AetherAI

    AetherAI Privacy Policy

    AetherAI, LLC ("AetherAI," "we," "us," or "our") is deeply committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, share, and protect your personal information when you interact with our website ("Site"), landing pages, and related services ("Services"). By using our Services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of information in accordance with its terms. If you do not agree with the terms of this policy, please do not use our Services.

    Effective Date: July 1, 2025

    1. Information We Collect

    We collect various types of personal and non-personal information to provide and improve our Services.

    1.1. Information You Provide Directly:

    When you interact with our Services, you may provide us with the following personal information:

    • Contact Information: Name, email address, and company or business name (if provided) when you sign up for our waitlist, beta access, or fill out contact forms.
    • Correspondence Information: Content of your messages, inquiries, feedback, or feature requests.
    • Uploaded Content: Files or screenshots you submit, for instance, to illustrate feature requests or bug reports. We only use this data for the purpose for which it was provided (e.g., to understand your request or provide support).

    1.2. Information We Collect Automatically:

    When you visit or use our Services, we automatically collect certain non-personal and, in some cases, personal information through cookies, web beacons, and similar technologies. This may include:

    • Device and Usage Information: IP address, user-agent, browser type and version, operating system, device identifiers, referring/exit pages, pages viewed, time spent on the Site, and clickstream data. We collect IP addresses for security purposes (e.g., fraud prevention, identifying malicious activity), to understand aggregated geographic distribution of our users, and for analytics. User-agent and browser/device info are used to optimize the display and functionality of our Site across different devices and for debugging compatibility issues.
    • Analytics Data: Information about your interactions with our Site, such as the features you use, the links you click, and the searches you conduct. This data is primarily collected through analytics providers (e.g., Google Analytics).

    1.3. Non-Personal Information:

    Non-personal information generally includes data that cannot be directly linked back to an individual, such as aggregated usage data, demographic information (where not linked to an individual), and other technical data. This information may be derived from personal information but de-identified or anonymized.

    2. How We Use Your Information

    We use the information we collect for the following purposes:

    • To Provide and Manage Services: To add you to the AetherAl waitlist or beta program, respond to your messages or inquiries, fulfill your feature requests, and deliver technical support.
    • To Improve and Personalize Services: To understand how users interact with our Site and Services, identify usage trends, and develop new features, functionality, and content to enhance your experience. This includes analyzing usage patterns to optimize performance and usability.
    • For Communication and Marketing: To send you relevant updates, announcements, and promotional content related to AetherAI. For all marketing emails, we provide a clear and easy-to-use unsubscribe mechanism, and you can opt out of receiving these communications at any time. We will honor your opt-out requests promptly, typically within 10 business days. We may also send essential administrative notices and service-related communications that are not marketing in nature.
    • For Legal and Security Compliance: To maintain the security and integrity of our Services, prevent fraud, enforce our terms of service, protect our rights and property, and comply with applicable laws, regulations, and legal processes.
    • For Research and Development: To conduct internal research, analyze user behavior, and generate anonymized or aggregated statistical data for business planning and product development.

    3. Legal Bases for Processing (for EEA and UK Residents)

    If you are located in the European Economic Area (EEA) or the United Kingdom (UK), our legal basis for collecting and using your personal information depends on the specific context in which we collect it. We typically rely on the following legal bases:

    • Consent: Where you have given us explicit consent to process your personal information for a specific purpose (e.g., signing up for our waitlist or marketing communications). You have the right to withdraw your consent at any time.
    • Performance of a Contract: Where the processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into such a contract (e.g., providing you with access to beta programs or responding to your service inquiries).
    • Compliance with a Legal Obligation: Where the processing is necessary for compliance with a legal obligation to which we are subject (e.g., tax laws, data protection laws).
    • Legitimate Interests: Where the processing is necessary for our legitimate interests or those of a third party, and your fundamental rights and freedoms do not override those interests. This includes improving our Services through analytics, maintaining security, and sending relevant business communications.

    4. Sharing Your Information

    We do not sell your personal information to third parties. We may share your information with trusted third-party service providers who assist us in operating our Services and conducting our business. These third parties are contractually obligated to keep your data secure and confidential and are only permitted to use your data as instructed by us and in compliance with this Privacy Policy and applicable data protection laws. Examples of situations where we may share your information include:

    • Email Marketing and Communication Platforms: For sending emails and managing our waitlist (e.g., Mailchimp, ConvertKit). We share your name and email address with these providers to facilitate communications you have opted into.
    • Analytics Providers: For analyzing website traffic and user behavior (e.g., Google Analytics). This typically involves sharing anonymized or pseudonymized data, though IP addresses may be processed. Please refer to Google Analytics Privacy Policy for more information on how Google processes data.
    • Hosting and Infrastructure Providers: For storing data and running our Services (e.g., Vercel, Amazon Web Services (AWS)).
    • Customer Support and Feedback Tools: For managing inquiries and feature requests.
    • Legal and Compliance: When required by law or to respond to valid legal processes (e.g., subpoenas, court orders), or to protect our rights, property, or safety, and the safety of others.
    • Business Transfers: In connection with a merger, acquisition, dissolution, or sale of all or a portion of our assets, your personal information may be transferred as part of the transaction. We will notify you via email and/or a prominent notice on our Site of any such change in ownership or control of your personal information.

    International Data Transfers: If we transfer your personal information to countries outside of the EEA or UK, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission or the UK Information Commissioner's Office, or reliance on an adequacy decision, to ensure your data receives a similar level of protection.

    5. Cookies and Tracking Technologies

    We use cookies, pixel tags, and similar tracking technologies to collect information about your Browse activities on our Site. These technologies help us to:

    • Recognize Returning Users: To remember your preferences and settings for your convenience.
    • Understand User Interaction: To analyze how users interact with our Site, including pages visited, links clicked, and time spent.
    • Improve Overall User Experience (UX): To optimize site functionality and content based on usage patterns.

    Types of Cookies We Use:

    • Essential Cookies: Necessary for the Site to function properly (e.g., security, network management, accessibility).
    • Analytics Cookies: Help us understand how visitors interact with our Site by collecting and reporting information anonymously (e.g., Google Analytics cookies).
    • Functional Cookies: Enable enhanced functionality and personalization (e.g., remembering your preferences).

    Your Choices Regarding Cookies: You have the right to decide whether to accept or reject cookies. You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. Please note that if you disable or refuse cookies, some parts of our Services may become inaccessible or not function properly. We aim to provide a Consent Management Platform (CMP) on our Site to give you granular control over your cookie preferences. This platform will allow you to accept or reject different categories of cookies (e.g., analytics, marketing) and withdraw your consent at any time. We also strive to respect Global Privacy Control (GPC) signals where technically feasible for opting out of data sharing.

    6. Your Data Rights

    Depending on your jurisdiction and the nature of the data processing, you may have the following rights regarding your personal information. To exercise any of these rights, please contact us at support@aetheraiapp.com. We will respond to your request in accordance with applicable data protection laws and may need to verify your identity before processing your request.

    • Right to Access: The right to request copies of your personal data we hold.
    • Right to Rectification: The right to request that we correct any inaccurate or incomplete personal information.
    • Right to Erasure ("Right to be Forgotten"): The right to request the deletion of your personal information, under certain conditions.
    • Right to Object to Processing: The right to object to our processing of your personal information, under certain conditions (e.g., for direct marketing purposes).
    • Right to Restrict Processing: The right to request that we restrict the processing of your personal information, under certain conditions.
    • Right to Data Portability: The right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
    • Right to Withdraw Consent: Where we rely on your consent to process your personal information, you have the right to withdraw that consent at any time. This will not affect the lawfulness of any processing carried out before you withdraw your consent.
    • Right to Lodge a Complaint: If you are an EU/EEA or UK resident, you have the right to lodge a complaint with a supervisory authority regarding our collection and use of your personal information.

    For California Residents (CPRA):

    If you are a California resident, you may have additional rights under the California Privacy Rights Act (CPRA), including:

    • Right to Know: The right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which we collected it, the purposes for collecting it, the categories of third parties with whom we share it, and the categories of personal information we have sold or shared.
    • Right to Opt-Out of Sale/Sharing: The right to opt-out of the "sale" or "sharing" of your personal information (as defined by CPRA, including for cross-context behavioral advertising). AetherAl does not sell your personal information.
    • Right to Limit Use and Disclosure of Sensitive Personal Information: If we collect sensitive personal information, you have the right to limit its use and disclosure to only what is necessary for our services. (Currently, AetherAl does not generally collect sensitive personal information as defined by CPRA).
    • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CPRA rights.

    7. Data Retention

    We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

    • Waitlist Information: Retained until the launch of the AetherAl service or until you request removal from the waitlist.
    • Contact Inquiries and Correspondence: Retained for a maximum of 12 months after the resolution of the inquiry, unless a longer period is required for legal or business purposes.
    • Uploaded Files or Screenshots: Retained for up to 6 months after the resolution of the feature request or bug report, then securely deleted.
    • Analytics Data: Anonymized or aggregated analytics data may be retained indefinitely for internal use, such as trend analysis and service improvement. Raw, identifiable analytics data (e.g., tied to IP addresses) will be retained for a maximum of 26 months (Google Analytics default or similar settings).
    • Legal and Compliance Data: Certain data may be retained for longer periods as required by law (e.g., financial records, audit logs, security event logs for a defined period).

    8. Data Security and Breach Response

    We implement reasonable and appropriate technical and organizational measures to protect your personal information from unauthorized access, loss, misuse, alteration, or destruction. Our security measures include, but are not limited to:

    • Encryption: Using industry-standard encryption for data in transit (e.g., TLS/SSL) and at rest.
    • Access Controls: Implementing strict access controls and "least privilege" principles to ensure only authorized personnel have access to personal data.
    • Regular Monitoring and Auditing: Continuously monitoring our systems for vulnerabilities and potential security incidents, and conducting regular security audits and penetration testing.
    • Data Minimization: Collecting only the personal information that is strictly necessary for the stated purposes.
    • Employee Training: Providing regular data privacy and security training to our employees.

    8.1. Data Breach Response and Notification

    In the unlikely event of a personal data breach, AetherAl is committed to responding promptly and in compliance with all applicable data protection laws. We have internal procedures in place to detect, assess, and mitigate the impact of potential data breaches.

    • Notification to Regulatory Authorities: If a personal data breach is likely to result in a risk to individuals' rights and freedoms, or as otherwise required by law, we will notify the relevant supervisory authorities (e.g., the Texas Attorney General for affected Texas residents, or GDPR supervisory authorities for EU/UK residents) within the legally required timeframes. This includes, where applicable, within 72 hours of becoming aware of the breach for GDPR-covered breaches, and no later than 30 days after discovery for breaches affecting 250 or more Texans.
    • Notification to Affected Individuals: If a data breach is likely to result in a high risk to your rights and freedoms, or as otherwise required by law (e.g., Texas and California data breach laws), we will notify affected individuals without undue delay and within the legal deadlines. For California residents, we aim to provide notice within 30 calendar days of discovery or notification of the breach if required, in accordance with evolving state laws.
    • Information in Breach Notices: Our notifications will include, where available, a description of the nature of the breach, the categories of data involved, the likely consequences, and the measures we have taken or propose to take to address the breach and mitigate its possible adverse effects, along with contact information for further inquiries.
    • Documentation: We will keep a detailed record of all personal data breaches, comprising the facts relating to the breach, its effects, and the remedial action taken, regardless of whether notification is required.

    While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security. You use the Site and Services at your own risk.

    9. Children's Privacy

    Our Services are not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are under 13, please do not provide any information on this Site or through our Services. If we learn that we have collected personal information from a child under 13 without verification of parental consent, we will take steps to remove that information from our servers immediately. If you believe a child has submitted personal information to us, please contact us immediately at support@aetheraiapp.com.

    10. Changes to This Privacy Policy

    We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, and other factors. Any changes will be posted on this page with an updated "Effective Date." We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of the Services after any changes to this Privacy Policy constitutes your acceptance of the updated terms.

    11. Contact Us

    If you have any questions or concerns about this Privacy Policy, your data, or wish to exercise your data rights, please contact us:

    AetherAI Technologies, LLC

    Dallas, TX, USA

    📧 Email: support@aetheraiapp.com