Privacy Policy

The data controller is Sahara World Business (SWB), a sole proprietorship operated by Diego Nicolas Jara Villalba, domiciled in Paraguay. SWB operates in commercial partnership with LexCom Consulting Group, which provides legal and tax support and shares some operational infrastructure.

You can contact the controller at any time by email at contacto@saharaworldbusiness.com. Where relevant, the same address acts as our data protection point of contact: write to us first and we will route your request to the right person.

When you browse the site, we set a strictly necessary cookie called swb_session that stores an opaque, randomly generated identifier. This identifier does not contain your name, email or location. It exists so the site can keep track of demo usage quotas and remember your cookie choices between page loads.

If you accept the analytics category, we log anonymous events such as page views, button clicks and demo interactions, keyed against that same session identifier.

If you accept the AI demos category and use the chat, RAG, or vision tools, we send the text or image you provide to our inference partner so the model can reply. If you accept the audio category and use the voice demo, we record up to fifteen seconds of microphone audio per turn.

If you submit the contact form, we collect the name, email or phone number, and the message body you choose to share. If you book a consultation, we collect the calendar slot you pick and any contact details the booking flow requires.

We use the session cookie to operate the site, enforce demo quotas and respect your preferences. We use analytics events to understand which pages and demos are valuable so we can improve them. We use AI demo inputs to generate the response you asked for.

We use contact form submissions and booking data to answer your enquiry, schedule meetings and follow up commercially. We never sell your data and we do not use it to build advertising profiles.

Strictly necessary cookies and basic session management rest on our legitimate interest in offering a working website. The site simply will not function without the swb_session cookie.

Analytics events rely on your consent, given by accepting the analytics toggle in the cookie banner. AI demo processing relies on your consent, given by accepting the AI demos toggle and, in the case of voice, by explicitly granting microphone access. Contact form processing relies on our legitimate interest in responding to commercial leads who voluntarily reach out to us. Where you are based in the EU or the UK, this legitimate interest has been balanced against your right not to be contacted: if you ask us to delete your message, we will.

We use a small set of carefully chosen processors. Groq, Inc. (United States) provides Whisper speech-to-text, Llama large-language-model inference and Orpheus text-to-speech. Audio you record in the voice demo and the prompts you send to AI demos pass through Groq for processing.

MongoDB Atlas hosts our usage quotas, analytics events and the vector database used by the RAG demo. Each record is keyed by the anonymous session identifier and does not include direct personal identifiers. Google Cloud hosts our frontend on Firebase App Hosting, our contact-form backend on Cloud Run and Firestore, and our consultation bookings on Google Calendar. Hugging Face serves the model files used to compute embeddings inside your browser; the files are downloaded once and the embedding work happens client-side.

If you click the floating WhatsApp button, your conversation is handled by WhatsApp / Meta under their own terms. The AI Pulse page reads public repository metadata from the GitHub API; nothing about you is sent to GitHub.

Because the data controller is in Paraguay and several processors are in the United States or the European Union, your data may cross borders. Where you are based in the EU, the UK or Brazil, the most relevant transfers are to providers in the United States.

We rely on the Standard Contractual Clauses published by the European Commission, on equivalent safeguards from the relevant suppliers, and on the principle of data minimisation: we send only what is needed to deliver the response you requested. You can ask us for the safeguards that apply to a specific provider by writing to contacto@saharaworldbusiness.com.

Session and demo-quota records expire automatically after sixty days of inactivity through MongoDB Atlas TTL indexes. Analytics events are kept for at most twelve months and are then deleted, also via TTL.

We do not store the audio you record in the voice demo. Only the transcript and the AI reply are kept against your anonymous session for as long as the session itself survives, so we can show you your own conversation and enforce the quota. Contact-form leads stored in Firestore are kept for as long as the commercial relationship is active or reasonably expected to be active; you can ask for deletion at any time and we will comply.

You have the right to access the personal data we hold about you, to rectify it if it is inaccurate, to ask for its deletion, to receive a copy in a structured machine-readable format, to restrict or object to specific processing, and to withdraw any consent you previously gave without affecting the lawfulness of past processing.

The quickest way to exercise the deletion right is the self-service form at /legal/delete-data, which accepts either an email address or a session identifier and purges the matching records from MongoDB. Deletion of contact-form leads is forwarded automatically to the Cloud Run backend that owns the Firestore database.

If you believe we have mishandled your data you can also complain to the competent supervisory authority. In Paraguay this is the Ministerio de Justicia and the SET; in the European Union it is the data protection authority of your country of residence; in Brazil it is the ANPD.

We use only one strictly necessary cookie, swb_session, plus optional categories that you can switch on or off in the banner: analytics, AI demos and audio. Strictly necessary cookies cannot be disabled because the site relies on them to work.

The full cookie inventory and the technical details of each one live in the Cookie Policy.

This site is aimed at professionals evaluating AI solutions for their business. It is not directed at children under the age of sixteen and we do not knowingly collect personal data from them. If you believe a child has provided personal data to us, please write to contacto@saharaworldbusiness.com and we will remove it.

We update this policy when our processing activities change, when we adopt new providers, or when applicable law evolves. The lastUpdated field at the top of the document reflects the most recent revision. Material changes are announced on the homepage banner at least seven days before they take effect, so you have time to review them and adjust your preferences.

For anything related to your data, including access, deletion or general questions about this policy, write to contacto@saharaworldbusiness.com. We aim to answer within five business days; for formal requests under GDPR or LGPD we will respond within the legally prescribed deadlines.