Whether you’re just getting out of tool chaos into one system, or rolling out AI across your whole organization – our plans start with implementation, not just a login.
Privacy Policy
Published 01.02.2026
1. Overview
DigiTrans Consultants W.L.L, trading as “CORAI” (“CORAI”, “we”, “us”, or “our”) respects your privacy and is committed to protecting it through this Privacy Policy (“Privacy Policy”).
This Privacy Policy describes how we collect, use, disclose, and protect your personal data (“Personal Data”) when:
- You visit our website at https://corai.me;
- You create or use an account on the CORAI platform;
- You communicate with us (for example, by email, contact form, or social media); or
- We otherwise process your Personal Data in the course of operating our business
(collectively, the “Platform”), except where we explicitly act as a processor/service provider for our customers (see below).
This Privacy Policy does not apply to data subjects of our customers whose Personal Data we may receive while providing CORAI services to those customers. Our customers use the CORAI platform to store and process their own leads’ and customers’ Personal Data, for example to:
- Reactivate dormant or “dead” leads;
- Send and manage communications across channels (e.g., WhatsApp, SMS, email, calls);
- Host funnels, forms, or websites; and
- Otherwise collect, use, share, or process Personal Data.
In those cases, we act as a processor / service provider, and our customer is the controller (or equivalent). When you give your data to one of our customers, or when we collect your Personal Data on their behalf through our Platform, their privacy notice (not this Privacy Policy) will apply to that processing.
Please read this Privacy Policy carefully to understand our policies and practices regarding your Personal Data and how we will handle it. If you do not agree with our policies and practices, do not use the Platform.
By accessing or using the Platform, you agree and consent to this Privacy Policy.
2. Who We Are and Contact Details
The entity responsible for this Privacy Policy is:
DigiTrans Consultants W.L.L (CORAI)
CR: 169649-1
Flat 829, 6th floor, Bldg 33, Road 1802,
Manama, Al Hoora Block 318,
Kingdom of Bahrain
Email: [email protected]
WhatsApp: +973 1331 6131
If you have any questions about this Privacy Policy or our privacy practices, you can contact us at the email address above.
3. Personal Data We Collect About You
Depending on how you interact with the Platform, we may collect the following categories of Personal Data.
3.1. Information You Provide Directly
We collect Personal Data that you provide directly to us. This may include:
- Account and profile information:
-- Name, company name, role/title
-- Email address, phone number
-- Login credentials (username, hashed password)
-- Billing and invoicing details (e.g. billing address, VAT number where applicable)
- Business and communication information:
-- Details you provide when you contact us (e.g. via email, form, chat, or calls)
-- Information about your business, clients, and services
-- Information provided when you request a demo, sign up for a trial, or subscribe to our services
- Support and feedback information:
-- Information you share with our support team
-- Feedback, survey responses, testimonials, or other information you choose to submit
If you submit any Personal Data about other individuals to us (for example, your colleagues’ contact details), you are responsible for ensuring that you have authority and a lawful basis to do so and to allow us to use that Personal Data in accordance with this Privacy Policy.
3.2. Information We Receive from Third Parties
We may receive information about you from:
- Marketing and referral partners (e.g. agencies, advertising partners, event organisers);
- Service providers and vendors (e.g. CRM or payment processors that you connect to CORAI);
- Public or commercial data sources (e.g. business directories, LinkedIn‑type sources, or similar).
Such information may include:
- Your name and professional contact details;
- Company name, role/title, and industry;
- Marketing and engagement data (e.g. whether you registered or attended a webinar, clicked on a campaign, etc.).
3.3. Information Collected Automatically
When you access or use the Platform, we may automatically collect:
- Device and technical data
-- IP address, browser type and version, operating system, device identifiers
-- Date and time of access, language, and referring URL
- Usage data
-- Pages visited and actions taken (e.g. logins, feature usage, clicks)
-- Error logs and performance diagnostics
-- General interaction data with the Platform
We may use cookies, pixels, and similar tracking technologies to collect this information. For more details, see Section 9 (Cookies and Similar Technologies).
4. How We Use Your Personal Data (Purposes and Legal Bases)
We use your Personal Data for the purposes described below. Where required by applicable law (e.g. EU/UK GDPR), we also rely on specific legal bases.
4.1. To Provide, Operate, and Improve the Platform
We use Personal Data to:
- Set up and manage your account;
- Provide access to platform features and services;
- Ensure the security, integrity, and performance of our systems;
- Diagnose and fix technical issues;
- Develop, test, and improve our products and services.
Legal bases (where applicable):
- Performance of a contract (to provide the services you requested);
- Our legitimate interests (to operate and improve our services).
4.2. To Provide AI Features
CORAI uses AI to power features such as:
- AI agents and automations for lead reactivation, inbound responses, and campaign follow‑up;
- Suggested messages, drafts, or conversational flows;
- Analytics and optimisations.
Our use of AI is designed to provide direct services to you. We do not use your identifiable Personal Data to train general, public AI models. When we use third‑party AI providers, we instruct them to process data only to provide the relevant feature or service and to follow appropriate confidentiality and security measures.
Legal bases (where applicable):
- Performance of a contract;
- Our legitimate interests (to provide advanced features and improve user experience).
4.3. For Customer Support and Communications
We use your Personal Data to:
- Respond to your enquiries, support requests, and complaints;
- Send operational and administrative messages (e.g. about changes, security notices, or service issues);
- Provide onboarding, training, and account management.
Legal bases (where applicable):
- Performance of a contract;
- Our legitimate interests (to maintain a good business relationship and support you).
4.4. For Business Operations and Billing
We use Personal Data to:
- Manage billing, subscriptions, and payments;
- Calculate and invoice running costs and other agreed fees;
- Perform accounting, auditing, and internal reporting;
- Enforce our Terms of Service and manage disputes.
Legal bases (where applicable):
Performance of a contract;
Compliance with legal obligations;
Our legitimate interests (to manage our business efficiently).
4.5. For Marketing and Advertising (B2B)
We may use your contact details and usage data to:
- Send you information about CORAI products, features, offers, or events that we believe may be relevant to your business;
- Run email campaigns, retargeting, or similar B2B marketing activities;
- Analyse the effectiveness of our marketing and improve it.
Where required by law, we will obtain your consent before sending marketing communications and will always provide you with an easy opt‑out mechanism.
Legal bases (where applicable):
- Our legitimate interests (to promote and grow our business) where permitted;
- Your consent, where required by law.
You can opt out of marketing at any time by following the unsubscribe link in our emails or contacting [email protected].
4.6. To Protect and Secure the Platform
We may use Personal Data to:
- Monitor for fraud, abuse, or security incidents;
- Protect our systems, users, and business from malicious or unlawful activity;
- Investigate and respond to suspected breaches or incidents.
Legal bases (where applicable):
- Our legitimate interests (to ensure security and prevent fraud);
- Compliance with legal obligations.
4.7. To Comply with Legal and Regulatory Obligations
We may process your Personal Data to:
- Comply with laws, regulations, and regulatory requests (e.g. tax, accounting, anti‑money laundering, or data protection rules, where applicable);
- Respond to lawful requests from courts, regulators, or public authorities;
- Establish, exercise, or defend legal claims.
Legal basis (where applicable):
Compliance with legal obligations;
Our legitimate interests (to protect our rights and defend against claims).
5. How We Protect Your Personal Data
We implement reasonable and appropriate technical and organisational measures designed to protect your Personal Data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access.
These measures may include, for example:
- Access controls and authentication;
- Encryption in transit (e.g. HTTPS) and other security technologies;
- Regular backups and monitoring;
- Internal policies and staff training.
However, no system or transmission of data over the internet is completely secure. If you believe that your interaction with us is no longer secure (for example, if you suspect unauthorised access to your account), please contact us immediately at [email protected].
6. When We Share Your Personal Data
We may share your Personal Data with the following categories of recipients, strictly for the purposes described in this Privacy Policy.
6.1. Within Our Group
We may share Personal Data with any affiliates or related entities of DigiTrans Consultants W.L.L (if any) for internal administrative and business purposes consistent with this Privacy Policy.
6.2. Service Providers and Sub‑Processors
We engage third‑party service providers to support our operations, for example:
- Cloud hosting and infrastructure;
- AI and messaging providers;
- Payment processing;
- Email delivery and communication tools;
- Analytics, error tracking, and logging tools;
- Professional advisors (e.g. legal, accounting, or consulting).
These providers may process Personal Data on our behalf and are contractually required to:
- Use Personal Data only for the purposes we specify; and
- Implement appropriate security measures.
6.3. Partners and Integrations
Where you choose to connect CORAI to third‑party platforms (e.g. CRMs, communication channels, Meta Business tools, telephony providers), we share Personal Data as necessary to enable that integration, under your instructions and subject to the terms and privacy policies of those third parties.
If you connect any such third‑party service, you are responsible for reviewing and accepting their terms and privacy policies.
6.4. Business Transfers
If we are involved in a merger, acquisition, reorganisation, sale of assets, or similar corporate transaction, Personal Data may be transferred as part of that transaction, subject to appropriate confidentiality and data protection safeguards.
6.5. Legal and Regulatory Disclosures
We may disclose Personal Data where we reasonably believe it is necessary to:
- Comply with applicable law or a valid legal request;
- Protect the rights, property, or safety of CORAI, our users, or others;
- Detect, prevent, or otherwise address fraud, security, or technical issues.
6.6. With Your Consent or at Your Direction
We may share your Personal Data with other third parties when you have given us your consent or when you direct us to do so (for example, when you request a specific integration or export of data).
We do not sell your Personal Data as that term is usually understood (i.e., in exchange for payment), and we do not share your opt‑in communications consents with third parties for their own independent marketing, unless you explicitly agree.
7. Data Retention
We retain your Personal Data for as long as reasonably necessary to:
- Provide the Platform and services;
- Fulfil the purposes described in this Privacy Policy;
- Comply with legal, regulatory, tax, or accounting requirements; and
- Resolve disputes and enforce our agreements.
When deciding how long to keep Personal Data, we consider:
- The nature and sensitivity of the data;
- The potential risk of harm from unauthorised use or disclosure;
- The purposes for which we process the data and whether we can achieve those purposes by other means;
- Any applicable legal retention requirements.
Where appropriate, we may anonymise Personal Data (so that it can no longer be associated with an identified natural person) for research, analytics, or statistical purposes, in which case we may use that information indefinitely without further notice to you.
8. Children’s Data
The Platform is not intended for children and we do not knowingly collect Personal Data from individuals under the age of 16.
- If you are under 16, you must not provide any Personal Data to CORAI.
- If we learn that we have collected Personal Data from a child under 16, we will take reasonable steps to delete it as soon as possible.
If you believe a child under 16 has provided Personal Data to us, please contact [email protected].
9. Cookies and Similar Technologies
We may use cookies, pixels, and similar technologies on the Platform to:
- Make the website function properly;
- Remember your preferences and login session;
- Analyse how the Platform is used;
- Support security and fraud prevention;
- Assist with marketing and performance measurement.
You can usually control cookies through your browser settings (e.g. to block or delete cookies). If you choose to block certain cookies, some features of the Platform may not function correctly.
10. Your Rights and Choices
Depending on the laws that apply to you (for example, if you are in the EU/EEA, UK, or similar jurisdictions), you may have some or all of the following rights regarding your Personal Data that we process as a controller:
- Right of access – to obtain confirmation whether we process your Personal Data and receive a copy.
- Right to rectification – to ask us to correct inaccurate or incomplete Personal Data.
- Right to erasure – to request deletion of your Personal Data in certain circumstances (e.g. where it is no longer needed for the purposes for which it was collected, or where you withdraw consent and no other legal basis applies).
- Right to restriction of processing – to ask us to temporarily suspend processing of your Personal Data in certain cases.
- Right to data portability – to request a copy of your Personal Data in a structured, commonly used, machine‑readable format and to transmit it to another controller, where technically feasible and where applicable law provides for this.
- Right to object – to object to certain processing, especially where we rely on legitimate interests (for example, you can object at any time to direct marketing).
- Right to withdraw consent – where we rely on your consent, you can withdraw it at any time (this will not affect processing that has already occurred).
To exercise any of these rights (where applicable), please contact us at [email protected]. We may need to verify your identity before processing your request.
If you believe that we have not handled your Personal Data in accordance with applicable data protection law, you may also have the right to lodge a complaint with the relevant data protection authority. We would, however, appreciate the chance to address your concerns first, so please contact us in the first instance.
Important: Where we act as a processor on behalf of our customers (for example, for leads and contacts inside a customer’s CORAI account), you should address your data subject requests to the relevant customer, as they are the controller of that data. We will assist our customers in responding to such requests where required by law and our contracts.
11. International Transfers
CORAI is based in the Kingdom of Bahrain, but we may use service providers and infrastructure that are located in other countries. This can involve transferring your Personal Data to countries that may have different data protection laws than the country where you are located.
Where required by applicable law (e.g. EU/UK GDPR), we will ensure that appropriate safeguards are in place for such transfers, which may include:
- Standard contractual clauses approved by the European Commission or UK authorities;
- Other lawful transfer mechanisms permitted by data protection laws.
By using the Platform, you acknowledge that your Personal Data may be processed in countries outside your country of residence, subject to appropriate safeguards as described above.
12. Links to Other Websites and Services
The Platform may contain links to third‑party websites or services. We are not responsible for the privacy practices, content, or security of those third parties.
This Privacy Policy does not apply to any third‑party websites, apps, or services. We encourage you to review the privacy policies of any third‑party services you access via our Platform or otherwise.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs.
When we do so, we will:
- Update the “Last updated” date at the top; and
- Where appropriate, provide additional notice (for example, via the Platform or by email).
Your continued use of the Platform after any changes to this Privacy Policy will be deemed acceptance of those changes. If you do not agree with the updated Privacy Policy, you should stop using the Platform.
14. How to Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your Personal Data, please contact us at:
DigiTrans Consultants W.L.L (CORAI)
Flat 829, 6th floor, Bldg 33, Road 1802,
Manama, Al Hoora Block 318,
Kingdom of Bahrain
Email: [email protected]
WhatsApp: +973 1331 6131
CORAI
CORAI is an AI Revenue & Engagement Platform that unifies CRM, AI assistants, social media, courses, and automation into one engine built to grow small-business revenue.
Built for teams that want results, not more tools.
COMPANY
DigiTrans Consultants W.L.L.
Bldg 33, Road 1802, Manama, Al Hoora Block 318, Bahrain
CR: 169649-1
VAT ID 22002194670000
© 2026 CORAI. All rights reserved.