FRACTILATEContact Us
Legal

Privacy Policy

Fractilate Inc.

Effective Date: April 19, 2026
Last Updated: April 19, 2026

1. Overview

Fractilate Inc. ("Fractilate," "we," "us," or "our") is committed to protecting personal data and respecting user privacy.

This Privacy Policy explains how we collect, use, disclose, and protect personal data when people access or use our website, applications, and related services (collectively, the "Services").

This Policy is intended to support compliance with:

  • the EU General Data Protection Regulation ("GDPR");
  • the ePrivacy Directive; and
  • the California Consumer Privacy Act, as amended by the California Privacy Rights Act ("CCPA/CPRA").

2. Scope

This Privacy Policy applies to:

  • visitors to our website;
  • users of our Services; and
  • customers and prospective customers.

This Policy does not apply to third-party websites, services, or applications that we do not control, even if they are linked from our Services.

3. Categories of Personal Data We Collect

3.1 Information You Provide to Us

We may collect personal data you provide directly, including:

  • name, email address, and contact details;
  • account registration information and login credentials;
  • payment-related information, billing details, or purchase information;
  • support requests, messages, and other communications with us; and
  • content, prompts, text, images, files, or other materials you submit through the Services.

3.2 Information Collected Automatically

When you use the Services, we may automatically collect:

  • IP address;
  • browser type and version;
  • device identifiers and operating system information;
  • pages viewed, features used, and timestamps of interactions;
  • referral URLs and similar traffic data; and
  • cookie and similar technology data, subject to applicable consent requirements.

3.3 Payment Information

Payments are processed by Stripe, Inc. We do not store full payment card numbers on our own systems. Stripe may collect payment card data, billing details, transaction information, and related identifiers in connection with payment processing.

4. How We Use Personal Data

We may use personal data to:

  • provide, operate, maintain, and improve the Services;
  • create and manage user accounts;
  • process payments and transactions;
  • communicate with users about the Services, updates, support, and administrative matters;
  • provide AI-powered features and generate outputs requested by users;
  • monitor usage, troubleshoot issues, and improve performance;
  • protect the security, integrity, and reliability of the Services;
  • detect, investigate, and prevent fraud, abuse, or unlawful activity; and
  • comply with legal obligations and enforce our rights.

5. Legal Bases for Processing (GDPR)

Where GDPR applies, we rely on one or more of the following legal bases:

  • Contractual necessity: when processing is needed to provide the Services or fulfill our obligations to you;
  • Legitimate interests: when processing is reasonably necessary for security, service improvement, fraud prevention, analytics, and business operations, provided those interests are not overridden by your rights;
  • Consent: when required by law, including for non-essential cookies and certain analytics or marketing technologies; and
  • Legal obligation: when processing is necessary to comply with applicable laws, regulations, court orders, or legal processes.

6. Cookies and Similar Technologies

We use cookies and similar technologies to operate and improve the Services.

6.1 Types of Cookies We May Use

  • Strictly Necessary Cookies: required for core website and service functionality;
  • Analytics Cookies: used to understand how visitors and users interact with the Services; and
  • Marketing or Preference Cookies: used to remember preferences or support communications and measurement, where applicable.

6.2 Consent Management

We use Cookiebot to help manage cookie consent and to support compliance with GDPR and ePrivacy requirements. Where required by law, non-essential cookies and similar technologies will not be activated unless and until the relevant user has provided consent.

You can update your cookie choices at any time through our Privacy Choices link or cookie settings tool.

7. Third-Party Services and Processors

We work with third-party vendors that help us operate the Services. Depending on the context, these vendors may act as processors, service providers, or independent controllers.

7.1 Google Analytics

We use Google Analytics to understand website and product usage, improve performance, and evaluate engagement with the Services.

Data processed may include:

  • pseudonymous identifiers;
  • browser and device information;
  • pages viewed and events triggered;
  • approximate location derived from IP address; and
  • technical usage metadata.

Where required by law, Google Analytics is activated only on the basis of user consent.

7.2 Cookiebot

We use Cookiebot (a consent management platform) to:

  • present cookie consent notices;
  • record and manage consent choices; and
  • help ensure non-essential technologies are blocked until consent is obtained where required.

7.3 OpenAI

We use OpenAI to provide AI-powered features within the Services.

Depending on how users interact with our Services, data sent for AI processing may include:

  • prompts, text, images, files, or other user-submitted inputs;
  • generated outputs; and
  • limited request metadata needed to operate the integration.

We use these services to provide requested features and improve the user experience. AI-generated outputs may be inaccurate, incomplete, or unsuitable for particular uses, so users remain responsible for reviewing outputs before relying on them.

7.4 Stripe

We use Stripe, Inc. to process payments and related transactions securely.

Stripe may process:

  • payment instrument information;
  • billing and transaction details;
  • fraud-prevention information; and
  • related identifiers and technical metadata.

Stripe may act as an independent controller with respect to certain payment-processing activities.

8. How We Share Personal Data

We do not sell personal data for monetary consideration.

We may disclose personal data:

  • to service providers, processors, and vendors that help us operate the Services;
  • to payment processors and other transaction partners where needed to complete requested transactions;
  • to professional advisers, auditors, insurers, or legal counsel where reasonably necessary;
  • to law enforcement, regulators, courts, or other parties when required by law or legal process;
  • to protect the rights, property, safety, and security of Fractilate, our users, or others; and
  • in connection with a merger, acquisition, financing, reorganization, sale of assets, bankruptcy, or similar business transaction.

Under some privacy laws, certain analytics or advertising-related disclosures may be treated as "sharing" even if no money is exchanged.

9. International Data Transfers

We may process or transfer personal data in the United States and in other countries where we or our service providers operate.

Where required, we use appropriate safeguards for cross-border data transfers, which may include:

  • Standard Contractual Clauses;
  • transfer impact assessments where appropriate; and
  • other lawful transfer mechanisms recognized under applicable law.

10. Data Retention

We retain personal data only for as long as reasonably necessary for the purposes described in this Policy, including:

  • providing the Services;
  • maintaining business and financial records;
  • resolving disputes;
  • enforcing agreements; and
  • complying with legal obligations.

Retention periods may vary depending on the nature of the data, the context in which it was collected, and applicable legal requirements.

11. Data Security

We use reasonable technical, administrative, and organizational safeguards designed to protect personal data, including measures such as:

  • encryption in transit where appropriate;
  • access controls and authentication measures;
  • logging and monitoring; and
  • service and infrastructure security controls.

No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

12. Your Privacy Rights

12.1 GDPR Rights

If GDPR applies to you, you may have the right to:

  • access the personal data we hold about you;
  • request correction of inaccurate or incomplete data;
  • request deletion of personal data in certain circumstances;
  • request restriction of processing;
  • object to certain processing, including certain processing based on legitimate interests;
  • request data portability where applicable; and
  • withdraw consent at any time where processing is based on consent.

12.2 California Privacy Rights

If you are a California resident, you may have the right to:

  • know what categories of personal information we collect, use, disclose, and share;
  • request deletion of personal information, subject to exceptions;
  • request correction of inaccurate personal information;
  • opt out of certain "sales" or "sharing" as defined by California law; and
  • not be discriminated against for exercising your privacy rights.

12.3 Exercising Your Rights

To exercise applicable privacy rights, contact us at privacy@fractilate.com.

We may need to verify your identity before fulfilling certain requests. We will respond in accordance with applicable law.

13. Privacy Choices

We do not sell personal information for monetary compensation.

However, some uses of analytics or similar technologies may be treated as "sharing" under California law, depending on how those technologies are configured and used. You can manage your choices through our Privacy Choices link or cookie settings tool.

14. AI Transparency

Our Services may include AI-assisted functionality.

When you use those features:

  • inputs you submit may be processed through third-party AI providers such as OpenAI;
  • outputs may be generated automatically based on those inputs; and
  • outputs may not always be accurate, complete, or appropriate for every use.

We do not use AI to make solely automated decisions that produce legal or similarly significant effects about individuals through this Privacy Policy's described Services, unless we clearly disclose that separately.

15. Children's Privacy

The Services are not directed to children under 13, and where applicable, not directed to children under 16 in jurisdictions with higher age thresholds. We do not knowingly collect personal data from children in violation of applicable law.

If you believe a child has provided personal data to us unlawfully, contact us and we will take appropriate steps to review and address the issue.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

When we do, we may revise the "Last Updated" date above and, where required, provide additional notice. Your continued use of the Services after an update becomes effective means the updated Policy will apply going forward.

17. Contact Us

Fractilate Inc.

Email: privacy@fractilate.com

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at the address above.

← Back to home