Privacy Policy

We may collect the following categories of personal data: (a) Account Information: name, email address, password (hashed), organization name, billing address, and payment information. (b) Usage Data: IP address, browser type, operating system, device identifiers, pages visited, features used, session duration, and interaction patterns. (c) Memory Data: content you store, organize, or process through the Service, including text, files, metadata, and structured data objects. (d) Communications: correspondence with our support team, feedback, and survey responses. (e) Cookies and Tracking Technologies: information collected through cookies, web beacons, pixels, and similar technologies as described in our Cookie Policy. (f) Third-Party Data: information received from identity verification providers, analytics services, and business partners.

We process your personal data for the following purposes: (a) Service Delivery: to provide, maintain, and improve the Service, including processing memory data, generating insights, and enabling AI-powered features. (b) Account Management: to create and manage your account, authenticate your identity, and process transactions. (c) Security: to detect, prevent, and respond to fraud, abuse, security incidents, and technical issues. (d) Communications: to send service-related notices, respond to inquiries, and provide customer support. (e) Analytics: to understand usage patterns, measure performance, and improve user experience. (f) Legal Compliance: to comply with applicable laws, regulations, legal processes, and governmental requests. (g) Legitimate Interests: to protect our rights, property, and safety, and those of our users and the public. Our legal bases for processing include: performance of a contract, legitimate interests, consent (where required), and compliance with legal obligations.

We do not sell your personal data. We may share your information in the following circumstances: (a) Service Providers: with trusted third-party vendors who perform services on our behalf (hosting, analytics, payment processing, customer support), subject to contractual obligations of confidentiality and data protection. (b) Business Transfers: in connection with a merger, acquisition, reorganization, or sale of assets, your data may be transferred as a business asset. (c) Legal Requirements: when required by law, regulation, legal process, or governmental request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others. (d) With Your Consent: when you have given explicit consent to share your data with specific third parties. We require all third parties to respect the security of your personal data and to treat it in accordance with applicable law.

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. When determining the appropriate retention period, we consider the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorized use or disclosure, and applicable legal requirements. Upon account deletion, we will delete or anonymize your personal data within 90 days, except where retention is required by law or for the establishment, exercise, or defence of legal claims.

Your data may be transferred to and processed in countries other than your country of residence. We ensure that such transfers are carried out in compliance with applicable data protection laws, including through the use of Standard Contractual Clauses (SCCs) approved by the European Commission, adequacy decisions, or other lawful transfer mechanisms.

Depending on your jurisdiction, you may have the following rights regarding your personal data: GDPR (European Economic Area): - Right of access to your personal data - Right to rectification of inaccurate data - Right to erasure ("right to be forgotten") - Right to restriction of processing - Right to data portability - Right to object to processing - Right to withdraw consent - Right to lodge a complaint with a supervisory authority CCPA (California, USA): - Right to know what personal information is collected - Right to delete personal information - Right to opt out of the sale of personal information - Right to non-discrimination for exercising your rights - Right to correct inaccurate personal information - Right to limit the use of sensitive personal information PDPA (Singapore): - Right to access your personal data - Right to correction of your personal data - Right to withdraw consent for the collection, use, or disclosure of your personal data - Right to request data portability To exercise any of these rights, please contact us at contact@data.cloud. We will respond to your request within the timeframes required by applicable law.

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include AES-256 encryption at rest, TLS 1.3 encryption in transit, access controls, regular security assessments, and incident response procedures. However, no method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee absolute security.

The Service is not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such data promptly.

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of the Service after such changes constitutes your acceptance of the revised Privacy Policy. We encourage you to review this page periodically.

If you have any questions about this Privacy Policy or our data practices, please contact us: DataCloud Technology Pte. Ltd. Email: contact@data.cloud