Privacy Policy

1. Introduction

Point9 AI ("we", "us", or "our") operates RulzAI, a no-code data engineering and decision intelligence platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. We are committed to protecting your privacy and complying with applicable data protection laws, including GDPR, CCPA, and other regulations.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly:

• Account information (name, email, company, job title)
• Billing and payment information
• Support and communication data
• Configuration and preference settings

2.2 Customer Data

As a data processor, we process customer data that you upload, connect, or generate through the Service. You retain all ownership and rights to this data. We do not use customer data for any purpose other than providing the Service to you.

2.3 Automatically Collected Information

We automatically collect:

• Log data (IP address, browser type, pages visited, timestamps)
• Device information (operating system, device identifiers)
• Usage data (features used, performance metrics, error logs)
• Cookies and similar tracking technologies

3. How We Use Your Information

We use collected information to:

• Provide, maintain, and improve the Service
• Process transactions and send related information
• Send technical notices, updates, and security alerts
• Respond to your comments and support requests
• Monitor and analyze usage and trends
• Detect, prevent, and address technical issues and fraud
• Comply with legal obligations

4. Data Sharing and Disclosure

We do not sell your personal information. We may share information in the following circumstances:

• Service Providers: With vendors who perform services on our behalf (hosting, analytics, support)
• Compliance: When required by law or to protect rights and safety
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• With Your Consent: When you explicitly authorize sharing

All service providers are contractually obligated to protect your data and use it only for the purposes we specify.

5. Data Security

We implement industry-standard security measures to protect your information, including:

• Encryption of data in transit (TLS 1.3) and at rest (AES-256)
• Regular security assessments and penetration testing
• Access controls and authentication mechanisms
• Security monitoring and incident response procedures
• SOC 2 Type II compliance (in progress)

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as necessary to provide the Service and fulfill the purposes outlined in this Privacy Policy. When you close your account, we will delete or anonymize your data within 30 days, except where we are required to retain it for legal, regulatory, or audit purposes.

7. Your Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data
• Portability: Receive your data in a structured format
• Restriction: Request limitation of processing
• Objection: Object to processing of your data
• Withdrawal: Withdraw consent at any time

To exercise these rights, contact us at privacy@point9.ai. We will respond within 30 days.

8. International Data Transfers

Our infrastructure is located in secure data centers globally. When we transfer data internationally, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission and other data protection authorities.

9. Cookies and Tracking

We use cookies and similar technologies to operate and improve the Service. You can control cookies through your browser settings. Essential cookies cannot be disabled as they are necessary for the Service to function. Analytics and marketing cookies require your consent.

10. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us.

11. Changes to Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through the Service at least 30 days before they take effect. Your continued use of the Service after changes become effective constitutes acceptance of the updated policy.

12. Regional Specific Information

12.1 GDPR (European Union)

Point9 AI is the data controller for account information and a data processor for customer data. Our legal basis for processing is contract performance and legitimate interests. You have the right to lodge a complaint with your local data protection authority.

12.2 CCPA (California)

California residents have additional rights under CCPA, including the right to know what personal information is collected, the right to delete, and the right to opt-out of sale (though we do not sell personal information).

13. Contact Us

For questions about this Privacy Policy or our privacy practices, contact: