These Terms of Service ("Terms") govern your access to and use of the website panora.cx and the Panora platform (the "Service") operated by Panora Software S.L. (NIF B26654749) ("we", "us", or "our"), a company registered in Spain with registered address at Carrer Cristofol Colom 10, 2/1, Girona 17005, Spain. By accessing or using the Service, you agree to be bound by these Terms. If you do not agree, please do not use the Service.
"You" or "User" refers to any individual or entity accessing or using the Service. "Customer Data" means any data you provide to us or that we access on your behalf through third-party integrations in connection with the Service. "Content" means any materials, text, data, or other information made available through the Service.
You must be at least 16 years of age and have the legal capacity to enter into these Terms. If you are using the Service on behalf of an organisation, you represent that you have the authority to bind that organisation to these Terms.
To access certain features, you may need to register for an account. You agree to provide accurate, current, and complete information, to keep your credentials secure, and to notify us promptly of any unauthorised use. You are responsible for all activity under your account.
We grant you a limited, non-exclusive, non-transferable, revocable licence to use the Service in accordance with these Terms. You agree not to:
You retain all rights to your Customer Data. By using the Service, you grant us a limited licence to access, process, and store your Customer Data solely to provide and improve the Service. We will handle Customer Data in accordance with our Privacy Policy and applicable data protection laws, including the GDPR.
You represent that you have all necessary rights, consents, and legal bases to share Customer Data with us and to allow us to process it as described in these Terms and our Privacy Policy. You are responsible for the accuracy and legality of the Customer Data you provide.
The Service may integrate with third-party platforms (e.g., HubSpot, Zendesk). Your use of these integrations is subject to the respective third party's terms of service and privacy policies. We are not responsible for the practices, content, or availability of third-party services. You authorise us to access data from these integrations on your behalf to provide the Service.
The Service, including its design, features, code, documentation, branding, and all related intellectual property, is and remains the exclusive property of Panora. Nothing in these Terms grants you any right, title, or interest in our intellectual property except the limited licence to use the Service as described herein.
The Service uses artificial intelligence to generate summaries, recommendations, risk scores, and other analytical outputs ("AI Insights"). AI Insights are provided for informational purposes only and do not constitute professional, financial, or legal advice. You acknowledge that AI Insights may contain inaccuracies and that you are solely responsible for any decisions or actions taken based on them.
Certain features of the Service may require payment. Applicable fees, billing cycles, and payment terms will be communicated to you at the time of purchase or subscription. All fees are stated exclusive of VAT or other applicable taxes, which will be added where required by law. We reserve the right to change our pricing with reasonable advance notice.
We may offer free trials, beta access, or waitlist registration at our discretion. These may be subject to additional terms or limitations. We reserve the right to modify or discontinue free trials and waitlist access at any time without liability.
You may stop using the Service and close your account at any time by contacting us. We may suspend or terminate your access if you breach these Terms, if required by law, or at our discretion with reasonable notice. Upon termination, your licence to use the Service ends immediately. We will make your Customer Data available for export for a period of 30 days following termination, after which it may be deleted.
The Service is provided "as is" and "as available" without warranties of any kind, whether express, implied, or statutory, including but not limited to implied warranties of merchantability, fitness for a particular purpose, and non-infringement. We do not warrant that the Service will be uninterrupted, error-free, or secure. Nothing in these Terms excludes or limits warranties that cannot be excluded or limited under applicable law, including EU consumer protection law.
To the maximum extent permitted by applicable law, Panora shall not be liable for any indirect, incidental, special, consequential, or punitive damages, or any loss of profits, revenue, data, or business opportunity, arising out of or related to your use of the Service. Our total aggregate liability for any claim arising from these Terms or the Service shall not exceed the total fees paid by you to us in the twelve (12) months preceding the claim.
Nothing in these Terms excludes or limits liability for death or personal injury caused by negligence, fraud, or any other liability that cannot be excluded or limited under applicable law.
You agree to indemnify, defend, and hold harmless Panora, its officers, directors, employees, and agents from and against any claims, liabilities, damages, losses, and expenses (including reasonable legal fees) arising from your use of the Service, your breach of these Terms, or your violation of any applicable law or third-party rights.
To the extent that we process personal data on your behalf as a data processor, we do so in accordance with our Data Processing Agreement set out below. The DPA is incorporated into these Terms by reference and forms part of your agreement with us. You can link directly to it at panora.cx/terms.html#dpa.
We may update these Terms from time to time. We will notify you of material changes by posting the updated Terms on this page and updating the "Last updated" date. Your continued use of the Service after changes take effect constitutes acceptance of the revised Terms. If you do not agree, you should discontinue use of the Service.
These Terms shall be governed by and construed in accordance with the laws of Spain, without regard to conflict-of-law provisions. Any disputes arising from these Terms shall be submitted to the exclusive jurisdiction of the competent courts of Girona, Spain. If you are a consumer in the EU, you retain the benefit of any mandatory provisions of the law of your country of residence, and nothing in these Terms affects your rights as a consumer under applicable EU law.
If any provision of these Terms is found to be invalid or unenforceable, the remaining provisions shall continue in full force and effect.
These Terms, together with our Privacy Policy, Data Processing Agreement, and any other agreements referenced herein, constitute the entire agreement between you and Panora regarding the Service and supersede all prior agreements and understandings.
If you have any questions about these Terms, please contact us at:
Email: info@panora.cx
GDPR (EU) 2016/679 · EU Standard Contractual Clauses (Decision 2021/914, Module 2) · Last updated: 26 February 2026
This Data Processing Agreement ("DPA") is between you (the "Controller") and Panora Software S.L. (the "Processor") and supplements the Terms of Service above. Where there is conflict, this DPA takes precedence with respect to data protection matters.
| Processor | Panora Software S.L. · Carrer Cristofol Colom 10, 2/1, Girona 17005, Spain · NIF B26654749 |
| Controller | You — the customer entity that has agreed to these Terms. |
| Effective Date | The date you first access or use the Service. |
| Data Categories | Names, email addresses, phone numbers, company details, job titles, CRM records (contacts, deals, companies), support tickets, and any other data the Controller chooses to sync into the platform via their connected tools. |
| Data Subjects | The Controller's customers, contacts, and employees. |
| Purpose | Providing the Panora platform described in the Terms of Service, including syncing data from third-party tools the Controller connects, and powering AI-assisted features. |
| Storage Location | Amazon Web Services (AWS) · EU (eu-west-1, Ireland). Customer data does not leave the EEA at rest. |
| Retention | For the duration of the agreement. On termination, data is deleted or returned within 30 days at the Controller's election. |
We process Personal Data only on the Controller's documented instructions. We do not use it for any other purpose, and we do not sell it.
We run on AWS (eu-west-1) and apply the following controls:
We use the sub-processors listed below. All are bound by data protection obligations equivalent to this DPA. For sub-processors based outside the EEA, data transfers are covered by EU Standard Contractual Clauses — each provider publishes their SCCs as part of their standard terms, which we have accepted.
We will notify you at least 30 days before adding or replacing any sub-processor. You may object on reasonable data protection grounds within 14 days of notification.
Infrastructure & Sync
| Sub-processor | Purpose / Data Involved | Country |
|---|---|---|
| Amazon Web Services (AWS) | Primary cloud hosting. All customer data stored in AWS eu-west-1 (Ireland). ISO 27001 + SOC 2 certified. | EU (Ireland) |
| Nango | API integration platform managing OAuth tokens and data sync for the Controller's connected tools. SOC 2 Type II certified. Data transient; max 30-day cache. | USA |
AI / LLM Processing
| Sub-processor | Purpose / Data Involved | Country |
|---|---|---|
| OpenAI | AI-assisted features. Customer data may appear in prompts. Zero-data-retention API endpoint used — data is not stored or used for model training. | USA |
| Anthropic | AI-assisted features. Customer data may appear in prompts. Zero-data-retention API endpoint used. | USA |
| Google (Gemini API) | AI-assisted features. Customer data may appear in prompts. Paid API tier used — data is not used for model training and is covered by Google's Data Processing Addendum. | USA |
Observability (may incidentally capture PII)
| Sub-processor | Purpose / Data Involved | Country |
|---|---|---|
| Sentry | Error tracking. PII scrubbing rules configured to minimise personal data in error reports. | USA |
| Honeycomb | Distributed tracing. Span attributes reviewed; PII fields redacted before export. | USA |
| PostHog | Product analytics. User identifiers pseudonymised where possible. Data stored on PostHog's EU infrastructure. | EU |
Customer data is stored at rest in the EEA (AWS eu-west-1, Ireland). Certain sub-processors we use to deliver the service are based in the United States. For these providers, data transfers are covered by EU Standard Contractual Clauses (Commission Decision 2021/914). Each provider publishes their SCCs as part of their standard terms, which we have accepted. These are publicly available via each provider's trust or legal documentation pages.
Questions about this DPA or to exercise your rights: info@panora.cx