime of the account or up to 5 years from last activity. Upon account deletion, personally identifiable data is deleted within 30 days. Aggregated anonymous data may be retained indefinitely for research purposes.

We use third-party AI providers (OpenAI, OpenRouter, Ollama) for question generation and result analysis. Content sent to these providers is subject to their own privacy policies. We do not send personally identifiable data (email, name) to AI providers.

We implement technical and organizational measures to protect your data: AES-256 encryption for API keys, HTTPS for all traffic, bcrypt hashing for passwords, expiring JWT authentication tokens.

For requests regarding your data, contact us at: privacy@cogniq.app