AssetOzone ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

This Privacy Policy applies to information we collect: - Through the AssetOzone platform - Via email, phone, and other communications - Through mobile and desktop applications - From third-party services integrated with our platform

By using the Service, you consent to the practices described in this Privacy Policy.

2.1. Information You Provide: - Account Information: Name, email address, password, company name, phone number - Profile Information: Department, job title, location, profile photo - Payment Information: Credit card details, billing address (processed securely through payment processors) - Customer Data: Asset information, location data, maintenance records, tickets, and other data you input into the Service - Communications: Messages, support tickets, feedback, and survey responses

2.2. Information Collected Automatically: - Usage Data: Features used, pages viewed, actions taken, time spent, frequency of use - Device Information: IP address, browser type, device type, operating system, unique device identifiers - Location Data: GPS coordinates, IP-based location (if enabled) - Cookies and Tracking: See our Cookie Policy for details

2.3. Information from Third Parties: - Authentication Services: If you sign in via SSO or OAuth providers - Payment Processors: Transaction details from Stripe or other payment providers - Integration Partners: Data from connected ERP, accounting, or other business systems

We use your information to:

3.1. Provide and Maintain the Service: - Create and manage your account - Process transactions and send billing information - Provide customer support - Send service-related communications - Perform backups and ensure data security

3.2. Improve and Personalize the Service: - Analyze usage patterns and trends - Develop new features and functionality - Personalize your experience - Conduct research and analytics

3.3. Marketing and Communications: - Send newsletters and product updates (with your consent) - Provide relevant offers and recommendations - Conduct surveys and gather feedback

3.4. Legal and Security: - Comply with legal obligations - Enforce our Terms of Service - Detect and prevent fraud, abuse, and security incidents - Protect our rights and property

For users in the European Economic Area (EEA), we process your personal data based on:

- Contract Performance: Processing necessary to provide the Service you've subscribed to - Legitimate Interests: Improving our Service, preventing fraud, and ensuring security - Legal Obligations: Complying with applicable laws and regulations - Consent: Where you've explicitly consented, such as for marketing communications

You have the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before withdrawal.

We do not sell your personal information. We may share your information with:

5.1. Service Providers: - Cloud hosting providers (AWS, Vercel, etc.) - Payment processors (Stripe) - Email service providers - Analytics providers - Customer support tools

5.2. Business Transfers: - In connection with a merger, acquisition, or sale of assets

5.3. Legal Requirements: - To comply with legal obligations, court orders, or government requests - To protect our rights, property, or safety - To investigate fraud or security incidents

5.4. With Your Consent: - To third parties when you've explicitly authorized sharing

All third-party service providers are contractually obligated to protect your information and use it only for specified purposes.

We retain your information for as long as necessary to:

- Provide the Service and fulfill the purposes described in this Privacy Policy - Comply with legal, accounting, or reporting requirements - Resolve disputes and enforce our agreements

Specific retention periods: - Active Account Data: Retained while your account is active - Deleted Account Data: Personal data anonymized within 90 days; audit logs retained for 7 years for compliance - Payment Records: Retained for 7 years for tax and accounting purposes - Support Communications: Retained for 3 years - Analytics Data: Aggregated and anonymized data may be retained indefinitely

You may request deletion of your data subject to legal retention requirements.

We implement comprehensive security measures to protect your information:

- Encryption: Data encrypted in transit (TLS 1.3) and at rest (AES-256) - Access Controls: Role-based access controls and multi-factor authentication - Network Security: Firewalls, intrusion detection, and DDoS protection - Regular Audits: Security assessments, penetration testing, and vulnerability scanning - Compliance: SOC 2 Type II, ISO 27001, and GDPR compliance - Employee Training: Regular security awareness training for all staff - Incident Response: Documented procedures for detecting and responding to security incidents

However, no system is 100% secure. We cannot guarantee absolute security of your data.

8.1. Access: Request a copy of your personal data

8.2. Rectification: Correct inaccurate or incomplete data

8.3. Erasure: Request deletion of your data ("right to be forgotten")

8.4. Data Portability: Receive your data in a structured, machine-readable format

8.5. Restriction: Limit how we process your data

8.6. Objection: Object to processing based on legitimate interests

8.7. Withdraw Consent: Withdraw consent for processing based on consent

8.8. Opt-Out: Unsubscribe from marketing communications

To exercise these rights, visit your account settings or contact privacy@assetozone.com. We will respond within 30 days (or as required by applicable law).

California residents have additional rights under CCPA (see Section 12).

We use cookies and similar technologies to:

- Remember your preferences and settings - Authenticate your account - Analyze usage and improve the Service - Provide personalized content

Cookie categories: - Strictly Necessary: Required for the Service to function - Functional: Remember your preferences - Analytics: Understand how you use the Service - Marketing: Deliver relevant advertising (with your consent)

You can manage cookie preferences through our Cookie Settings. See our Cookie Policy for detailed information.

AssetOzone operates globally, and your information may be transferred to and processed in countries other than your country of residence.

For transfers from the EEA to countries without adequate data protection: - We use Standard Contractual Clauses (SCCs) approved by the European Commission - We ensure appropriate safeguards are in place - We comply with the EU-US Privacy Shield framework (where applicable)

For transfers from the UK, we comply with UK GDPR requirements.

The Service is not intended for children under 18 (or the age of majority in your jurisdiction). We do not knowingly collect personal information from children.

If we become aware that we've collected information from a child without parental consent, we will take steps to delete that information. If you believe a child has provided us with information, please contact us immediately.

California residents have specific rights under the California Consumer Privacy Act (CCPA):

12.1. Right to Know: What personal information we collect, use, and share

12.2. Right to Delete: Request deletion of your personal information

12.3. Right to Opt-Out: Opt out of the sale of personal information (note: we do not sell personal information)

12.4. Right to Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise these rights, email privacy@assetozone.com or call our toll-free number. We will verify your identity before processing requests.

Shine the Light Law: California residents may request information about sharing personal information with third parties for direct marketing purposes once per year.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

We will notify you of material changes by: - Email to your registered address - Prominent notice on our website or in the Service - In-app notification

The "Last Updated" date at the top indicates when the policy was last revised. Your continued use after changes become effective constitutes acceptance of the updated Privacy Policy.

For questions, concerns, or requests regarding this Privacy Policy or our data practices:

Privacy Team Email: privacy@assetozone.com Address: [Your Company Address]

Data Protection Officer (for EU inquiries): Email: dpo@assetozone.com

You also have the right to lodge a complaint with your local data protection authority if you're in the EEA or UK.