Privacy Policy

Last Updated: January 2025

1. Information We Collect

1.1 Information You Provide Directly to Us

We collect information that you voluntarily provide to us when you interact with our Service, including:

• Account Registration Information: When you create an account, we collect your name, email address, password (which is encrypted and stored securely), and any other information you choose to provide in your profile.
• User Content: We collect documents, images, text files, presentations, and other educational materials that you upload to our Service for processing. This includes PDFs, Word documents, PowerPoint presentations, images, and other file formats supported by our Service.
• Payment and Billing Information: When you make a purchase, we collect billing information including billing address, payment method details, and transaction history. Payment processing is handled by secure third-party payment processors (such as PayPal). We do not store full credit card numbers on our servers.
• Communications: We collect information you provide when you contact us for customer support, submit feedback, participate in surveys, or communicate with us through email, chat, or other channels.
• Third-Party Authentication Information: If you choose to sign in using third-party authentication services (such as Google or Facebook), we may receive certain information from those services, including your name, email address, and profile picture, as permitted by your account settings with those services.
• Preferences and Settings: We collect information about your preferences, settings, and customizations within the Service.

1.2 Information Automatically Collected

When you access or use our Service, we automatically collect certain information about your device and how you interact with our Service:

• Usage Information: We collect information about how you use our Service, including pages visited, features accessed, time spent on pages, click patterns, search queries, and navigation paths.
• Device Information: We collect information about the device you use to access our Service, including device type, operating system, browser type and version, device identifiers (such as IP address), screen resolution, and language settings.
• Log Data: Our servers automatically record information when you use our Service, including IP addresses, access times, pages viewed, links clicked, and other actions taken within the Service.
• Error Reports: We collect information about errors, crashes, and performance issues that occur when you use our Service to help us diagnose and fix problems.
• Location Information: We may collect general location information based on your IP address, but we do not collect precise geolocation data without your explicit consent.

1.3 Cookies and Similar Tracking Technologies

We use cookies, web beacons, pixel tags, and similar tracking technologies to collect and store information about your use of our Service. Cookies are small text files that are placed on your device when you visit a website. We use both session cookies (which expire when you close your browser) and persistent cookies (which remain on your device until deleted or expired).

We use cookies for the following purposes:

• Essential Cookies: Required for the Service to function properly, including authentication, security, and load balancing.
• Functional Cookies: Enable enhanced functionality and personalization, such as remembering your preferences and settings.
• Analytics Cookies: Help us understand how visitors interact with our Service by collecting and reporting information anonymously.
• Advertising Cookies: Used to deliver relevant advertisements and track the effectiveness of our advertising campaigns.

You can control cookies through your browser settings. However, disabling certain cookies may limit your ability to use some features of our Service.

2. How We Use Your Information

We use the information we collect for various purposes, including:

2.1 Service Provision and Operation

• To provide, maintain, operate, and improve our Service
• To process your cheatsheet generation requests and deliver results
• To create and manage your account and authenticate your identity
• To process payments and manage billing
• To provide customer support and respond to your inquiries
• To send you service-related communications, such as account updates, security alerts, and technical notices

2.2 Communication and Marketing

• To send you promotional communications, newsletters, and marketing materials (you may opt out at any time)
• To notify you about new features, updates, and changes to our Service
• To conduct surveys and gather feedback to improve our Service

2.3 Analytics and Improvement

• To monitor and analyze usage patterns, trends, and user behavior
• To understand how users interact with our Service and identify areas for improvement
• To conduct research and analytics to enhance user experience
• To develop new features and services

2.4 Security and Fraud Prevention

• To detect, prevent, and address technical issues, security threats, fraud, and abuse
• To protect the security and integrity of our Service and prevent unauthorized access
• To investigate and respond to security incidents and violations of our Terms of Service

2.5 Legal and Compliance

• To comply with applicable laws, regulations, and legal processes
• To enforce our Terms of Service and other agreements
• To protect our rights, property, and safety, and that of our users and others
• To respond to legal requests and court orders

3. Data Storage and Security

We implement comprehensive technical and organizational security measures designed to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Our security measures include:

3.1 Technical Safeguards

• Encryption: We use industry-standard encryption technologies to protect data both in transit (using TLS/SSL) and at rest (using AES encryption)
• Secure Infrastructure: Our servers are hosted on secure cloud infrastructure with regular security updates and patches
• Access Controls: We implement strict access controls and authentication mechanisms to ensure only authorized personnel can access your information
• Network Security: We use firewalls, intrusion detection systems, and other network security measures to protect against unauthorized access
• Regular Security Assessments: We conduct regular security audits, vulnerability assessments, and penetration testing

3.2 Organizational Safeguards

• Employee Training: We provide regular security training to our employees and contractors
• Data Access Policies: We limit access to personal information to employees and contractors who need it to perform their job functions
• Confidentiality Agreements: All employees and contractors are bound by strict confidentiality agreements
• Incident Response: We have procedures in place to respond to security incidents promptly and effectively

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security. You acknowledge and agree that you provide information at your own risk, and we are not responsible for any unauthorized access to or use of your information that occurs despite our security measures.

4. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Our data retention practices include:

• Account Information: We retain your account information while your account is active and for a reasonable period thereafter (typically 30-90 days after account deletion) to comply with legal obligations and resolve disputes
• User Content: Uploaded files and generated content may be retained for service functionality and may be automatically deleted after a certain period of inactivity or in accordance with our data retention policies
• Payment Information: We retain payment and transaction records as required by law (typically 7 years for tax and accounting purposes)
• Log Data: Server logs and usage data are typically retained for 12-24 months for security and analytics purposes
• Legal Requirements: We may retain certain information as required by law, for dispute resolution, or to enforce our agreements

You may request deletion of your account and associated data at any time by contacting us. We will process such requests in accordance with applicable law and our data retention policies.

5. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties for their marketing purposes. We may share your information only in the following circumstances:

5.1 Service Providers

We may share information with trusted third-party service providers who perform services on our behalf, including:

• Payment Processors: Companies that process payments on our behalf (such as PayPal)
• Cloud Hosting Providers: Companies that provide cloud infrastructure and hosting services
• AI Service Providers: Companies that provide AI and machine learning services for content processing
• Analytics Providers: Companies that help us analyze usage patterns and improve our Service
• Customer Support: Companies that provide customer support services
• Email Service Providers: Companies that help us send emails and communications

These service providers are contractually obligated to protect your information and use it only for specified purposes. They are not permitted to use your information for their own purposes.

5.2 Legal Requirements

We may disclose information if required by law, court order, or governmental authority, or if we believe disclosure is necessary to:

• Comply with applicable laws, regulations, or legal processes
• Respond to valid requests from law enforcement or government agencies
• Protect our rights, property, or safety, or that of our users or others
• Prevent or investigate fraud, security threats, or violations of our Terms of Service
• Enforce our agreements and policies

5.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.

5.4 With Your Consent

We may share information with your explicit consent or at your direction, including when you choose to share content through social media or other third-party services.

6. Third-Party Services and Links

Our Service integrates with third-party services and may contain links to third-party websites. These third-party services have their own privacy policies governing the use of your information. We are not responsible for the privacy practices of third-party services. We encourage you to review their privacy policies before providing any information to them.

6.1 Payment Processors

We use third-party payment processors (such as PayPal) to handle payment transactions. When you make a payment, your payment information is processed directly by the payment processor in accordance with their privacy policy. We do not store full credit card numbers on our servers.

6.2 Authentication Providers

We offer the option to sign in using third-party authentication services (such as Google and Facebook). When you use these services, they may collect certain information about you in accordance with their privacy policies.

6.3 AI Service Providers

We use third-party AI services to process your content and generate cheatsheets. These providers may have access to your uploaded content solely for processing purposes and in accordance with their privacy policies and our agreements with them.

7. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information under applicable data protection laws, including:

7.1 Access and Portability

• Right to Access: You have the right to request access to your personal information and receive a copy of the data we hold about you
• Right to Data Portability: You have the right to receive your personal information in a structured, commonly used, and machine-readable format and to transmit that data to another service

7.2 Correction and Deletion

• Right to Rectification: You have the right to request correction of inaccurate or incomplete information
• Right to Erasure: You have the right to request deletion of your personal information under certain circumstances

7.3 Restriction and Objection

• Right to Restrict Processing: You have the right to request restriction of processing of your personal information under certain circumstances
• Right to Object: You have the right to object to certain processing activities, including processing for direct marketing purposes

7.4 Opt-Out Rights

• Marketing Communications: You can opt out of receiving promotional emails by clicking the unsubscribe link in any promotional email or by contacting us
• Cookies: You can control cookies through your browser settings
• Account Deletion: You can request deletion of your account at any time by contacting us

To exercise these rights, please contact us at bentilintelligentsystems@gmail.com. We will respond to your request within a reasonable timeframe and in accordance with applicable law. We may need to verify your identity before processing your request.

8. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including:

• Right to Know: You have the right to know what personal information we collect, use, disclose, and sell (we do not sell personal information)
• Right to Delete: You have the right to request deletion of your personal information
• Right to Opt-Out: You have the right to opt out of the sale of personal information (we do not sell personal information)
• Right to Non-Discrimination: You have the right to non-discrimination for exercising your privacy rights

To exercise these rights, please contact us using the information provided below. We will not discriminate against you for exercising your privacy rights.

9. GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal information in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

9.1 Legal Basis for Processing

We process your personal information based on the following legal bases:

• Consent: When you have given consent to the processing of your personal information
• Contract Performance: When processing is necessary for the performance of a contract with you
• Legal Obligation: When processing is necessary to comply with a legal obligation
• Legitimate Interests: When processing is necessary for our legitimate business interests, such as improving our Service, preventing fraud, or ensuring security

9.2 Data Transfer

Your information may be transferred to and processed in countries outside the EEA. When we transfer your information outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

9.3 Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe we have violated your data protection rights. You can find your local supervisory authority at https://edpb.europa.eu/about-edpb/board/members_en.

10. Children's Privacy

Our Service is not intended for individuals under the age of 13 (or the age of majority in your jurisdiction, whichever is higher). We do not knowingly collect personal information from children under 13. If we become aware that we have collected information from a child under 13, we will take steps to delete such information promptly.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If you believe we have collected information from a child under 13, please contact us at bentilintelligentsystems@gmail.com.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using our Service, you consent to the transfer of your information to these countries.

When we transfer your information internationally, we take steps to ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy and applicable data protection laws.

12. Data Breach Notification

In the event of a data breach that may affect your personal information, we will:

• Investigate the breach promptly and take steps to contain and remediate it
• Notify affected users and relevant authorities as required by applicable law
• Provide notice without undue delay after becoming aware of the breach
• Provide information about the nature of the breach, the types of information affected, and steps you can take to protect yourself

We maintain incident response procedures to ensure we can respond to security incidents promptly and effectively.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other reasons. We will notify you of material changes by:

• Posting the updated Privacy Policy on this page
• Updating the "Last Updated" date at the top of this Privacy Policy
• Sending an email notification to the address associated with your account (if applicable)
• Displaying a prominent notice on our Service

Your continued use of our Service after such changes constitutes acceptance of the updated Privacy Policy. If you do not agree to the updated Privacy Policy, you must stop using the Service and may delete your account.

We encourage you to review this Privacy Policy periodically to stay informed about how we collect, use, and protect your information.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Bentil Intelligent Systems LLC
Email: bentilintelligentsystems@gmail.com

We will respond to your inquiry within a reasonable timeframe and in accordance with applicable law.

By using LucidPie, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.