Terms and Conditions

1. Subject of the Service Agreement

(1) Under this Agreement, Good Life Kft. (service provider) will, for a service fee, provide the Subscriber with access to the services available at http://www.conversioncraft.ai (hereinafter referred to as the Website) and operate the system (software elements) that provides these services (hereinafter referred to as the System) under the terms and conditions specified in this Agreement for the duration of the Agreement.

(2) As part of the Service, Good Life Kft. provides the service elements and features listed on the website http://www.conversioncraft.ai.

2. Contracting Parties

Good Life Kft. (registered office: 1011047 Budapest, Attila u. 12-18. A bldg. 1st floor, 114.; Tax number: 26134572-2-41) (hereinafter referred to as "Service Provider")

and You, or the legal entity or organization you represent (hereinafter referred to as "Subscriber").

2.1. Formation of the Agreement

(1) The Subscriber accepts the provisions of this Agreement by selecting the checkbox and clicking the save button during the registration process on the Website, which aims to use the Service, following confirmation of the registration and the provision of further details. This acceptance constitutes the formation of the Agreement.

(2) The rights and obligations set out in this Agreement shall continue to apply to the Parties until the termination of the Agreement. The Subscriber undertakes to fully comply with the provisions of the Agreement and that they are entering into it on their own behalf or on behalf of the legal entity they represent, and not on behalf of or for the benefit of a third party.

(3) A Subscriber who is considered a consumer (i.e., using the Service for personal purposes) may withdraw from the contract within 14 days after entering into the Agreement under Government Decree 45/2014 (II.26.) on the detailed rules of contracts between consumers and businesses. The Subscriber is only entitled to this right of withdrawal if they have not yet started using the Service, meaning they have not created any email list or form within the software. The consumer has no right to withdraw if the Service Provider has commenced the performance with the Subscriber's consent before the expiry of the 14-day withdrawal period. If the Service Provider starts performance before the 14-day deadline, the Subscriber has the right to terminate the Agreement. The exercise of the right of termination will terminate the Agreement for the future, but the Service Provider may invoice the Subscriber for services already rendered.

(4) The Subscriber, as the data controller, declares that with regard to all its data processing activities, it carefully assesses what security measures are necessary for the personal data it processes to comply with the expectations set out in Article 32 of the Regulation (EU) 2016/679 of the European Parliament and of the Council (April 27, 2016) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as GDPR), and that prior to the formation of the Agreement, the Subscriber compares these measures with those described by the Service Provider in section 8 of the Agreement. Based on the comparison, the Subscriber determines whether the security level implemented by the Service Provider meets the data security and other requirements of the data processing activities carried out or intended to be carried out by the Subscriber. The Subscriber explicitly agrees to use the Service Provider's services only for those data processing activities where they have verified that the security level implemented by the Service Provider meets the data security requirements of the data processing activities carried out or intended to be carried out by the Subscriber.

2.2. Duration of the Agreement and Termination by the Subscriber

(1) The parties enter into the agreement for an indefinite period.

(2) The Subscriber may terminate the agreement at any time with immediate effect. The termination must be sent from the email address used to create the agreement to the Service Provider’s email address at info@conversioncraft.ai must be sent to the Service Provider's email address.

(3) In the event of termination by the Subscriber, the agreement will terminate at 24:00 on the day of termination.

(4) The Subscriber is obliged to pay the Service Provider the fees for the Services used up until 24:00 on the day of termination, within 8 days following the issuance of the invoice.

(5) In the event of termination by the Subscriber, the Service Provider will cease providing the Service in accordance with section (3) and will immediately delete all stored data, settings, content, etc. Subsequently, any data entries related to the Subscriber will no longer be accessible or reproducible in the Service Provider’s systems. The Subscriber is responsible for deleting or retrieving any data stored in the Service Provider's systems during the use of the Service before the termination of the agreement.

2.3. Termination by the Service Provider

(1) The Service Provider may terminate the agreement at any time with a 30-day notice period, without providing any reason.

(2) The Service Provider may terminate the agreement with immediate effect at any time in the event of a serious breach of contract by the Subscriber. A serious breach of contract particularly includes the Subscriber using the Service in a manner that violates the law or for such purposes, or failing to meet payment obligations within 30 (thirty) days of the due date.

(3) In the event of immediate termination by the Service Provider, the agreement will terminate at 24:00 on the day of termination for all of the Subscriber’s accounts, but the Service Provider may suspend the provision of the Service immediately upon detecting the breach of contract.

(4) In the event of termination by the Service Provider with a 30-day notice, the agreement will terminate at 24:00 on the 30th day following the termination date for all of the Subscriber’s accounts.

(5) The Service Provider will notify the Subscriber of the termination by sending an email to the email address provided in the Subscriber’s account(s).

(6) The Subscriber is obliged to pay the Service Provider the fees for the Services used up until 24:00 on the day of termination, within 8 days following the issuance of the invoice.

(7) If the Service Provider terminates the agreement due to a serious breach of contract by the Subscriber, the Service Provider is not obligated to refund any fees prepaid by the Subscriber.

(8) In the event of termination by the Service Provider—whether with 30-day notice or immediate—the Service Provider will cease providing the Service immediately and delete all stored data, settings, content, etc. immediately. Any data entries related to the Subscriber will no longer be accessible or reproducible in the Service Provider’s systems. The Subscriber is responsible for deleting or retrieving any data stored in the Service Provider’s systems during the use of the Service before the termination of the agreement, with particular attention to the provisions of section 10.2.

2.4. Obligations of the Contracting Party in the Event of Contract Termination

(1) The Contracting Party is obligated to remove all opt-in gates, subscription options, and any data entry forms related to the Service, including any code snippets that display them or establish or enable database connections, from their website by 24:00 on the first business day following the termination of the contract at the latest.

(2) If the Contracting Party fails to fulfill the obligation outlined in section (1) or does not fulfill their payment obligation to the Service Provider for 30 days, the Service Provider may initiate the display of an error message related to the use of the Service instead of a thank-you message upon clicking the save button on the data entry forms used in connection with the Service. In this case, the data entered by the visitor into the form will not be recorded, and the code snippets establishing a database connection will not fulfill the expected functionality.

3. Rights and Obligations of the Parties

3.1. Role of the Service Provider and Created Content

(1) The Contracting Party acknowledges that the sole responsibility of the Service Provider is to ensure the operation of the Services and the availability of the system. Accordingly, the Service Provider does not create any content and is not considered the author of any emails or other content sent via the Service (forms, landing pages, SMS, DM letters, etc.). The Service Provider does not perform regular monitoring of content or observe content created by the Contracting Party. The Service Provider expressly disclaims any liability for any direct or indirect damages resulting from the sending of newsletters.

(2) When sending emails through the Service provided by the Service Provider, the Contracting Party is responsible for the accuracy of the content generated during the use of the system and must compensate the Service Provider for any direct or indirect damages or claims arising from the Contracting Party's use of the Service.

(3) The Service Provider reserves the right to review any content sent or published by the Contracting Party to maintain operational security. The Service Provider reserves the right to suspend the display or sending of any content that violates the rules defined by the Service Provider and detailed in Section 7 of this contract, and will notify the Contracting Party of such suspension.

3.2. Processing of Personal Data of Natural Persons

(1) If the Contracting Party uses the Service, assembled according to the elements specified by them, for the processing or storage of personal data, they act in the capacity of a data controller. In this regard, the Service Provider qualifies as a data processor during the provision of the Service, as it only provides the technological solution necessary for data processing to the Contracting Party and does not carry out any data processing on the personal data stored in the system for its own purposes. The Service Provider may not use the personal data stored in the System for its own or any third party’s benefit, nor may it disclose them to the public.

(2) The Contracting Party acknowledges that they are obligated to inform the natural persons concerned about all details of data collection and processing in accordance with applicable laws and to establish and act in compliance with the conditions for lawful data processing. The Service Provider bears no obligation or responsibility in connection with the Contracting Party’s failure to fulfill this obligation.

(3) The personal data processed during the fulfillment of the Contract may be processed by the Service Provider only in the manner specified in this contract or according to the instructions received from the Contracting Party, except when the law requires the Service Provider to act without such instructions.

(4) The Service Provider undertakes to familiarize its employees involved in the provision of the Service with the relevant data protection regulations, and the employees have committed in writing to confidentiality and the confidential handling of the data, or they are subject to a corresponding statutory confidentiality obligation.

(5) The Contracting Party consents to the use of sub-processors named in Section 8 by the Service Provider for the provision of the Service. This consent extends to the use of additional sub-processors after prior notification of the Contracting Party.

(6) The Service Provider declares that the data processing that the Contracting Party can carry out through the proper use of the Service in its currently provided form does not, by itself, pose a high risk to the fundamental rights and freedoms of natural persons. In view of this, the Service Provider does not consider it necessary that the commencement or continuation of the use of the Service be preceded or supported by a prior impact assessment. However, the Service Provider draws the Contracting Party’s attention to the fact that the Service provides a technical opportunity to interact with other technological solutions, such as data transfer or receipt, which may lead to data processing that requires a prior impact assessment. In such or similar operational solutions, it is the responsibility of the Contracting Party to decide and conduct a prior impact assessment. To ensure the proper conduct of the impact assessment, the Service Provider may provide support at the prevailing consulting hourly rate upon the Contracting Party’s request. If the involvement of an additional expert (e.g., legal advisor) becomes necessary, the Service Provider may suggest such an expert to the Contracting Party but cannot decide on the involvement of an additional expert.

(7) The Service Provider assists the Contracting Party with educational materials, availability of features, and training in accordance with the expectations set out in GDPR Article 28(3)(f). However, it is the responsibility of the Contracting Party to decide when and how much of this support to use and how to integrate it into their data processing procedures.

(8) To facilitate the handling of procedures initiated by affected individuals (GDPR Articles 14-21), the Service Provider makes available functions and documentation on the Website, enabling the Contracting Party to fully comply with such requests.

(9) The Service Provider undertakes to act in accordance with GDPR Article 33(2) in the event of a data protection incident and will do everything reasonably expected to enable the Contracting Party to fulfill its record-keeping and reporting obligations under GDPR Articles 33(1) and (3), as well as Article 34. If the data protection incident occurs due to an event within the responsibility of the Service Provider, the Service Provider will fulfill its reporting obligation immediately after establishing the occurrence of the incident, in accordance with the law. If the data protection incident is a result of the behavior of the Contracting Party or arises under its responsibility, the Service Provider may provide expert support for investigating the incident at the prevailing consulting hourly rate.

(10) The Contracting Party has the right to verify the Service Provider's compliance with the obligations set out in this agreement. Upon the Contracting Party's written request, the Service Provider will confirm adherence to data protection regulations. The Parties agree that the Service Provider's obligation to provide verification must be proportionate to the data processing activities and cannot impose an unreasonable burden. The timing of such verification will be scheduled in advance, considering the specific tasks and with an agreed-upon timeframe (minimum 30 days), ensuring that the Service Provider's daily operations and business interests are not unduly hindered. The Contracting Party is required to submit its questions and inspection criteria in advance, and the Service Provider will respond at the scheduled time and, if requested, allow for on-site inspection.

3.3. Egyéb feltételek

(1) The Service Provider will make reasonable efforts to ensure that the Contracting Party’s emails are sent at the scheduled time. Nevertheless, the Service Provider reserves the right to modify the sending date without prior notice.

(2) During the use of the Service, the Contracting Party can operate multiple accounts simultaneously. Each account constitutes a separate legal relationship, and the terms and conditions are accepted upon the creation of each account.

(3) The Service Provider does not undertake to merge data from multiple accounts into a single account, share data between multiple accounts, or transfer any data from one account to another.

(4) The Service Provider provides the capability for the Contracting Party to transfer stored data, either partially or wholly, to another IT system using automated tools, transfer data from such systems into the Service, use the Service with code developed by the Contracting Party or its agent (hereinafter: Own Code), or implement business logic extending beyond the Service’s boundaries with the aforementioned tools.

(5) The Service Provider does not assume responsibility for the implementation of the data transfers mentioned in the previous point, the functioning of the Own Code or the portion of the Service affected by the Own Code, or for any damages caused by the resulting, omitted, or faulty Service events.

(6) The Service Provider monitors the use of certain elements of the Service for the purposes of development, optimization, and business development. This activity does not entail access to personal data stored in the account under any circumstances.

(7) The Service Provider warrants that the Service, including the System providing the Service, complies with the conditions and requirements set forth in this agreement and applicable laws and standards throughout the entire duration of the legal relationship and is suitable for intended use during this period.

(8) The Service Provider also warrants that, with respect to the Service, no third party has any rights that would restrict or exclude the User’s rights as defined in this agreement and by law during the term of the legal relationship.

4. Copyright and Trademarks

(1) The software components that operate as part of the Service, as well as the System’s operational know-how and other information reaching the level of copyrightable works (embedded images, photographs, animations, video and audio recordings, music, text, and widgets) are protected under copyright law. The exclusive copyright holder is the Service Provider. During the term of the agreement, the Service Provider grants the Contracting Party a non-exclusive, non-transferable license to use the copyrighted elements in accordance with the contract.

(2) All copyright protection related to content, data, information, unique solutions, and applications created during the use of the Service belongs to the Contracting Party. By accepting this Agreement, the Contracting Party grants irrevocable permission to the Service Provider to use the copyright-protected solutions in accordance with this agreement during the term of the contract and to use the application methods created by the Contracting Party for educational purposes.

(3) This Agreement does not grant any rights related to any trademarks of the Service Provider or its subcontractors.

5. Use of the Service by the Contracting Party or its Representatives

(1) The Contracting Party is entitled to grant access to the Service to individuals designated by them, who are in employment, contract, or other work-related relationships with them, by providing their email addresses and creating usernames and passwords for them.

(2) The Contracting Party is responsible for the confidential handling of the provided username and password; disclosing them to third parties constitutes a breach of contract. Additionally, the Contracting Party is responsible for all activities carried out using their username and password or any other access credentials granted by them.

(3) The Contracting Party warrants that they have the necessary authorization for the lawful use of the access data provided (email address, name, password, mobile phone number) within the Service, particularly for recording such data on the Service’s new user registration interface.

(4) If the Contracting Party grants access to the Service to multiple individuals (hereinafter referred to as Users), the Contracting Party is responsible for configuring the appropriate access levels for each User, especially concerning financial and administrative permissions. The Service Provider will hold the Contracting Party liable for any damage resulting from improper permission settings or configurations.

6. Other Rights and Restrictions

(1) The Contracting Party is entitled to use the Service only in accordance with the following restrictions and with respect for the rights mentioned.

6.1. Restrictions on Reverse Engineering, Decompiling, and Analysis of Internal Structure

(1) The Contracting Party agrees not to reverse engineer, decompile, or analyze the source code, object code, or underlying structures, ideas, algorithms, related to the Service Provider’s Service, either directly or indirectly.

6.2. Multiple Use

(1) The Contracting Party may use the Service only for their own business purposes. In this regard, it is prohibited, among other things, to use the Service for the benefit of companies within the same corporate group through the same account. Additionally, any use of the Service for purposes other than those of the Contracting Party, such as for agency purposes, is prohibited.

(2) Violating the prohibition set forth in subsection (1) of this point constitutes a serious breach of contract.

7. Rules for Using the Service

(1) The Service is capable of sending emails, and the Contracting Party declares that:

(a) They will not send unsolicited commercial or non-commercial promotional emails. Unsolicited email sending occurs when an email is sent to a recipient who has not consented to receiving such emails before the first email is sent to them. This includes misleading or deceptive content, especially if it creates the appearance of being from a third party known to the recipient, rather than the actual sender.

(b) They will not use the Service for illegal purposes or in an unlawful manner.

(d) They will not send or display explicit erotic images or content that attacks the web community or is offensive, including, but not limited to, racist, hateful, offensive, inaccurate, obscene, blasphemous, or violent images and content, or content deemed inappropriate by the Service Provider.

(e) They will not encourage the use or sharing of information, software, or technical solutions that violate any local or international laws.

(f) They will not use or reproduce any material protected by copyright law without the consent of the copyright holder.

(g) They will not transmit content that promotes or offers information about illegal activities or encourages physical violence against any group or individual, or contains ethnically offensive content.

(h) They will not send content that includes links to sexual, pornographic, tasteless images, hate propaganda, or any illegal content, such as illegal software, product serial numbers, or cracking programs.

(2) If the Contracting Party violates any of the above usage rules, they will be in serious breach of contract, and the Service Provider reserves the right to suspend or terminate the Contracting Party’s access to the Service or the data stored in their account, with or without notice, in connection with such violations.

8. Use and Storage, Data Security

(1) The Service Provider ensures the storage of Contracting Party data, email lists, emails, statistics, reports, settings, and other data related to the Contracting Party through the System. The Service Provider commits to acting with the highest possible care during the provision of the Service, including but not limited to the following:

(a) The Service Provider commits to providing a user interface protected by a username and password for each account, guaranteeing that the Contracting Party’s Data can only be accessed with the username and password chosen by the Contracting Party, which can be changed at any time.

(b) The Service Provider commits to storing the Contracting Party’s password encrypted in its database, making it irretrievable.

(c) The Service Provider commits to protecting the data traffic of the user interface created for the Contracting Party with encryption appropriate to the current state of technology and obtaining a Validity Certificate to verify this protection.

(d) The Service Provider commits to using high operational and data security hardware and software technologies for data storage and processing and regularly reviewing their relevant characteristics, comparing them to current requirements, and developing, updating, or replacing them if necessary.

(2) The Service Provider commits to applying the security levels or solutions specified below, as well as procedures that ensure the same or higher security levels.

Data Center

Our servers are physically located in the Amazon AWS (Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, L-1855, Luxembourg) data processing server park in the European Union, where the servers are protected by the highest known security measures (biometric identification, the physical location of the data center is secret);
Protection against DDOS attacks;
Amazon AWS certifications: ISO 9001, ISO 27001, ISO 27017, ISO 27018, SOC 1, SOC 2, and SOC 3, PCI DSS Level 1, CISPE, CSA;
Multi-factor authentication (MFA) for server access;
Encrypted communication between servers;
Continuous monitoring of access and critical activities using AWS Trusted Advisor, CloudWatch, and CloudTrail.

Protection against data loss and failures

In case of failure or data loss, data will be restored within 2 hours.
Regular backups to separate servers.

Application-level security

Account passwords are stored hashed, and our employees cannot view the actual passwords. If you lose your password, you will need to set a new one.
Login page communicates with the application over TLS encryption.
The entire application is encrypted with TLS.
We continuously monitor the security of our system.

User-level security

Ability to set different permission levels per user and organization.
Human resources monitor abnormal email activity.

Internal IT protection

Employees are trained in best security practices.

9. Exclusion of Liability for Damages

(1) To the fullest extent permitted by applicable law, the Service Provider excludes liability for any damages arising from the use of the Service.

(2) Both parties are obligated to comply with the data protection laws in force at all times. The Contracting Party is responsible for compliance with the regulations applicable to data controllers, while the Service Provider is responsible for compliance with the regulations applicable to data processors.

(3) Additionally, the Service Provider is responsible for maintaining records of processing activities under GDPR requirements (Article 30 (2)), adhering to data security requirements (Article 32), promptly reporting data protection incidents to the Contracting Party (Article 33), appointing a Data Protection Officer if required (Article 37), and cooperating with data protection authorities (Article 31).

10. Modification of the Contract and Fees

(1) The fees for the Service are published by the Service Provider on the Website, on the "Packages and Prices" page, in the current price list.

(2) The Service Provider is entitled to unilaterally modify the current contract and the fees for the Service. Changes to the contract become effective upon publication on the Website. It is the Contracting Party’s responsibility to monitor changes to this contract. By continuing to use the Service, the Contracting Party accepts the modified terms of the contract through implied conduct.

(3) In cases where modifications affect a Service that is already being used by at least one Contracting Party or result in significant changes to the contractual terms, the Service Provider is required to notify the Contracting Party of the changes 30 days before they come into effect, by sending a notification to the email address provided by the Contracting Party and simultaneously posting information about the changes on the Website.

(4) In cases where modifications only affect newly introduced Services, meaning the Services in question have not yet been used by any Contracting Party, the Service Provider may limit the notification of such modifications to publication on the appropriate webpage.

(5) The Contracting Party agrees to provide the new email address in the designated section if their email address changes and to ensure that they receive emails sent to the old email address until the change is made, as well as to ensure that they receive emails sent to the new email address from the moment the change is effective.

(6) The Contracting Party declares that if they do not follow the above procedure and as a result, notifications regarding price or contract modifications do not reach them, the Service Provider will not be liable for this, and it will be assumed that the new contract and price list have been duly received.

11. Support

(1) To assist with the use of the Service, the Service Provider maintains a customer support service for Contracting Parties, which handles reasonable and appropriate inquiries.

(2) The Service Provider excludes the following types of support from the scope of what is available through customer support:

The Service does not include performing or modifying any settings in the Service Provider’s account, establishing, modifying, supporting, or analyzing any business processes.
The Service does not include the analysis, debugging, repair, support, or even review of errors in or related to the Contracting Party’s own code.
The Service does not include understanding, analyzing, repairing, supplementing, or developing code that connects the Service Provider’s System with another system as used by the user or their representative.
Support does not substitute for training related to the Service.

(3) Beyond the above, the Service Provider is not responsible for damages caused by business logic implemented in the account.

(4) The Parties shall specify in a separate agreement if the Contracting Party requires support for investigating, analyzing, repairing, supplementing, or developing issues listed in paragraph (2) of this section, in exchange for compensation.

(5) This support is provided according to the prevailing Consultancy / Developer hourly rates, which the Service Provider publishes on the "Packages and Prices" subpage of the Website.

12. Free Account

(1) The Contracting Party has the option to register for a free account, which aims to familiarize with the details of the Service and to ensure proper information before opting for a paid Service.

(2) The Service Provider publishes the details of the conditions applied to the Free Plan in the current price list.

(3) The number of free accounts registered and used by a single natural or legal person may not exceed one at any given time.

(4) The Service Provider reserves the right to suspend the Contracting Party’s free account without warning if it detects any account activity that violates the rule mentioned in the previous point or harms the Service Provider’s business interests.

(5) The Contracting Party expressly agrees that it is not possible to downgrade from a Paid Account to a Free Account.

(6) The Contracting Party acknowledges that the Service Provider is entitled to terminate the Contract with immediate effect for free accounts inactive for more than 12 months and simultaneously cease the provision of the Service as per section 2.3 (8) of this Agreement, and delete stored data, settings, content, etc., after prior notice to the Contracting Party. Data entries associated with the Contracting Party in the Service Provider’s Systems will no longer be available or reproducible. An account is considered inactive if the user has not logged in during this period.

13. Suspension of Account

If the Contracting Party temporarily does not wish to use the Service but wants to store their data in a secure and later usable manner, a suspension fee must be paid. This fee is 10% of the monthly fee for the account, but a minimum of 4,000 HUF + VAT per month.

14. Reference

Unless otherwise stated in a written legal declaration, the Contracting Party expressly agrees that the Service Provider may display the Contracting Party’s or their product’s name or logo as a reference or case study on the website https://conversioncraft.ai.

15. Miscellaneous

For matters not regulated in this service agreement, the Civil Code, the Copyright Act, and the Service descriptions published on the Website shall apply.