0%
Arazon

Legal

Privacy Policy

Last updated: March 2026

1. Information We Collect

We collect information you provide directly to us, such as when you create an account, use our services, or contact us for support. This may include:

  • Account Information: Name, email address, company name, job title, and password
  • Payment Information: Billing address, credit card details (processed securely via Stripe)
  • Usage Data: API calls, model interactions, and service usage patterns
  • Technical Data: IP address, browser type, device information, and cookies
  • Customer Content: Data you submit to our AI services for processing

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our AI services
  • Process transactions and send related information
  • Send technical notices, security alerts, and support messages
  • Respond to your comments, questions, and customer service requests
  • Monitor and analyze usage patterns to improve user experience
  • Detect, investigate, and prevent fraudulent or unauthorized activities

3. Data Processing for AI Services

When you use our AI services, your data is processed as follows:

  • Input Processing: Your data is processed in real-time to generate AI outputs
  • No Training on Customer Data: We do not use your data to train our AI models without explicit consent
  • Data Retention: API inputs and outputs are retained for 30 days for service improvement, then automatically deleted
  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)

4. Information Sharing

We do not sell your personal information. We may share information with:

  • Service Providers: Third parties who perform services on our behalf (hosting, payment processing, analytics)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

5. Data Security

We implement appropriate security measures including:

  • Encryption for data in transit and at rest
  • Access controls and authentication requirements
  • Secure development practices
  • Regular review of security procedures

6. GDPR Rights (European Users)

If you are located in the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR):

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

Our legal basis for processing includes: contract performance, legitimate interests, legal obligations, and consent where applicable.

7. International Data Transfers

As an EU-registered company, your data is primarily processed within the European Economic Area. Where data is transferred outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission.

8. Data Retention

We retain your data for as long as necessary to provide our services and fulfill the purposes outlined in this policy. Specific retention periods:

  • Account Data: Duration of account plus 3 years
  • API Logs: 30 days (configurable for enterprise)
  • Payment Records: 7 years (legal requirement)
  • Support Tickets: 2 years after resolution

9. Children's Privacy

Our services are not directed to individuals under 16. We do not knowingly collect personal information from children. If you believe we have collected data from a child, contact us immediately.

10. Contact Us

For privacy-related inquiries or to exercise your rights:

We respond to all privacy requests within 30 days.