LEGAL

Privacy Policy

February 13, 2026

At Aspen.ai ("we", "our", or "the Company"), we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services.

By using Aspen.ai, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

Account Information

When you create an account, we collect your name, email address, and password. If you sign up using a third-party service (e.g., Google), we receive your name, email address, and profile picture from that provider.

Usage Data

We automatically collect information about how you interact with our platform, including pages visited, features used, timestamps, device type, browser type, IP address, and referring URLs.

Organization Data

If you create or join an organization, we store organization names, member roles, and any content you create within that organization (boards, posts, analytics data, integrations configuration).

Third-Party Integrations

When you connect third-party services (e.g., social media accounts, advertising platforms), we collect and store the data necessary to provide our services, including access tokens, analytics metrics, and campaign data. We only access the data you explicitly authorize.

2. How We Use Your Information

We use the information we collect to:

We do not sell your personal data to third parties. We do not use your data to train AI models.

  • Provide, operate, and maintain our platform
  • Personalize and improve your experience
  • Process transactions and manage your account
  • Send administrative communications (service updates, security alerts)
  • Provide analytics, dashboards, and reporting features
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations

3. Cookies and Tracking

We use cookies and similar technologies to maintain your session, remember your preferences, and understand how you use our platform. Specifically:

We do not use third-party advertising trackers.

  • **Essential cookies:** Required for authentication and core functionality. Cannot be disabled.
  • **Analytics cookies:** Help us understand usage patterns to improve our product. You can opt out via your browser settings.

4. Data Sharing and Disclosure

We may share your information in the following circumstances:

  • **Service providers:** We use trusted third-party services for hosting (Vercel), database (Supabase), email delivery, and payment processing. These providers only access data necessary to perform their services.
  • **Organization members:** Data within an organization is accessible to its members based on their assigned roles and permissions.
  • **Legal requirements:** We may disclose information if required by law, regulation, or legal process.
  • **Business transfers:** In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of the transaction.

5. Data Security

We implement industry-standard security measures to protect your data, including:

While we strive to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

  • Encryption in transit (TLS/HTTPS) and at rest
  • Row Level Security (RLS) policies on our database
  • Regular security audits and monitoring
  • Access controls and authentication mechanisms

6. Data Retention

We retain your data for as long as your account is active or as needed to provide our services. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal or legitimate business purposes.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

To exercise any of these rights, contact us at privacy@aspen.ai. We will respond within 30 days.

  • **Access:** Request a copy of your personal data.
  • **Rectification:** Request correction of inaccurate data.
  • **Deletion:** Request deletion of your personal data.
  • **Portability:** Request your data in a structured, machine-readable format.
  • **Objection:** Object to certain processing of your data.

8. International Transfers

Your data may be processed and stored in countries outside your own. We ensure appropriate safeguards are in place to protect your data in accordance with applicable data protection laws, including GDPR standard contractual clauses where applicable.

9. Children's Privacy

Our platform is not intended for users under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of the platform after changes constitutes acceptance of the revised policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

  • Email: privacy@aspen.ai
  • Company: [company name to be added]
  • Address: [address to be added]