Privacy Policy

1. Introduction

This Privacy Policy ("Policy") describes how Intratera LLC ("Intratera," "Company," "we," "us," "our") collects, uses, processes, stores, shares, protects, and discloses information, including personal information and personal data (collectively, "Personal Data"), obtained from and about users ("User," "you," "your," "Customer," "Subscriber") of the Intratera platform, website, applications, APIs, and all related services (collectively, the "Service").

BY ACCESSING OR USING THE SERVICE, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO BE BOUND BY THIS PRIVACY POLICY. IF YOU DO NOT AGREE WITH THIS POLICY, YOU MUST NOT ACCESS OR USE THE SERVICE.

This Policy applies to all information collected through the Service and through any related services, sales, marketing, events, and communications. This Policy does not apply to information collected by third parties, including any third-party services, applications, or content that may be accessible through the Service.

2. Information We Collect

2.1 Information You Provide Directly

We collect information that you voluntarily provide to us, including but not limited to:

• Account Registration Data: name, email address, phone number, company name, job title, billing address, password, and other information you provide when creating an account;
• Payment and Billing Data: credit card numbers, bank account information, billing addresses, and transaction history, which are processed by our third-party payment processors;
• Customer Relationship Data (CRM Data): contact records, customer profiles, communication histories, transaction records, notes, tags, custom fields, and any other data you input into the CRM platform;
• Communication Data: emails, messages, support tickets, chat logs, feedback, survey responses, and other communications you send to us or through the Service;
• Content and Files: documents, images, attachments, form submissions, course materials, and other content you upload to the Service;
• Integration Data: data you import from or export to third-party services connected to your account.

2.2 Information Collected Automatically

When you access or use the Service, we automatically collect certain information, including:

• Device and Browser Information: IP address, device type, operating system, browser type and version, device identifiers, screen resolution, and language preferences;
• Usage Data: pages visited, features used, actions taken, time and date of access, time spent on pages, click patterns, navigation paths, referring URLs, and exit pages;
• Log Data: server logs, error logs, access logs, API call logs, and other diagnostic information;
• Cookies and Tracking Technologies: cookies, web beacons, pixels, local storage, session storage, and similar tracking technologies (see Section 7);
• Location Data: approximate geographic location based on IP address.

2.3 Information from Third Parties

We may receive information about you from third parties, including: identity verification services, credit reporting agencies, marketing partners, social media platforms, third-party integrations you enable, publicly available sources, and other users of the Service who may provide your information (e.g., by adding you as a contact in the CRM).

3. How We Use Your Information

We use the information we collect for the following purposes:

• To provide, operate, maintain, and improve the Service;
• To create and manage your account;
• To process transactions and send related information, including purchase confirmations and invoices;
• To provide customer support and respond to your inquiries;
• To send administrative information, such as updates, security alerts, and support messages;
• To personalize your experience and deliver content and features relevant to your interests;
• To monitor and analyze trends, usage, and activities in connection with the Service;
• To detect, investigate, and prevent fraudulent transactions, abuse, and other illegal activities;
• To comply with legal obligations, resolve disputes, and enforce our agreements;
• To develop new products, services, features, and functionality;
• To aggregate and anonymize data for statistical, analytical, and research purposes;
• For any other purpose with your consent or as otherwise described at the time of collection.

4. Legal Bases for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom (UK), or Switzerland, our legal bases for collecting and using your Personal Data depend on the data concerned and the specific context in which we collect it. We may process your Personal Data on the following legal bases:

• Performance of a Contract: Processing is necessary for the performance of a contract to which you are a party or to take steps at your request prior to entering into a contract;
• Legitimate Interests: Processing is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests;
• Consent: You have given consent to the processing of your Personal Data for one or more specific purposes;
• Legal Obligation: Processing is necessary for compliance with a legal obligation to which we are subject.

5. How We Share Your Information

We may share your information in the following circumstances:

• Service Providers: We share information with third-party vendors, consultants, and other service providers who perform services on our behalf, including payment processing, data storage, hosting, analytics, email delivery, customer support, and security services. These providers are contractually obligated to use your information only as necessary to provide their services to us and are prohibited from using it for their own purposes;
• Legal Requirements: We may disclose your information if required to do so by law or in the good faith belief that such action is necessary to: (a) comply with a legal obligation, subpoena, court order, or governmental request; (b) protect and defend the rights or property of Intratera; (c) prevent or investigate possible wrongdoing in connection with the Service; (d) protect the personal safety of users of the Service or the public; or (e) protect against legal liability;
• Business Transfers: In connection with, or during negotiations of, any merger, acquisition, sale of company assets, financing, reorganization, bankruptcy, receivership, dissolution, or similar transaction, your information may be shared or transferred as part of such transaction. We will notify you via email and/or a prominent notice on the Service of any change in ownership or uses of your Personal Data;
• With Your Consent: We may share your information with third parties when you have given us explicit consent to do so;
• Aggregated or De-identified Data: We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you.

WE DO NOT SELL YOUR PERSONAL DATA. We have not sold Personal Data in the preceding twelve (12) months and do not intend to sell Personal Data in the future.

6. Data Retention

We retain your Personal Data only for as long as is necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period, we consider the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process the data, whether we can achieve those purposes through other means, and applicable legal requirements.

When you delete your account, we will delete or anonymize your Personal Data within a reasonable time period, except where we are required to retain certain information for legal, regulatory, tax, security, or compliance purposes, or where the information is contained in backup archives that are subject to our standard backup retention schedules.

Notwithstanding the foregoing, we may retain aggregated, anonymized, or de-identified data indefinitely for analytics, research, and statistical purposes, provided that such data cannot be used to identify any individual.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information when you access the Service. Cookies are small data files stored on your device that help us improve the Service, understand how you use the Service, and personalize your experience.

The types of cookies we use include:

• Strictly Necessary Cookies: Required for the operation of the Service, such as session management and authentication;
• Performance and Analytics Cookies: Used to analyze how the Service is used, monitor performance, and improve functionality;
• Functional Cookies: Used to remember your preferences and settings;
• Marketing and Advertising Cookies: Used to deliver relevant advertisements and track the effectiveness of marketing campaigns.

You can control cookies through your browser settings and other tools. However, disabling certain cookies may limit your ability to use some features of the Service. For more information about cookies and how to manage them, visit www.allaboutcookies.org.

8. Data Security

We implement and maintain commercially reasonable administrative, technical, and physical security measures designed to protect your Personal Data against unauthorized access, alteration, disclosure, or destruction. These measures include, but are not limited to: encryption of data in transit and at rest, access controls and authentication mechanisms, regular security assessments and audits, network firewalls and intrusion detection systems, and employee training on data security practices.

HOWEVER, NO METHOD OF TRANSMISSION OVER THE INTERNET, METHOD OF ELECTRONIC STORAGE, OR OTHER METHOD OF SAFEGUARDING INFORMATION IS COMPLETELY SECURE. WHILE WE STRIVE TO USE COMMERCIALLY REASONABLE MEANS TO PROTECT YOUR PERSONAL DATA, WE CANNOT GUARANTEE ITS ABSOLUTE SECURITY. YOU ACKNOWLEDGE AND ACCEPT THAT ANY TRANSMISSION OF PERSONAL DATA IS AT YOUR OWN RISK.

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and any applicable regulatory authority in accordance with applicable data breach notification laws. Such notification may be made by email, by posting on the Service, or by other means as required by applicable law.

9. International Data Transfers

Your information may be transferred to, stored in, and processed in countries other than the country in which you reside, including the United States. These countries may have data protection laws that are different from the laws of your country of residence. By using the Service, you consent to the transfer of your information to the United States and other countries as described in this Policy.

When we transfer Personal Data from the EEA, UK, or Switzerland to countries that have not been deemed to provide an adequate level of data protection, we implement appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission, to ensure that your data is protected in accordance with applicable data protection laws.

10. Your Rights and Choices

10.1 General Rights

Depending on your location and applicable law, you may have the following rights regarding your Personal Data:

• Right of Access: The right to request confirmation of whether we process your Personal Data and to obtain a copy of such data;
• Right of Rectification: The right to request correction of inaccurate or incomplete Personal Data;
• Right of Erasure (Right to be Forgotten): The right to request deletion of your Personal Data under certain circumstances;
• Right to Restrict Processing: The right to request restriction of processing of your Personal Data under certain circumstances;
• Right to Data Portability: The right to receive your Personal Data in a structured, commonly used, and machine-readable format and to transfer it to another controller;
• Right to Object: The right to object to the processing of your Personal Data for direct marketing purposes or where processing is based on legitimate interests;
• Right to Withdraw Consent: Where processing is based on consent, the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal;
• Right to Lodge a Complaint: The right to lodge a complaint with a supervisory authority in your jurisdiction.

10.2 California Residents (CCPA/CPRA)

If you are a California resident, you have the following additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

• Right to Know: The right to request that we disclose the categories and specific pieces of Personal Data we have collected about you, the categories of sources from which the data was collected, the business or commercial purpose for collecting the data, and the categories of third parties with whom we share the data;
• Right to Delete: The right to request that we delete your Personal Data, subject to certain exceptions;
• Right to Correct: The right to request correction of inaccurate Personal Data;
• Right to Opt-Out of Sale/Sharing: The right to opt out of the sale or sharing of your Personal Data. As stated above, we do not sell your Personal Data;
• Right to Non-Discrimination: The right not to be discriminated against for exercising your privacy rights.

10.3 Exercising Your Rights

To exercise any of the rights described above, please contact us at support@intratera.com. We will respond to your request within the timeframe required by applicable law (typically 30 days for GDPR and 45 days for CCPA/CPRA). We may request additional information from you to verify your identity before processing your request.

11. Children's Privacy

The Service is not directed to individuals under the age of sixteen (16), and we do not knowingly collect Personal Data from children under 16. If we become aware that a child under 16 has provided us with Personal Data, we will take steps to delete such data. If you become aware that a child has provided us with Personal Data without parental consent, please contact us at support@intratera.com.

12. Do Not Track Signals

Some browsers transmit "Do Not Track" (DNT) signals to websites. Because there is no common understanding of how to interpret DNT signals, the Service does not currently respond to browser DNT signals. You can control your privacy preferences regarding tracking technologies through your browser settings and cookie management preferences as described in Section 7.

13. Data Processing Addendum

To the extent that Intratera processes Personal Data on your behalf as a data processor (as defined under GDPR) or service provider (as defined under CCPA/CPRA), the following additional terms apply:

• Intratera shall process Personal Data only in accordance with your documented instructions and for the specific purposes described in this Policy and the Terms and Conditions;
• Intratera shall implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk of processing;
• Intratera shall not engage sub-processors without your prior written consent (which may be general consent with a right to object) and shall ensure that sub-processors are bound by obligations no less protective than those set forth herein;
• Intratera shall assist you in fulfilling your obligations to respond to data subject requests exercising their rights under applicable data protection laws;
• Intratera shall delete or return all Personal Data to you upon termination of the Service, unless retention is required by applicable law;
• Intratera shall make available to you all information necessary to demonstrate compliance with applicable data protection obligations and allow for and contribute to audits, including inspections, conducted by you or your appointed auditor.

14. Data Loss and Recovery

While Intratera implements commercially reasonable backup and disaster recovery measures, YOU ACKNOWLEDGE AND AGREE THAT INTRATERA SHALL NOT BE LIABLE FOR ANY LOSS, CORRUPTION, OR DESTRUCTION OF YOUR DATA, WHETHER IN WHOLE OR IN PART, REGARDLESS OF THE CAUSE, INCLUDING BUT NOT LIMITED TO:

• Hardware or software failures, malfunctions, or defects;
• Cyberattacks, hacking, ransomware, malware, or other malicious activities;
• Human error, whether by Intratera personnel, your personnel, or third parties;
• Natural disasters, power outages, or other force majeure events;
• Failures of third-party cloud infrastructure, hosting, or storage providers;
• Bugs, defects, or errors in the Service;
• Scheduled or unscheduled maintenance, updates, or migrations;
• Account termination, whether voluntary or involuntary.

YOU ARE SOLELY RESPONSIBLE FOR MAINTAINING INDEPENDENT BACKUPS OF ALL DATA YOU STORE ON OR TRANSMIT THROUGH THE SERVICE. INTRATERA STRONGLY RECOMMENDS THAT YOU REGULARLY EXPORT AND BACK UP YOUR DATA USING THE EXPORT FEATURES PROVIDED BY THE SERVICE. INTRATERA SHALL HAVE NO OBLIGATION TO RECOVER LOST, CORRUPTED, OR DESTROYED DATA.

15. Third-Party Links and Services

The Service may contain links to third-party websites, services, or applications that are not owned or controlled by Intratera. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party websites or services. Your interactions with third-party services are governed by the terms of service and privacy policies of those third parties. We encourage you to review the privacy policies of every third-party service you visit or interact with.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by updating the "Last updated" date at the top of this Policy and, where required by applicable law, by providing additional notice (such as by email or by posting a notice on the Service). We encourage you to review this Policy periodically to stay informed about our information practices.

Your continued use of the Service after the effective date of any changes to this Policy constitutes your acceptance of the modified Policy. If you do not agree with any changes, you must discontinue your use of the Service.

17. Contact Information

If you have any questions, concerns, or complaints about this Privacy Policy or our data practices, or if you wish to exercise any of your rights described herein, please contact us at:

Intratera LLC
Email: support@intratera.com

If you are located in the EEA, UK, or Switzerland and you are not satisfied with our response, you have the right to lodge a complaint with your local data protection supervisory authority.