Aedin Insight, LLC (“Company,” “we,” “our,” or “us”) respects your privacy and is committed to protecting it through compliance with this Privacy Policy. This policy explains how we collect, use, disclose, and safeguard your information when you visit our website, https://aedininsight.com (“Website”) or engage with our AI consulting services.

Scope

This Privacy Policy applies to our Website, AI consulting services, and any related online or offline interactions. It does not cover third-party websites or services linked from our site.

1. Information We Collect

1.1. Information You Provide

When you interact with our services, we collect Personally Identifiable Information (PII) including your name, email address, phone number, business contact information, payment details, communication preferences, and service interaction history. We also maintain consultation notes and feedback from our interactions.

1.2. Business Information

In providing services, we collect information about your organization such as organization details, industry sector, technical environment specifications, AI implementation requirements, and business objectives.

1.3. Automatically Collected Information

Our systems automatically collect technical data including IP address, browser type and version, operating system, device information, access times and dates, pages visited, interaction patterns, and service usage analytics. We use tools such as Google Analytics and other analytics platforms to understand usage and improve our services.

1.4. Cookie Information

We employ cookies for essential website functions, analytics, preference management, and marketing purposes. Essential cookies remain active for your session duration, analytics cookies for up to 2 years, preference cookies for 1 year, and marketing cookies for 6 months. Users may manage cookie preferences through our Cookie Policy or their browser settings.

2. Data Retention

2.1. Retention Periods

We retain data for specific periods: (i) account information for the duration of active account plus 2 years; (ii) transaction records for 7 years as required by law; (iii) communication records for 3 years; (iv) technical logs for 1 year; (v) marketing preferences until opt-out; (vi) consultation records for 5 years; and (vii) training materials for 3 years.

3. Use of Information

3.1. Primary Uses

We use collected information for: (i) service delivery; (ii) communication; (iii) service improvement; (iv) legal compliance; (v) security protection and fraud prevention; (vi) analytics; and (vii) marketing with consent.

4. Legal Basis for Processing (GDPR)

Where applicable under GDPR, we process your personal data based on: (i) your consent; (ii) performance of a contract; (iii) compliance with legal obligations; and (iv) legitimate interests such as improving our services and ensuring security.

5. International Data Transfers

5.1. Transfer Safeguards

For international transfers, we implement: (i) Standard Contractual Clauses; (ii) Data Processing Agreements; (iii) Privacy Shield compliance where applicable; and (iv) regional data storage when required.

6. Information Sharing

6.1. Service Providers

We may share information with third-party service providers for: (i) cloud hosting; (ii) analytics; (iii) payment processing; (iv) communication platforms; and (v) professional services.

6.2. Legal Requirements

We may disclose information in response to: (i) court orders; (ii) legal proceedings; (iii) regulatory requirements; and (iv) law enforcement requests.

6.3. Third-Party Links

Our Website may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites. We encourage you to review their privacy policies.

7. Security Measures

7.1. Technical and Organizational Safeguards

We implement comprehensive security measures including: (i) TLS 1.3 encryption; (ii) access controls; (iii) regular security audits; (iv) employee training; (v) incident response procedures; (vi) backup systems; (vii) monitoring and logging; (viii) vulnerability assessments; and (ix) physical security controls.

8. Your Rights

8.1. General Rights

You have the right to: (i) access your data; (ii) correct inaccuracies; (iii) request deletion; (iv) restrict processing; (v) data portability; and (vi) withdraw consent.

8.2. California Rights

Under CCPA, California residents have additional rights to: (i) know what personal information is collected; (ii) delete personal information; (iii) opt-out of sale; (iv) non-discrimination; (v) access specific information; and (vi) designate an authorized agent.

8.3. GDPR Additional Rights

EU residents also have the right to lodge a complaint with a supervisory authority regarding data protection practices.

8.4. Response Timeframes

We respond to requests within: (i) 24 hours for initial acknowledgment; (ii) 45 days for processing; and (iii) 45 additional days if an extension is necessary.

9. Children’s Privacy

9.1. Age Restrictions

We do not knowingly collect or process data from individuals under 13 years of age. If we discover such data was collected inadvertently, we promptly delete it and maintain procedures to ensure compliance.

10. Policy Updates

10.1. Change Notification

We provide: (i) 30 days advance notice of material changes; (ii) email notification for registered users; (iii) website announcements for all users; and (iv) archive of previous versions. Continued use of our services after updates constitutes acceptance of the changes.

11. Contact Information