Privacy Policy

Effective Date: August 26, 2025
Last Updated: August 26, 2025

Autogenic, LLC (“Company,” “we,” “our,” or “us”) respects your privacy and is committed to protecting personal information in accordance with applicable laws, regulations, and the SOC 2 Trust Services Criteria. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our Services.

1. Scope of Policy

This Privacy Policy applies to all individuals and organizations who access or use our data aggregation and related services (“Services”), including but not limited to customers, partners, and website visitors.

2. Information We Collect

We may collect the following categories of information:

  • Customer Account Information: Name, email address, billing information, and authentication credentials.

  • Service Usage Data: Logs, system events, IP addresses, device identifiers, and interactions with the Services.

  • Customer Data: Information provided by you or on your behalf for processing through our Services (e.g., datasets, content, or identifiers).

  • Support Communications: Records of customer service requests, inquiries, or feedback.

  • Cookies and Tracking Data: To enhance user experience, improve security, and optimize service delivery.

We do not intentionally collect sensitive personal data unless expressly required for the Services or by law.

3. How We Use Information

We use collected information solely for lawful business purposes, including:

  • Delivering and operating the Services.

  • Maintaining security, integrity, and availability of systems.

  • Providing customer support and communications.

  • Billing, payment, and account management.

  • Monitoring, auditing, and improving system performance.

  • Conducting research and development in anonymized or aggregated form.

  • Complying with legal and regulatory obligations.

4. Data Security

We maintain a formal information security program aligned with SOC 2 and industry standards, which includes:

  • Encryption of data in transit (TLS) and at rest (AES-256 or equivalent).

  • Role-based access controls with multi-factor authentication.

  • Logging, monitoring, and alerting of system access and activity.

  • Regular penetration testing and vulnerability scans.

  • Employee training and confidentiality agreements.

5. Data Retention and Deletion

  • Customer Data is retained only as long as necessary to provide the Services or as legally required.

  • Upon termination of Services, you may request deletion or export of Customer Data.

  • Backups and audit logs may be retained for a limited period for security and compliance purposes.

6. Disclosure of Information

We do not sell or rent personal data. We may share information only in the following circumstances:

  • With Trusted Subprocessors: Third-party vendors providing hosting, storage, analytics, or security services, bound by confidentiality and security obligations.

  • With Your Consent: As expressly authorized by you.

  • For Legal Purposes: To comply with legal obligations, enforce our agreements, or protect rights, property, or safety.

  • In Corporate Transactions: Such as mergers, acquisitions, or restructuring, subject to equivalent privacy protections.

7. International Data Transfers

If data is transferred outside your jurisdiction, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or equivalent mechanisms, to maintain adequate data protection.

8. Data Subject Rights

Depending on your jurisdiction (e.g., GDPR, CCPA), you may have the right to:

  • Access personal information we hold about you.

  • Request correction or deletion of personal information.

  • Object to or restrict processing.

  • Request data portability.

  • Withdraw consent for processing (where applicable).

Requests may be submitted to data@autogenic.ai. We will verify identity before fulfilling requests.

9. Incident Response and Notifications

In the event of a confirmed data breach affecting Customer Data, we will:

  • Investigate promptly and mitigate risks.

  • Notify affected customers within 24 in accordance with legal and contractual obligations.

  • Provide updates and remediation guidance.

10. Children’s Privacy

Our Services are not directed at individuals under 18. We do not knowingly collect personal information from children.

11. Changes to this Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through reasonable means (e.g., email, service notifications). Continued use of the Services constitutes acceptance of the updated Policy.

12. Contact Information

For privacy inquiries or to exercise your rights, please contact:

Autogenic, LLC
3390 Peachtree Road NE Suite 320

Atlanta, GA 30326

Or by email at:

privacy@autogenic.ai