This Privacy Policy explains how Atlensa collects, uses, discloses, retains, and protects information when you visit our websites, use our software, participate in demos, join a pilot or early-access program, communicate with us, or otherwise interact with Atlensa.
Atlensa provides, develops, and may in the future provide AI-enabled software and related services for environmental report automation, environmental consulting workflows, permitting workflows, compliance review, document review, regulatory research, agency comment tracking, and related products (collectively, the “Services”). This includes, without limitation, tools for wetland delineation reports, environmental report drafting, QA/QC review, inconsistency detection, compliance validation, continuous regulatory updates, review/edit/finalize workflows, Phase I ESA report workflows, permit application workflows, NEPA-related workflows, EIS and EA support tools, developer-side permitting risk tools, government-reviewer tools, agency comment tracking, regulatory change tracking, APIs, dashboards, integrations, prototypes, beta products, pilots, demos, and related services.
This Privacy Policy applies to Atlensa’s current products, prototypes, pilots, early-access products, public website, sales and marketing activities, and reasonably related future products and services.
Important Scope Notes
1.1. This Privacy Policy Covers Personal Information
This Privacy Policy applies to information that identifies, relates to, describes, can reasonably be associated with, or can reasonably be linked to an identified or identifiable person (“Personal Information,” “personal data,” or similar terms under applicable law).
This Privacy Policy does not replace any separate written agreement between Atlensa and a customer, including any master services agreement, software-as-a-service agreement, order form, data processing addendum, business associate-style agreement if ever applicable, confidentiality agreement, letter of intent, pilot agreement, beta agreement, or other written contract. If there is a conflict between this Privacy Policy and a written customer agreement about Customer Content or business-confidential information, the written customer agreement will control to the extent of the conflict.
1.2. Customer Content Is Different From Atlensa Account Data
When a customer, user, or authorized representative uploads, submits, imports, generates, or stores files, reports, field data, prompts, comments, annotations, source documents, or other materials through the Services, that information is ‘Customer Content’ and is referred to as ‘Customer Data’ in our Terms of Service.
Customer Content may include, without limitation:
- Wetland delineation reports, draft reports, final reports, appendices, exhibits, maps, figures, tables, agency forms, permit applications, site plans, and supporting documentation.
- Field data, soil borings, hydrology notes, vegetation surveys, wetland data sheets, field observations, GPS points, geospatial coordinates, photographs, maps, parcel information, property information, site descriptions, project descriptions, and environmental observations.
- Agency comments, regulatory correspondence, reviewer notes, consultant notes, client comments, internal QA/QC notes, checklists, permitting timelines, regulatory requirements, and resubmission materials.
- Phase I ESA materials, NEPA-related materials, EIS or EA materials, endangered species-related materials, habitat review materials, compliance materials, and other environmental deliverables if those products are made available.
- Prompts, instructions, edits, redlines, user feedback, model outputs, generated text, generated summaries, inconsistency flags, compliance flags, and system-generated drafts.
- Business-confidential information belonging to a customer, the customer’s client, a project owner, developer, consultant, agency, or other third party.
Atlensa generally processes Customer Content to provide the Services to the relevant customer and its authorized users. Customer Content may contain Personal Information, but the customer is usually responsible for deciding what Customer Content is submitted to the Services and for obtaining any required permissions, consents, notices, and rights.
1.3. Atlensa May Act as a Controller or Processor
Depending on the context, Atlensa may act as a “controller,” “business,” or similar role for information such as account information, website information, billing information, marketing information, support information, and usage analytics.
Atlensa may act as a “processor,” “service provider,” “contractor,” or similar role when processing Customer Content on behalf of a business customer under a written agreement. In that case, we process Customer Content according to the customer’s instructions, the relevant agreement, and applicable law.
1.4. The Services Are Business-Focused
The Services are intended for business and professional use by environmental consultants, engineering firms, permitting professionals, project owners, developers, agencies, and related organizations. The Services are not intended for personal, household, consumer, children’s, medical, patient-care, credit, employment-screening, insurance-underwriting, or tenant-screening purposes unless Atlensa expressly agrees in a separate written agreement.
Information We Collect
We may collect information directly from you, automatically through the Services, from customers and authorized users, from uploaded or imported Customer Content, from third-party services, from public sources, from business partners, and from other lawful sources.
2.1. Account, Registration, and Profile Information
We may collect information used to create, manage, authenticate, secure, and support accounts, including:
- Name.
- Business email address.
- Business phone number.
- Job title.
- Employer, company, agency, or organization.
- Department, role, permissions, and workspace membership.
- Username, password hash, authentication credentials, single sign-on identifiers, multi-factor authentication settings, and access tokens.
- Profile settings, preferences, notification settings, and communication preferences.
- Workspace, tenant, organization, team, or project identifiers.
- Other information you or your organization provide during onboarding, early access, beta access, pilot setup, or support.
2.2. Customer Content and Uploaded Materials
We collect Customer Content that users submit, upload, generate, import, or make available through the Services. This may include reports, draft documents, supporting documents, field data, site data, maps, correspondence, comments, instructions, prompts, annotations, model outputs, reviews, edits, and related materials.
Customer Content may include Personal Information about users, employees, consultants, client representatives, property owners, reviewers, agency staff, contractors, project stakeholders, or other people appearing in project materials. It may also include property-level information, location information, geospatial coordinates, signatures, professional licenses, business contact details, or other sensitive business information.
2.3. AI Inputs, Outputs, and Interaction Data
Because Atlensa provides AI-enabled workflows, we may collect and process:
- Prompts, commands, queries, instructions, and user requests.
- Uploaded files and extracted text, tables, figures, metadata, or document structure.
- Generated drafts, summaries, analysis, inconsistency flags, compliance checks, answers, comments, suggested edits, and other AI outputs.
- User edits, accept/reject decisions, feedback, ratings, annotations, comments, and review history.
- Model configuration, workflow state, tool calls, retrieval results, citations, references, confidence indicators, validation results, and processing logs.
- Information about how users interact with AI-generated outputs, including whether outputs were reviewed, revised, exported, or finalized.
2.4. Usage, Device, Log, and Technical Information
We may automatically collect information about how users access and use the Services, including:
- IP address.
- Device identifiers.
- Browser type and version.
- Operating system.
- Referring and exit pages.
- Pages viewed, features used, buttons clicked, searches run, workflows started, workflows completed, and time spent.
- Dates and times of access.
- Authentication logs, access logs, audit logs, and administrative logs.
- Error logs, crash logs, latency information, performance metrics, API usage, token usage, processing volumes, file sizes, and system diagnostics.
- Approximate location inferred from IP address.
- Cookie identifiers and similar tracking identifiers.
- Security signals, suspicious activity indicators, abuse indicators, and fraud-prevention signals.
2.5. Website, Cookies, and Tracking Information
When you visit our website or interact with our online materials, we may collect information through cookies, pixels, SDKs, local storage, server logs, analytics tools, advertising technologies, and similar technologies.
This may include information about your browser, device, pages visited, referring website, campaign source, search terms, clicks, form submissions, session activity, and approximate location. We may use this information to operate the website, understand interest in Atlensa, improve content, measure campaigns, prevent abuse, and, where permitted, conduct marketing and retargeting.
2.6. Billing, Payment, and Commercial Information
We may collect billing and commercial information, including:
- Billing contact name and email.
- Billing address.
- Subscription plan, seat count, usage tier, contract terms, purchase history, order forms, invoices, payment status, and renewal information.
- Tax information, transaction identifiers, payment processor identifiers, and payment confirmation information.
- Communications about pricing, early access, pilots, contracts, procurement, security reviews, and vendor onboarding.
We generally use third-party payment processors and do not intend to store full payment card numbers unless expressly stated or required for a specific transaction.
2.7. Communications, Sales, Support, and Feedback
We may collect information when you communicate with us, including:
- Emails, call notes, meeting notes, chat messages, support tickets, form submissions, demo requests, and survey responses.
- Information shared in customer discovery interviews, product validation calls, prototype demos, sales calls, onboarding calls, and support calls.
- Feedback, feature requests, bug reports, testimonials, references, quotes, and product suggestions.
- Recordings or transcripts of calls or meetings, if disclosed or permitted by law.
- Information needed to respond to your request, provide support, troubleshoot issues, or improve the Services.
2.8. Third-Party Integrations and Connected Services
If a customer or user connects Atlensa to a third-party service, imports data from a third-party service, uses single sign-on, enables an integration, or authorizes Atlensa to access another system, we may collect information made available through that integration.
Examples may include cloud storage files, email attachments, project management records, document management systems, permitting portals, regulatory databases, GIS systems, CRM systems, authentication providers, data rooms, or other business systems. The information collected depends on the permissions granted and the configuration selected by the customer or user.
2.9. Public, Government, Regulatory, and Third-Party Source Information
We may collect information from public or third-party sources to operate, improve, or expand the Services. This may include:
- Public agency websites, regulatory materials, statutes, rules, ordinances, guidance documents, manuals, regional supplements, checklists, permit forms, and other public regulatory information.
- Public records, meeting materials, agendas, minutes, public comments, agency correspondence, public project materials, and public filings.
- Business directories, professional profiles, company websites, public contact information, and market research sources.
- Information provided by customers, partners, advisors, consultants, contractors, or other third parties.
- Data used to maintain regulatory knowledge bases, compliance logic, citations, retrieval systems, and product functionality.
Public or third-party source information may contain Personal Information, including names, business contact details, professional roles, public comments, or agency contact information.
2.10. Applicant, Contractor, Advisor, and Recruiting Information
If you apply for a job, contractor role, advisor role, partnership, or similar relationship with Atlensa, we may collect information such as your resume, work history, education, portfolio, references, interview notes, compensation expectations, work authorization, background information where lawful, and communications with us.
How We Use Information
We may use information for the purposes described below and for other purposes disclosed at the time of collection or permitted by applicable law.
3.1. To Provide, Operate, and Support the Services
We use information to:
- Create, authenticate, and manage user accounts.
- Provide access to workspaces, projects, files, workflows, dashboards, APIs, and integrations.
- Ingest, process, parse, extract, classify, organize, and store Customer Content.
- Generate draft reports, report sections, summaries, tables, checklists, comments, flags, and other outputs.
- Detect inconsistencies, missing information, contradictions, errors, mismatched values, and other QA/QC issues.
- Check report content against regulatory, jurisdictional, or customer-defined requirements.
- Maintain regulatory references, retrieval systems, compliance databases, and product logic.
- Support review, editing, approval, export, download, sharing, and finalization workflows.
- Provide customer support, troubleshooting, training, onboarding, implementation, and account management.
- We use nonpublic Customer Content for product improvement, testing, support, and security only under confidentiality and access-control protections
- Send service-related communications, including security notices, administrative messages, product updates, and support responses.
3.2. To Develop, Improve, and Secure Atlensa Products
We use information to understand, develop, improve, test, and secure the Services, including to:
- Debug issues, monitor performance, and improve reliability.
- Improve user experience, workflow design, extraction quality, report quality, retrieval quality, citation quality, compliance-checking quality, and AI output quality.
- Develop new features, products, modules, integrations, and workflows.
- Evaluate usage patterns, adoption, feature performance, and product-market fit.
- Test prototypes, pilots, beta products, and early-access features.
- Conduct quality assurance, safety testing, red teaming, evaluation, and abuse monitoring.
- Train personnel and improve support processes.
- Protect accounts, Customer Content, systems, users, customers, and Atlensa against unauthorized access, misuse, fraud, spam, security incidents, and unlawful activity.
3.3. AI Processing and Model Improvement
Atlensa may use AI systems, machine learning models, large language models, document extraction tools, retrieval-augmented generation systems, embeddings, classification systems, OCR tools, and related technologies to provide and improve the Services.
Unless a customer agreement states otherwise, Atlensa may process Customer Content, prompts, outputs, usage data, feedback, and related metadata as reasonably necessary to provide, maintain, secure, troubleshoot, and improve the Services.
However, Atlensa does not permit third-party AI providers to use Customer Content to train or fine-tune their general foundation models, unless the customer expressly authorizes that use in a separate written agreement or the content has been aggregated or de-identified so that it no longer identifies the customer, its users, its clients, projects, properties, or individuals.
Atlensa may use de-identified, anonymized, aggregated, or statistical information derived from use of the Services for product improvement, benchmarking, analytics, research, model evaluation, safety testing, performance measurement, and business purposes, provided that such information does not identify a customer, user, client, project, property owner, or individual.
Atlensa may also use feedback, suggestions, comments, ideas, corrections, examples, ratings, bug reports, and similar input provided by users to improve the Services, without obligation to provide compensation, unless a separate written agreement states otherwise.
3.4. To Communicate, Market, and Sell
We may use information to:
- Respond to inquiries, demo requests, support requests, and sales communications.
- Provide product updates, newsletters, educational materials, event invitations, and marketing communications.
- Personalize website content, emails, demos, sales outreach, and customer communications.
- Conduct customer discovery, problem validation, prototype testing, product research, surveys, and user interviews.
- Manage pilots, early-access programs, waitlists, letters of intent, references, testimonials, and case studies.
- Measure marketing performance, campaign effectiveness, and website engagement.
- Identify prospective customers, partners, advisors, investors, and users.
- Administer promotions, events, webinars, and community programs.
You may opt out of marketing emails by using the unsubscribe link in the email or contacting us. We may still send non-marketing messages, such as security, legal, billing, support, and account-related notices.
3.5. To Comply With Law, Contracts, and Legal Process
We may use information to:
- Comply with applicable laws, regulations, industry obligations, sanctions, export controls, subpoenas, court orders, lawful government requests, and legal process.
- Enforce agreements, policies, and terms.
- Protect rights, property, safety, security, confidentiality, and integrity of Atlensa, customers, users, employees, contractors, advisors, partners, and others.
- Investigate, prevent, or respond to fraud, misuse, unauthorized access, security incidents, intellectual property infringement, confidentiality breaches, or other harmful activity.
- Maintain business, tax, accounting, audit, legal, insurance, corporate governance, and compliance records.
Legal Bases for Processing Where Required
Where applicable law requires a legal basis for processing Personal Information, we rely on one or more of the following legal bases:
- Performance of a contract: to provide the Services, manage accounts, process Customer Content, provide support, and perform agreements.
- Legitimate interests: to operate, secure, improve, market, and develop the Services; protect against misuse; conduct analytics; communicate with business contacts; and manage business relationships, provided those interests are not overridden by applicable rights.
- Consent: where we ask for consent, such as for certain cookies, marketing communications, call recordings, or optional data uses.
- Legal obligations: to comply with laws, legal process, tax obligations, accounting obligations, regulatory obligations, and government requests.
- Vital interests or public interest: where necessary and recognized by applicable law, though these are not expected to be common for Atlensa.
How We Disclose Information
We may disclose information as described below.
5.1. Service Providers and Subprocessors
We may disclose information to vendors, contractors, service providers, and subprocessors that help us provide, operate, secure, improve, or market the Services. These may include providers of:
- Cloud hosting, cloud infrastructure, databases, storage, networking, and content delivery.
- AI model services, large language model APIs, embedding models, OCR, document parsing, data extraction, transcription, translation, and machine learning infrastructure.
- Analytics, product analytics, observability, logging, performance monitoring, and error tracking.
- Authentication, single sign-on, identity management, access control, and security tools.
- Email, communications, support, ticketing, CRM, customer success, sales, and marketing systems.
- Payment processing, billing, subscription management, accounting, and tax tools.
- File conversion, document generation, e-signature, PDF generation, spreadsheet processing, and related business tools.
- Legal, compliance, audit, insurance, professional advisory, and administrative services.
Subprocessor Information: A current list of material subprocessors is available upon request by contacting admin@atlensa.com. Enterprise customers may receive subprocessor notice rights, objection rights, or both under a separate written agreement, data processing addendum, or other applicable contract.
5.2. AI Providers
To provide AI-enabled features, Atlensa may transmit Customer Content, prompts, extracted text, metadata, outputs, instructions, or related information to AI infrastructure providers, model providers, and other technical subprocessors, including providers such as OpenAI, Anthropic, or other model and infrastructure providers selected by Atlensa.
Atlensa will seek to use commercially reasonable contractual and technical controls designed to protect Customer Content and limit unauthorized use. The specific providers, features, retention settings, and training settings may vary by product, customer agreement, configuration, and time.
5.3. Customer Organizations, Administrators, and Authorized Users
If your account is associated with a customer organization, workspace, team, project, or enterprise account, information may be visible to that organization and its administrators or authorized users. For example, administrators may be able to access user accounts, usage logs, audit logs, project records, Customer Content, outputs, permissions, billing information, and support communications associated with the organization.
Your organization may control access to Customer Content and may be responsible for its own privacy and security practices.
5.4. Integrations and Customer-Directed Disclosures
We may disclose information to third parties when a customer or user directs us to do so, including through integrations, exports, downloads, sharing features, APIs, connected services, agency submission workflows, document management systems, or other configured workflows.
Atlensa is not responsible for how third parties process information after it is exported, submitted, shared, downloaded, or transferred at the direction of a customer or user, except as required by applicable law or a separate written agreement.
5.5. Professional Advisors, Legal, Compliance, and Security
We may disclose information to lawyers, auditors, accountants, consultants, insurers, banks, advisors, investors, and other professional parties as reasonably necessary for business, legal, compliance, financing, accounting, insurance, security, corporate governance, and risk-management purposes. However, we will not disclose nonpublic Customer Content to investors, potential investors, financing sources, acquirers, potential acquirers, or other corporate transaction parties except in aggregated, de-identified, or anonymized form, unless disclosure of limited Customer Content is reasonably necessary for legal, security, compliance, audit, diligence, financing, transaction, or risk-management purposes and the recipient is subject to confidentiality obligations reasonably protective of the Customer Content.
We may disclose information if we believe in good faith that disclosure is necessary or appropriate to comply with law, respond to legal process, enforce agreements, protect rights, prevent harm, investigate security incidents, prevent fraud, or protect the safety, security, confidentiality, or integrity of Atlensa, customers, users, or others.
5.6. Corporate Transactions
We may disclose, transfer, or assign information in connection with an actual or potential merger, acquisition, financing, investment, reorganization, bankruptcy, receivership, sale of assets, corporate restructuring, due diligence process, or similar transaction.
For nonpublic Customer Content, we will use aggregated, de-identified, or anonymized information where reasonably practicable. We will disclose identifiable nonpublic Customer Content in connection with a corporate transaction only where reasonably necessary for legal, security, compliance, audit, diligence, financing, transaction, or risk-management purposes and subject to confidentiality obligations reasonably protective of the Customer Content.
5.7. Affiliates
We may disclose information to current or future affiliates, subsidiaries, parent companies, or commonly controlled entities for purposes consistent with this Privacy Policy.
5.8. Aggregated, De-Identified, or Anonymized Information
We may disclose aggregated, de-identified, anonymized, statistical, or benchmarking information that does not identify a customer, user, client, project, property owner, or individual. For example, we may disclose aggregate usage trends, performance metrics, industry insights, product statistics, or benchmark data, provided such information does not reveal Customer Content or Personal Information.
5.9. No Sale of Customer Content
Atlensa does not sell Customer Content. Atlensa does not use Customer Content for third-party advertising. Atlensa does not disclose Customer Content to data brokers for resale.
Atlensa does not intend to sell Personal Information as “sale” is commonly understood. Some privacy laws define “sale” or “sharing” broadly to include certain advertising or analytics disclosures. If Atlensa engages in activities that applicable law treats as a sale, sharing, or targeted advertising, Atlensa will provide any required notices and opt-out mechanisms.
Data Retention
We retain information for as long as reasonably necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law, contract, or legitimate business need.
Retention periods may depend on:
- The type, sensitivity, and volume of information.
- The customer agreement, order form, pilot agreement, beta agreement, or data processing addendum.
- The customer’s workspace settings, deletion requests, export requests, or account status.
- Legal, audit, tax, accounting, security, compliance, and dispute-resolution needs.
- Whether information is stored in backups, logs, archives, or disaster-recovery systems.
- Whether information has been de-identified, aggregated, anonymized, or made non-identifying.
Customer Content is generally retained according to the applicable customer agreement, product settings, and customer instructions. After deletion, information may persist for a limited period in backups, audit logs, security logs, archival systems, or legally required records before being deleted or overwritten according to our normal retention practices.
We may retain de-identified, aggregated, anonymized, or statistical information indefinitely, provided it does not identify a customer, user, client, project, property owner, or individual.
Security
Atlensa uses commercially reasonable administrative, technical, and organizational safeguards designed to protect information against unauthorized access, loss, misuse, disclosure, alteration, and destruction.
Safeguards may include, depending on the product, configuration, and maturity of the Services:
- Access controls and role-based permissions.
- Authentication and, where available, multi-factor authentication or single sign-on.
- Encryption in transit and, where appropriate, encryption at rest.
- Logging, monitoring, and audit trails.
- Network, application, and infrastructure security controls.
- Secure software development practices.
- Vendor review and contractual safeguards.
- Personnel confidentiality obligations and access limitations, including access controls designed to restrict access to nonpublic Customer Content on a least-privilege and need-to-know basis.
- Backups, incident response procedures, and business-continuity practices.
- Testing, review, and improvement of security controls over time.
No method of transmission, storage, hosting, AI processing, or electronic communication is completely secure. Atlensa cannot guarantee absolute security. Customers and users are responsible for using strong credentials, protecting access tokens and devices, configuring permissions appropriately, limiting uploads to authorized materials, and promptly notifying Atlensa of suspected unauthorized access or misuse.
Customer Responsibilities
Customers and users are responsible for:
- Ensuring they have the right to submit Customer Content to the Services.
- Providing required privacy notices to individuals whose Personal Information may appear in Customer Content.
- Obtaining required consents, authorizations, permissions, and rights.
- Ensuring Customer Content does not violate law, contracts, confidentiality obligations, court orders, agency rules, professional obligations, or third-party rights.
- Avoiding submission of unnecessary sensitive Personal Information.
- Avoiding submission of medical records, protected health information, consumer credit information, children’s data, Social Security numbers, government identification numbers, payment card numbers, biometric identifiers, or other highly regulated information unless expressly authorized by Atlensa in a separate written agreement.
- Reviewing AI-generated outputs before using, submitting, distributing, or relying on them.
- Maintaining appropriate professional judgment, quality control, and human review over environmental, legal, technical, scientific, engineering, permitting, or regulatory work.
- Configuring user permissions, workspace access, integrations, exports, and sharing settings appropriately.
- Complying with applicable laws and professional standards.
AI Outputs, Professional Review, and No Automated Legal Effects
Atlensa may generate drafts, summaries, checks, flags, comments, and other outputs using AI. AI outputs may be incomplete, inaccurate, outdated, inconsistent, or inappropriate for a particular use. Atlensa’s Services are intended to assist qualified professionals, not replace professional judgment.
Users are responsible for reviewing, verifying, editing, approving, and finalizing outputs before relying on them, submitting them to an agency, sending them to a client, including them in a report, or using them for business, permitting, regulatory, legal, engineering, scientific, environmental, or financial decisions.
Unless Atlensa expressly states otherwise in a separate written agreement, the Services do not provide legal advice, engineering advice, environmental consulting advice, regulatory advice, permitting advice, scientific certification, professional certification, or agency approval.
Atlensa does not use the Services to make decisions about individuals that produce legal or similarly significant effects, such as employment, credit, housing, insurance, health care, education, criminal justice, or access to essential services. If a customer uses outputs in a way that affects individuals, the customer is responsible for complying with applicable law.
International Data Transfers
Atlensa may process and store information in the United States and other countries where Atlensa, its affiliates, service providers, or subprocessors operate. These countries may have data protection laws that differ from the laws in your jurisdiction.
Where required by applicable law, Atlensa will use appropriate safeguards for international transfers, which may include standard contractual clauses, data processing agreements, transfer impact assessments, contractual safeguards, or other lawful transfer mechanisms.
Privacy Rights and Choices
Depending on where you live and how you interact with Atlensa, you may have certain rights regarding your Personal Information. These may include the right to:
- Request access to Personal Information.
- Request correction of inaccurate Personal Information.
- Request deletion of Personal Information.
- Request a copy of Personal Information in a portable format.
- Object to or restrict certain processing.
- Opt out of certain sales, sharing, targeted advertising, or profiling where applicable.
- Limit certain uses of sensitive Personal Information where applicable.
- Withdraw consent where processing is based on consent.
- Appeal a decision denying a privacy request where applicable.
- Lodge a complaint with a data protection authority where applicable.
To exercise rights, contact us at admin@atlensa.com. We may need to verify your identity and authority before fulfilling a request. If your request relates to Customer Content controlled by an Atlensa customer, we may direct you to that customer or process the request according to the customer’s instructions.
We will not discriminate against you for exercising privacy rights, except as permitted by law.
California and U.S. State Privacy Notice
This section supplements the rest of this Privacy Policy and applies to residents of U.S. states that provide specific privacy rights, including California and other states with comprehensive privacy laws, to the extent those laws apply to Atlensa.
13.1. Categories of Personal Information We May Collect
Depending on your interaction with Atlensa, we may collect the following categories of Personal Information:
- Identifiers: name, business email, business phone number, IP address, account identifiers, device identifiers, cookie identifiers, and similar identifiers.
- Customer records information: billing address, account information, payment-related information, and commercial contact information.
- Commercial information: products or services purchased, obtained, considered, used, or discussed; subscription details; invoice information; account history; and customer relationship information.
- Internet or network activity information: browsing activity, website interactions, usage logs, feature usage, access logs, search activity, workflow activity, and diagnostic information.
- Geolocation information: approximate location from IP address and, if submitted in Customer Content, site-level geospatial data, GPS points, coordinates, maps, or project location data.
- Professional or employment-related information: job title, employer, department, professional role, business contact details, professional background, resume information, and relationship to a customer or prospect.
- Education information: if provided in recruiting, advisor, contractor, or professional background materials.
- Audio, electronic, visual, or similar information: meeting recordings, call recordings, transcripts, uploaded photos, site photographs, diagrams, maps, screenshots, or support materials where provided or permitted.
- Inferences: preferences, interests, product usage patterns, likelihood of interest in products, account health, and similar business or product analytics.
- Sensitive Personal Information: only where provided or generated in the relevant context, such as account login credentials, precise geolocation contained in uploaded site data, government identification information if improperly uploaded, or other sensitive information appearing in Customer Content. Atlensa does not request sensitive Personal Information unless necessary for a specific authorized purpose.
13.2. Sources of Personal Information
We may collect Personal Information from:
- You.
- Your employer, organization, administrator, or other authorized users.
- Customer Content.
- Your device, browser, and use of the Services.
- Cookies and similar technologies.
- Service providers and integrations.
- Public sources, government sources, regulatory sources, and third-party data sources.
- Business partners, advisors, customers, prospects, referrals, and event organizers.
- Recruiting sources, references, and professional networks.
13.3. Business and Commercial Purposes
We may collect, use, and disclose Personal Information for the purposes described in this Privacy Policy, including to provide the Services, process Customer Content, operate AI workflows, manage accounts, provide support, improve products, secure systems, communicate with users, market products, manage contracts, comply with law, enforce agreements, and protect rights.
13.4. Categories of Personal Information Disclosed for Business Purposes
We may disclose the categories of Personal Information listed above to the categories of recipients described in Section 5, including service providers, subprocessors, AI providers, customer organizations, administrators, integrations, professional advisors, affiliates, legal authorities, and parties involved in corporate transactions.
13.5. Sale, Sharing, and Targeted Advertising
Atlensa does not sell Customer Content. Atlensa does not sell Personal Information for money.
Atlensa does not use Customer Content for cross-context behavioral advertising or targeted advertising.
If Atlensa uses advertising or analytics technologies in a way that applicable law treats as a “sale,” “sharing,” or “targeted advertising,” Atlensa will provide required notices and opt-out mechanisms. You may contact admin@atlensa.com to opt out where applicable.
13.6. Sensitive Personal Information
Atlensa does not use or disclose Sensitive Personal Information for purposes other than those permitted by applicable law, such as providing the Services, maintaining account security, preventing fraud, ensuring physical safety, short-term transient use, performing services requested by the customer or user, or other permitted business purposes.
Atlensa does not intentionally use Sensitive Personal Information to infer characteristics about individuals unless expressly disclosed and permitted by law.
13.7. Retention
We retain each category of Personal Information for as long as reasonably necessary for the purposes described in this Privacy Policy, as described in Section 7.
13.8. State Privacy Rights
Depending on your state of residence and the applicability of state privacy law, you may have rights to know, access, correct, delete, obtain a copy, opt out, limit certain uses of sensitive information, or appeal a denied request. To exercise rights, contact admin@atlensa.com.
13.9. Authorized Agents
Where permitted by law, you may designate an authorized agent to submit a request on your behalf. We may require proof of authorization and may require you to verify your identity directly with us.
EEA, UK, and Swiss Privacy Notice
This section applies where the GDPR, UK GDPR, Swiss data protection law, or similar law applies.
14.1. Controller Information
For Personal Information that Atlensa processes as a controller, the controller is:
Atlensa, Inc.
admin@atlensa.com
Where Atlensa processes Customer Content on behalf of a customer, the customer may be the controller and Atlensa may be the processor. In that case, privacy requests relating to Customer Content should generally be directed to the customer.
14.2. Purposes and Legal Bases
Atlensa processes Personal Information for the purposes and legal bases described in Sections 3 and 4.
14.3. Recipients
Atlensa may disclose Personal Information to the recipients described in Section 5.
14.4. International Transfers
Atlensa may transfer Personal Information outside the EEA, UK, or Switzerland as described in Section 11.
14.5. Retention
Atlensa retains Personal Information as described in Section 7.
14.6. Rights
Subject to applicable limitations, you may have rights to access, rectify, erase, restrict, object, port, withdraw consent, and lodge a complaint with a supervisory authority. Contact admin@atlensa.com to exercise rights.
Children
The Services are not intended for children under 16, and Atlensa does not knowingly collect Personal Information from children under 16. If you believe a child has provided Personal Information to Atlensa, contact us at admin@atlensa.com, and we will take appropriate steps to delete the information if required by law.
Customers and users must not upload children’s Personal Information to the Services unless they have all required rights, consents, permissions, and legal bases and unless the applicable customer agreement permits that use.
Third-Party Websites and Services
The Services may contain links to third-party websites, tools, integrations, platforms, public records, agency websites, regulatory materials, or other third-party services. Atlensa is not responsible for the privacy, security, accuracy, or practices of third parties. Your use of third-party services is subject to their own terms and privacy policies.
Business Contact and Public Professional Information
Atlensa may collect and use business contact information and public professional information for B2B sales, customer discovery, product validation, advisor outreach, investor communications, partnership discussions, recruiting, and related business purposes. This may include information from company websites, professional profiles, public directories, event attendee lists, referral sources, and public records.
Where required by law, you may opt out of marketing communications or request that we stop using your business contact information for certain purposes.
De-Identified and Aggregated Data
Atlensa may create and use de-identified, anonymized, aggregated, or statistical data. Atlensa will use reasonable measures designed to prevent such information from being associated with an identified individual, customer, client, project, or property, and will not attempt to re-identify such information except as permitted by law, such as to test de-identification methods or ensure compliance.
Atlensa may use de-identified or aggregated information for any lawful business purpose, including product improvement, analytics, benchmarking, reporting, research, investor materials, marketing claims, model evaluation, and operational planning, provided it does not identify a customer, user, client, project, property owner, or individual.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. The “Last Updated” date shows when this Privacy Policy was last revised. If we make material changes, we may provide notice by email, through the Services, on our website, or by other means required by law.
Your continued use of the Services after an updated Privacy Policy becomes effective means that you acknowledge the updated Privacy Policy, subject to any rights or consent requirements under applicable law.
Contact Us
For privacy questions, requests, or complaints, contact us at:
If you are an end user of an Atlensa customer and your request relates to Customer Content controlled by that customer, please contact the customer directly. Atlensa may refer your request to the customer or process it according to the customer’s instructions and applicable law.