PRIVACY POLICY

This Privacy Policy ("Policy") describes how BrainSites.io, BrainSites, and its owners, operators, affiliates, contractors, employees, successors, assigns, and authorized representatives (collectively, "BrainSites," "Company," "we," "us," or "our") collect, use, store, process, disclose, protect, and otherwise handle personal information and related data in connection with our website, communications, demos, inquiries, sales process, onboarding, services, subscriptions, one-time purchases, support, chatbot-related services, website-related services, and any related products, content, tools, or interactions.

By accessing our website, submitting information to us, booking a call, requesting a demo, communicating with us, purchasing services, subscribing to any offering, or otherwise interacting with BrainSites, you acknowledge that you have read and understood this Privacy Policy.

1. Scope of This Policy

This Policy applies to information collected through:

• our website and any landing pages, forms, contact forms, booking forms, scheduling tools, and checkout pages;
• email, phone, SMS, messaging apps, video calls, social media messages, and other communications with us;
• demo requests, sales conversations, onboarding forms, support interactions, and service delivery processes;
• websites, pages, forms, chatbots, or other digital assets we build, publish, host, manage, or maintain for clients, to the extent applicable;
• third-party tools, platforms, service providers, integrations, or software used in connection with our operations or service delivery.

This Policy does not apply to third-party websites, platforms, registrars, payment processors, scheduling providers, chatbot platforms, analytics providers, email tools, hosting providers, or other services we do not own or control, even if we link to them, use them, recommend them, or configure them as part of our services. Those third parties may have their own privacy policies, and you are responsible for reviewing them.

2. Categories of Information We May Collect

Depending on how you interact with us, we may collect the following categories of information:

A. Contact and Identity Information

• name;
• business name;
• email address;
• phone number;
• billing name;
• contact role or title;
• mailing or business address;
• domain-related contact details.

B. Business Information

• business industry;
• service area;
• business description;
• offerings and pricing details you choose to provide;
• brand materials;
• logos;
• images;
• testimonials;
• reviews;
• public business listings;
• social media profiles;
• business goals and preferences.

C. Transaction and Commercial Information

• plan selected;
• service type;
• invoice details;
• subscription status;
• payment status;
• order history;
• billing-related records;
• refunds, cancellations, or disputes;
• communications relating to sales or support.

D. Technical and Usage Information

• IP address;
• browser type;
• device type;
• operating system;
• referral source;
• approximate location data derived from IP;
• pages visited;
• on-site actions;
• timestamps;
• session activity;
• basic analytics and performance data.

E. Communication Records

• emails;
• call notes;
• messages;
• support requests;
• onboarding submissions;
• video meeting notes;
• sales communications;
• project-related communications;
• records of approvals, instructions, or requests.

F. Client Content and Submitted Materials

• text, images, files, logos, brand assets, copy, documents, instructions, and other materials you send to us or direct us to use;
• domain, DNS, platform, or admin access details you voluntarily provide for implementation purposes;
• chatbot-related setup information;
• website-related content and business information you request us to place, configure, or publish.

G. Marketing and Lead Information

• information provided through demo request forms;
• contact and qualification details;
• lead-source information;
• response history;
• booking history;
• email engagement data where available;
• notes regarding potential fit for our services.

3. How We Collect Information

We may collect information:

• directly from you when you fill out forms, contact us, book calls, request demos, purchase services, or provide onboarding information;
• automatically through cookies, analytics tools, server logs, and similar tracking technologies;
• from your business website, public listings, public social profiles, public review pages, maps listings, or other publicly available business information;
• from service providers, payment processors, scheduling tools, communication platforms, advertising tools, analytics tools, or other vendors used in the ordinary course of business;
• from referrals, sales conversations, public sources, or other lawful business-intelligence sources.

4. Purposes for Which We Use Information

We may use information for the following purposes:

• to respond to inquiries;
• to communicate with you;
• to provide demos, proposals, quotes, or sales information;
• to determine whether our services may be suitable for your business;
• to process transactions and manage billing;
• to onboard clients;
• to build, configure, publish, manage, support, update, or maintain websites and related services;
• to provide chatbot setup or related assistance;
• to improve our website, services, sales process, support process, and operations;
• to monitor usage, diagnose technical issues, and protect system integrity;
• to prevent fraud, abuse, nonpayment, unauthorized access, or misuse;
• to maintain records of agreements, approvals, instructions, and service history;
• to comply with legal obligations, lawful requests, disputes, investigations, or enforcement needs;
• to market our services where permitted by law;
• to create internal business records, training materials, service documentation, analytics, and operational insights.

We may also use information for any other lawful purpose reasonably related to our business operations, service delivery, customer management, contract administration, risk management, or protection of our legal and commercial interests.

5. Legal Bases and Consent

Depending on the jurisdiction, we may process information based on one or more of the following grounds:

• your consent;
• performance of a contract or steps taken at your request before entering into a contract;
• our legitimate business interests;
• compliance with legal obligations;
• protection of our rights, property, systems, operations, personnel, clients, or business interests.

Where consent is required by law for a particular activity, your submission of information, opt-in action, continued use, or other affirmative conduct may serve as such consent to the extent permitted by law.

6. Cookies, Analytics, and Similar Technologies

We may use cookies, pixels, tags, scripts, analytics tools, and similar technologies to:

• remember preferences;
• understand website usage;
• improve functionality;
• measure traffic and engagement;
• support security and troubleshooting;
• support advertising or remarketing where used;
• improve business and marketing performance.

You may be able to control certain cookies through your browser settings or device settings. However, blocking certain technologies may affect website functionality, performance, or convenience.

We do not guarantee that all cookie-control mechanisms will be available, complete, or effective on all browsers or devices.

7. Communications and Marketing

If you contact us, request a demo, schedule a call, or otherwise provide your contact information, we may contact you regarding your inquiry, our services, your account, sales follow-up, onboarding, delivery, support, renewals, policy updates, operational matters, and similar communications.

Where permitted by law, we may also send promotional, educational, or marketing communications. You may unsubscribe from marketing emails using the unsubscribe mechanism included in such emails, though you may still receive transactional, service-related, legal, billing, or administrative communications.

8. Call Notes, Meeting Notes, and Internal Records

We may create and maintain internal notes, summaries, records, tags, classifications, workflow statuses, lead-quality assessments, project notes, support notes, and similar internal records arising from communications or business interactions.

Such records may be used for sales operations, service delivery, training, quality control, dispute resolution, internal analytics, legal protection, and business management.

9. Payment Information

Payments may be processed by third-party payment processors. BrainSites does not necessarily store full payment card details on its own servers.

However, we may receive and store related payment information such as billing name, billing email, transaction status, payment history, invoice status, dispute status, subscription status, and limited processor-provided payment metadata.

All payment processing is subject to the privacy terms and security practices of the relevant payment processor.

10. Client Content and Business Data

In the course of providing services, clients may provide content, business information, branding materials, testimonials, contact details, domain settings, credentials, and other materials for use in website builds, chatbot setup, publishing, or support.

You acknowledge and agree that:

• you are solely responsible for the legality, accuracy, and rights status of the materials you provide;
• you authorize BrainSites to store, review, adapt, format, process, publish, configure, and otherwise use such materials as reasonably necessary to provide the services;
• BrainSites may rely on your instructions and representations concerning the materials you provide;
• BrainSites is not responsible for independently verifying the truth, ownership, permission status, or legal compliance of all materials you submit.

11. How We Disclose Information

We may disclose information to the following categories of recipients as reasonably necessary:

• contractors, team members, service providers, and affiliates assisting with sales, support, delivery, operations, communication, analytics, billing, hosting, or administration;
• payment processors, invoicing providers, scheduling providers, analytics providers, communication providers, software platforms, chatbot tools, domain providers, hosting platforms, and other third-party vendors;
• legal, accounting, operational, technical, or professional advisors;
• courts, regulators, law enforcement, government authorities, or dispute-resolution bodies where we believe disclosure is appropriate or required;
• successor entities, acquirers, investors, or transaction participants in connection with a merger, sale, financing, reorganization, acquisition, dissolution, or similar business event;
• other persons or entities with your consent or at your direction.

We may also disclose information where we determine in good faith that disclosure is necessary or appropriate to:

• enforce our Terms, policies, invoices, or contractual rights;
• collect amounts owed;
• investigate abuse, fraud, security issues, or misuse;
• protect our rights, systems, property, personnel, contractors, clients, or business operations;
• comply with legal process or protect against legal liability.

12. No Sale Guarantee Language and Business Protection

BrainSites does not sell personal information in the simplistic sense often assumed by consumers, but we reserve the right to share, transfer, disclose, or otherwise make information available as reasonably necessary for legitimate business operations, service delivery, contract administration, security, analytics, fraud prevention, collections, legal compliance, enforcement, professional advice, corporate transactions, and related business purposes to the fullest extent permitted by applicable law.

Any rights you may have regarding disclosure, opt-out, limitation, deletion, or access are subject to applicable law, technical feasibility, identity verification, legal retention obligations, dispute preservation needs, security concerns, internal backup systems, and our legitimate need to maintain defensible business records.

13. Data Retention

We may retain information for as long as reasonably necessary for the purposes described in this Policy, including for:

• sales follow-up;
• service delivery;
• account administration;
• support history;
• billing and tax records;
• legal compliance;
• dispute resolution;
• fraud prevention;
• enforcement of our agreements;
• preservation of evidence;
• internal analytics and business records;
• backup and archival purposes.

Retention periods may vary depending on the nature of the information, the relationship involved, the risk associated with deletion, legal obligations, operational needs, dispute risk, and technical realities.

Even where deletion is requested, certain information may be retained where necessary for lawful business purposes, fraud prevention, security, backups, legal defense, contractual enforcement, financial records, tax records, or compliance obligations.

14. Data Security

We use commercially reasonable administrative, technical, and organizational measures intended to help protect information. However, no method of transmission, storage, or processing is completely secure.

Accordingly, BrainSites does not guarantee absolute security, perfect protection, uninterrupted protection, or immunity from unauthorized access, system intrusion, data theft, data loss, misuse, interception, third-party misconduct, platform compromise, provider failures, or other security incidents.

To the fullest extent permitted by law, you acknowledge that you provide information and use our website and services at your own risk, and BrainSites shall not be liable for unauthorized access or security incidents except as expressly required by applicable law.

15. International Processing

BrainSites may operate internationally and may use service providers, contractors, systems, or tools located in different jurisdictions.

Accordingly, your information may be transferred to, processed in, stored in, or accessed from countries or jurisdictions that may have data-protection laws different from those in your state, province, or country.

By interacting with BrainSites or providing information to us, you acknowledge and agree to such transfers and processing to the extent permitted by law.

16. Client Websites, End Users, and Role Allocation

If BrainSites builds, hosts, manages, or supports a client website, form, chatbot, booking flow, or related digital asset, BrainSites may in some cases act only as a service provider, processor, vendor, or technical operator with respect to data collected through that client asset, while the client remains the primary party responsible for the underlying business, customer relationship, data-collection disclosures, lawful basis, consent mechanisms, and compliance obligations applicable to that client’s end users.

Clients are solely responsible for determining whether they need their own privacy policy, cookie notice, consent tools, disclosures, or other compliance mechanisms for their own website visitors, leads, and customers.

BrainSites is not a law firm and does not provide legal compliance guarantees.

17. Public Information and Business Prospecting

Because BrainSites works with businesses and may conduct outreach to businesses, we may collect and use publicly available business information, including business names, public websites, public contact information, public listings, public reviews, public map listings, public social profiles, and similar business-related information for lawful sales, research, qualification, outreach, market analysis, and service-personalization purposes to the extent permitted by law.

18. Children’s Information

Our website and services are not directed to children, and we do not knowingly seek to collect personal information from children in violation of applicable law. If we become aware that information has been collected from a child in a manner that requires remediation under applicable law, we may take appropriate corrective action.

19. Your Rights and Requests

Depending on your jurisdiction, you may have certain rights regarding personal information, which may include rights to request access, correction, deletion, portability, restriction, objection, appeal, or limitation of certain processing.

Any such rights are subject to:

• identity verification;
• the scope of applicable law;
• legal exemptions;
• contractual obligations;
• security considerations;
• fraud-prevention needs;
• record-retention obligations;
• backup systems;
• dispute preservation;
• technical feasibility;
• our legitimate business and legal interests.

We may deny, limit, defer, or condition a request where permitted by law, including where we cannot verify identity, where the request is overly broad, repetitive, burdensome, technically infeasible, legally exempt, inconsistent with another person’s rights, or would impair our ability to maintain accurate records, defend legal claims, enforce agreements, prevent fraud, or operate our business.

To make a privacy-related request, contact us using the email listed below. We may request additional information to verify your identity and authority before taking action.

20. Do Not Track and Browser Signals

Our website may not respond to every browser-based do-not-track signal, opt-out signal, or similar mechanism unless and until we expressly state otherwise.

21. Third-Party Links and External Services

Our website, demos, or communications may contain links to third-party websites, software, tools, scheduling pages, payment pages, registrar pages, chatbot platforms, or other external services. BrainSites is not responsible for the privacy, security, content, availability, or practices of any third party.

Your use of third-party services is at your own risk and subject to the third party’s own terms and policies.

22. Business Transfers and Corporate Changes

If BrainSites is involved in a sale, merger, acquisition, restructuring, financing, dissolution, asset sale, transfer of operations, or similar corporate event, information may be transferred, disclosed, reviewed, or assigned as part of that process, subject to applicable law.

23. Policy Changes

BrainSites may update, modify, revise, or replace this Privacy Policy from time to time. The updated version will become effective upon posting unless otherwise stated.

Your continued access to or use of our website or services after an updated version becomes effective constitutes your acknowledgment of the revised Policy to the extent permitted by law.

24. No Implied Waiver or Greater Rights

Nothing in this Privacy Policy shall be interpreted to create any contractual promise, fiduciary duty, or greater standard of care than is required by applicable law, except to the extent we expressly state otherwise.

25. Contact

If you have questions about this Privacy Policy or wish to submit a privacy-related request, you may contact: