Privacy Policy

1. Introduction

Elecatro LLC, a limited liability company organized under the laws of the State of Wyoming, United States ("Elecatro," "we," "us," or "our"), is committed to protecting the privacy and security of individuals who interact with our websites, software-as-a-service platforms, applications, APIs, AI models, and related services (collectively, the "Services").

This Privacy Policy explains how we collect, use, disclose, store, and protect personal data when you visit our website, create an account, use our Services, or otherwise interact with us. It also describes your rights and choices regarding your personal data, including rights available under the EU General Data Protection Regulation ("GDPR") and the California Consumer Privacy Act, as amended by the California Privacy Rights Act ("CCPA/CPRA").

By accessing or using the Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use the Services.

2. Scope of This Policy

This Privacy Policy applies to:

• Visitors to Elecatro's websites and marketing pages;
• Registered users and Authorized Users of Elecatro's SaaS platforms and applications;
• Customers who purchase Subscriptions or custom software/AI development services;
• Individuals who contact Elecatro through support channels, forms, or email.

This Policy does not apply to third-party websites, applications, or services that may be linked from our Services, which are governed by their own privacy policies.

3. Information We Collect

3.1 Information You Provide Directly

3.2 Information Collected Automatically

3.3 Information From Third Parties

• Payment processors (e.g., Stripe) may share limited transaction confirmation data (such as payment status and last four digits of a card) — Elecatro does not store full payment card numbers.
• Authentication providers, if you choose to log in via a third-party identity provider (e.g., Google OAuth), may share basic profile data (name, email) as authorized by you.
• Publicly available sources, where relevant to fraud prevention or B2B due diligence.

3.4 Special Categories of Data

We do not intentionally collect sensitive personal data (such as health information, racial or ethnic origin, religious beliefs, or biometric data) unless you voluntarily provide it through Customer Content. You are responsible for ensuring you have a lawful basis to submit any such data through the Services.

4. How We Use Your Information

We do not sell personal data to third parties for monetary consideration.

5. AI Models and Customer Content

Given that Elecatro develops AI-powered SaaS platforms and trains AI models, we want to be transparent about how Customer Content is handled:

• Processing for Service Delivery: Customer Content submitted through our Services (e.g., prompts, files, datasets) is processed solely to deliver the requested functionality (such as generating Output, automating a task, or training a custom model for that specific customer).
• Model Training: Elecatro does not use Customer Content containing personal data or confidential business information to train AI models made available to other customers or the public, except: (a) with your explicit opt-in consent, or (b) in aggregated, de-identified form that cannot reasonably be used to identify you or any individual.
• Opt-Out: Where any optional model-training use of your data is offered, you may opt out at any time through your account settings or by contacting us at the email address in Section 14.
• Data Retention for AI Processing: Customer Content used for AI processing is retained only as long as necessary to provide the relevant feature, after which it is deleted or anonymized in accordance with our data retention practices (see Section 9).
• Human Review: In limited circumstances (such as investigating abuse, errors, or security incidents), authorized Elecatro personnel may review samples of Customer Content under strict confidentiality and access controls.

6. Cookies and Tracking Technologies

Elecatro uses analytics cookies to understand how visitors and users interact with our website and Services, helping us improve performance and user experience. We do not currently use cookies for third-party advertising or cross-site behavioral marketing.

6.1 Types of Cookies We Use

6.2 Managing Cookies

You can control or disable cookies through your browser settings. Disabling strictly necessary cookies may affect the functionality of the Services. Where required by applicable law (e.g., in the EU/UK), we will request your consent before placing non-essential analytics cookies via a cookie consent banner.

7. How We Share Your Information

We do not sell your personal data. We may share personal data with the following categories of recipients, subject to appropriate confidentiality and data protection obligations:

• Service Providers / Processors: Cloud hosting providers, payment processors, email delivery services, analytics providers, and customer support tools that process data on our behalf under contractual data protection terms.
• Payment Processors: Third-party processors (e.g., Stripe) that handle payment transactions directly — see Section 8.
• Professional Advisors: Lawyers, accountants, auditors, and insurers, as necessary for business operations.
• Business Transfers: In connection with a merger, acquisition, financing, or sale of assets, personal data may be transferred as part of that transaction, subject to standard confidentiality protections.
• Legal and Regulatory Authorities: Where required to comply with a legal obligation, enforce our Terms of Service, or protect the rights, property, or safety of Elecatro, our users, or the public.
• With Your Consent: Any other third party where you have provided explicit consent.

8. Payment Processing

Elecatro uses trusted third-party payment processors (including but not limited to Stripe) to handle all payment transactions. When you make a payment:

• Your payment card details are submitted directly to and processed by our payment processor; Elecatro does not store full credit card numbers, CVV codes, or other sensitive payment card data on its own servers.
• We may retain limited transaction metadata (such as payment status, amount, currency, and last four digits of a card) for billing records and customer support purposes.
• Our payment processors maintain their own privacy policies and security certifications (e.g., PCI-DSS compliance), and your payment data is subject to their respective privacy practices.

9. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes outlined in this Policy, including:

• Account Data: Retained for the duration of your account's existence, plus a reasonable period thereafter for legal, billing, and dispute-resolution purposes (typically up to 7 years for financial records, in line with applicable tax and accounting laws).
• Customer Content: Retained for as long as necessary to provide the Services, and deleted or anonymized within a reasonable period following account termination, unless longer retention is required by law.
• Usage and Log Data: Typically retained for up to 24 months for security, analytics, and troubleshooting purposes.
• Marketing Data: Retained until you withdraw consent or unsubscribe.

Upon expiration of the applicable retention period, we will securely delete or anonymize the data.

10. International Data Transfers

Elecatro is based in the United States and may process and store personal data on servers located in the United States or other countries where our service providers operate. If you are located in the European Economic Area ("EEA"), United Kingdom, or Switzerland, your personal data may be transferred outside of these regions.

Where such transfers occur, Elecatro relies on appropriate safeguards recognized under GDPR, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission;
• Transfers to recipients in countries deemed to provide an adequate level of protection; or
• Other lawful transfer mechanisms as applicable.

11. Your Privacy Rights

11.1 Rights Under GDPR (EEA, UK, and Swiss Residents)

If you are located in the EEA, UK, or Switzerland, you have the following rights regarding your personal data:

• Right of Access — request a copy of the personal data we hold about you;
• Right to Rectification — request correction of inaccurate or incomplete data;
• Right to Erasure ("Right to be Forgotten") — request deletion of your personal data, subject to certain exceptions;
• Right to Restrict Processing — request that we limit how we use your data;
• Right to Data Portability — receive your data in a structured, machine-readable format;
• Right to Object — object to processing based on legitimate interests or for direct marketing purposes;
• Right to Withdraw Consent — withdraw consent at any time where processing is based on consent;
• Right to Lodge a Complaint — file a complaint with your local data protection supervisory authority.

11.2 Rights Under CCPA/CPRA (California Residents)

If you are a California resident, you have the following rights:

• Right to Know — request disclosure of the categories and specific pieces of personal information we have collected, used, and disclosed;
• Right to Delete — request deletion of personal information we have collected from you, subject to certain exceptions;
• Right to Correct — request correction of inaccurate personal information;
• Right to Opt-Out — opt out of the "sale" or "sharing" of personal information (Elecatro does not sell personal information; we do not engage in cross-context behavioral advertising);
• Right to Limit Use of Sensitive Personal Information — where applicable;
• Right to Non-Discrimination — we will not discriminate against you for exercising your privacy rights.

11.3 Exercising Your Rights

To exercise any of these rights, please contact us using the details in Section 14. We will respond to verifiable requests within the timeframes required by applicable law (generally 30 days under GDPR and 45 days under CCPA/CPRA, subject to permitted extensions). We may need to verify your identity before fulfilling a request.

12. Data Security

Elecatro implements commercially reasonable administrative, technical, and physical safeguards designed to protect personal data against unauthorized access, disclosure, alteration, or destruction, including:

• Encryption of data in transit (TLS/SSL) and, where applicable, at rest;
• Access controls limiting personal data access to authorized personnel on a need-to-know basis;
• Regular security assessments and monitoring for unauthorized access;
• Secure authentication mechanisms for account access.

No method of transmission or storage is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security, and you use the Services at your own risk.

13. Children's Privacy

The Services are not directed to individuals under the age of 18, and Elecatro does not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child under 18, we will take steps to delete such data promptly. If you believe we may have collected data from a child, please contact us using the details in Section 14.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Elecatro LLC

Registered Agent / Business Address: [Insert Wyoming registered address]

Email: [Insert privacy/legal contact email]

Website: [Insert company website]

EU/UK residents may also have the right to lodge a complaint with their local data protection authority if they believe their rights have been violated.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. Material changes will be communicated via the Services or by email at least 14 days before taking effect, and the "Last Updated" date at the top of this Policy will be revised accordingly. Continued use of the Services after such changes take effect constitutes acceptance of the revised Policy.

16. Supplementary Disclosures

16.1 "Do Not Track" Signals

Our Services do not currently respond to "Do Not Track" browser signals, as no uniform industry standard for such signals has been adopted.

16.2 Third-Party Links

Our website and Services may contain links to third-party websites or services. Elecatro is not responsible for the privacy practices of such third parties, and we encourage you to review their privacy policies independently.

16.3 Automated Decision-Making

Where Elecatro's AI-powered features produce Output or recommendations that may affect you, such processing is intended to assist rather than replace human judgment. If you believe a decision has been made about you based solely on automated processing with legal or similarly significant effects, you may contact us to request human review, subject to applicable law.