Home
Solutions
Platform
Pricing Demo

CoWalk Privacy Policy

Effective Date: 3 Jan 2026

Last Updated: 3 Jan 2026

CoWalk Ltd. ("CoWalk", "we", "us" or "our") operates the website at https://cowalk.ai and provides AI-powered Product Experts that are embedded in third-party web applications (collectively, the Service). This Privacy Policy explains how we collect, use, disclose and safeguard Personal Data when you interact with the Service.

1 Definitions

Personal Data: Information that identifies, relates to, describes or could reasonably be linked, directly or indirectly, to an identified or identifiable natural person.

Processing: Any operation performed on Personal Data (collection, storage, use, sharing, deletion, etc.).

Data Subject: A natural person to whom Personal Data relates.

Controller / Processor: As defined in the EU General Data Protection Regulation ("GDPR"). CoWalk generally acts as a processor on behalf of customers that embed our Service, and as a controller for Personal Data we collect for our own business purposes (e.g., marketing).

2 Scope

This Policy applies to Personal Data that we process in the context of the Service and to visitors of our public website.The Policy is drafted to comply with the Israeli Protection of Privacy Law 1981 ("PPL"), the GDPR and other applicable laws. If those laws grant stronger rights than are described here, we will honour the stronger right.

3 Categories of Personal Data We Collect

Data you provide directly

  • Account identifiers (name, business email, company, role)
  • Content you submit to the AI Product Expert (prompts, uploaded files, feedback)
  • Support communications

Data collected automatically

  • Device information (IP address, browser type, OS, language)
  • Usage information (features used, timestamps, log files)
  • Cookies, web beacons and similar technologies (see Section 11)

Data from third-party sources

  • Configuration or profile data supplied by the SaaS application in which our AI Product Expert is embedded
  • Integrations you authorise (e.g., CRM, ticketing or analytics tools)

4 Legal Bases for Processing (GDPR Art. 6)

Contractual necessity: Providing and maintaining the Service for Customer and End Users; responding to support requests

Legitimate interests: Service analytics, fraud prevention, product improvement (balanced against your rights and expectations)

Consent: Marketing communications; optional beta features (you may withdraw consent at any time)

Legal obligation: Compliance with applicable laws, court orders or regulatory requests

5 How We Use Personal Data

  • Operate, monitor and improve the Service
  • Train and fine-tune AI models only on anonymised or aggregated data unless explicit consent is obtained
  • Provide support, updates and administrative messages
  • Detect, prevent and investigate security incidents or abuse
  • Enforce our agreements and comply with legal obligations

6 Disclosure of Personal Data

Service Providers (cloud hosting, monitoring, email delivery, analytics): Bound by written agreements; process data solely under our instructions

Third-Party Platforms: Where our AI Product Expert is embedded, data flows back to that platform under its privacy terms

Legal / Compliance: Government authorities or parties in litigation, when required by law or necessary to protect rights, property or safety

Business Transfers: In the event of a merger, acquisition or sale of assets, subject to confidentiality and continued protection of Personal Data

We do not sell Personal Data and we do not permit advertising networks to collect information through our Service.

7 International Data Transfers

We and our service providers may process data in Israel, the European Economic Area ("EEA"), the United States and other jurisdictions. When transferring Personal Data out of Israel or the EEA, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

8 Retention

We retain Personal Data for as long as necessary to fulfil the purposes outlined above, comply with our legal obligations and resolve disputes. Specific retention periods depend on the data type, contractual commitments and regulatory requirements.

9 Security Measures

We employ reasonable and industry-standard technical and organisational measures, including encryption in transit, network segregation and access controls.

10 Automated Decision-Making & Profiling

Our AI models generate conversational and analytic suggestions on your prompt. These outputs are assistive and are not used to make legally, financial or similarly significant decisions without human review. You may contact us to request human intervention or to contest any automated output.

11 Cookies and Tracking Technologies

We use first-party cookies to maintain sessions and remember user preferences. In addition, certain third-party analytics, performance-monitoring and support tools that we integrate (for example, traffic analytics, error tracking and embedded help widgets) may place their own third-party cookies, pixel tags or local-storage objects in your browser to measure page views, feature adoption and service health. These third-party technologies are governed by the respective providers' privacy policies and are not used by us for interest-based advertising.Most browsers allow you to block or delete cookies, and you can also manage your preferences at any time via our Cookie Notice & Preference Centre. Please note that disabling some cookies may impair certain functions of the Service.

12 Data Subject Rights

Depending on your location, you may have the following rights:

  • Access to your Personal Data
  • Rectification of inaccurate or incomplete data
  • Erasure ("right to be forgotten")
  • Restriction or objection to processing
  • Data portability
  • Withdraw consent at any time
  • Lodge a complaint with a supervisory authority (e.g., the Israeli Privacy Protection Authority or your local EU regulator)

To exercise any right, email contact -at- cowalk.ai. We will respond within the timeframe required by applicable law (30 days under PPL; 1 month under GDPR).

13 Children

The Service is not intended for children under 16 (or the age defined by local law). We do not knowingly collect data from children. If you believe we have done so, contact us to delete it.

14 Data Breach Notification

In the event of a personal-data breach that is likely to result in a risk to the rights and freedoms of individuals, we will notify affected Customers and, where required, supervisory authorities without undue delay and in any event within the time-frames prescribed by applicable law.

15 Changes to This Policy

We may update this Policy from time to time. Material changes will be notified via the Service or email at least 15 days before they take effect. Continued use of the Service after the effective date constitutes acceptance.

16 Contact Us

Email: contact -at- cowalk.ai

Data Protection Officer (DPO): contact -at- cowalk.ai