Privacy Policy

Welcome to AutiVex, operated by Cyrolo LLC ("Company," "we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.

By accessing or using AutiVex, you agree to this Privacy Policy. If you do not agree with the terms of this policy, please do not access the platform.

We collect information in several ways:

**Personal Information You Provide:** • Account registration details (name, email address, password) • Business information (if claiming a business profile) • Reviews and ratings you submit • Contact form submissions • Payment information (processed securely through Stripe)

**Information Automatically Collected:** • Device information (browser type, operating system) • IP address and approximate location • Usage data (pages visited, time spent, interactions) • Cookies and similar tracking technologies

**Information from Third Parties:** • Google OAuth data (if you sign in with Google) • Business data from public sources for verification

We use your information to:

• Provide, operate, and maintain the AutiVex platform • Process and manage your account registration • Facilitate business reviews and trust score calculations • Process payments for premium subscriptions • Send administrative communications (service updates, security alerts) • Send marketing communications (with your consent) • Analyze usage patterns to improve our services • Detect and prevent fraud, abuse, and security incidents • Comply with legal obligations • Respond to customer support inquiries

We may share your information with:

**Service Providers:** • Cloud hosting providers (Railway, Cloudflare) • Payment processors (Stripe) • Email service providers (Resend) • Analytics providers

**Legal Requirements:** We may disclose information if required by law, court order, or government request, or to protect our rights, privacy, safety, or property.

**Business Transfers:** In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

**Public Reviews:** Reviews you submit are publicly visible on business profiles. Your display name (not email) will be shown with your reviews.

We do NOT sell your personal information to third parties.

We implement industry-standard security measures to protect your data:

• 256-bit SSL/TLS encryption for all data transmission • Encrypted password storage using bcrypt hashing • Regular security audits and vulnerability assessments • Access controls and authentication requirements • Secure cloud infrastructure with SOC 2 compliance • Regular backups and disaster recovery procedures

While we strive to protect your information, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

We retain your personal information for as long as necessary to:

• Maintain your active account • Provide our services to you • Comply with legal obligations • Resolve disputes and enforce agreements

**Retention Periods:** • Account data: Retained while account is active, plus 30 days after deletion request • Reviews: Retained indefinitely (or until removed by you or flagged/removed for policy violations) • Transaction records: 7 years (for legal/tax compliance) • Server logs: 90 days

You may request deletion of your account and personal data at any time.

Depending on your location, you may have the following rights:

**Access:** Request a copy of your personal data **Correction:** Request correction of inaccurate data **Deletion:** Request deletion of your personal data **Portability:** Request your data in a portable format **Objection:** Object to certain processing activities **Withdrawal:** Withdraw consent at any time

**For California Residents (CCPA):** • Right to know what personal information is collected • Right to delete personal information • Right to opt-out of sale of personal information (we do not sell data) • Right to non-discrimination for exercising privacy rights

**For EU/EEA Residents (GDPR):** See our dedicated GDPR page for additional information about your rights under European data protection law.

To exercise your rights, contact us at privacy@autivex.com

We use cookies and similar technologies to:

• Remember your preferences and settings • Keep you signed in • Analyze site traffic and usage • Improve platform performance

**Types of Cookies:** • Essential cookies: Required for basic functionality • Analytics cookies: Help us understand usage patterns • Preference cookies: Remember your settings

You can control cookies through your browser settings. Note that disabling certain cookies may affect platform functionality.

For more details, see our Cookie Policy.

AutiVex is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at privacy@autivex.com.

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new policy on this page • Updating the "Last Updated" date • Sending an email notification for material changes

We encourage you to review this Privacy Policy periodically for any changes.

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

**Cyrolo LLC** 30 N Gould St Ste N Sheridan, WY 82801 United States

**Email:** privacy@autivex.com **Website:** https://autivex.com/contact

For GDPR-related inquiries, you may also contact our Data Protection Officer at dpo@autivex.com.