Dolphin Radar Privacy Policy

Last Updated: 2025-12-10

Dolphin Radar ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, share, and protect your information when you access or use our websites, applications, APIs, and related services (collectively, the "Services").

By using the Services, you acknowledge that you have read and understood this Privacy Policy and agree to the practices described below.

1. Information We Collect

We collect information to operate, improve, and secure the Services. The types of information we collect include:

1.1 Information You Provide

  • Account information: name, email address, password, authentication credentials.
  • Billing information: payment method, billing address, transaction history.
  • Support communications: messages, attachments, and other content submitted to customer support.
  • User submissions: search queries, inputs, instructions, or content you upload when using the Services.

1.2 Information We Automatically Collect

  • Usage data: actions performed on the platform, clicks, task executions, search behaviors.
  • Device data: IP address, browser type, operating system, device identifiers.
  • Log data: timestamps, session tokens, access logs, error reports, diagnostic information.
  • Cookies & tracking technologies: session cookies, analytics cookies, and tracking pixels.

1.3 Information from Third Parties

We may receive information from:

  • Social networking platforms (when you integrate or authenticate)
  • Payment processors
  • Analytics and advertising partners
  • Publicly available sources
  • Third-party data providers (e.g., to verify emails, enhance datasets, detect fraud)

2. How We Use Your Information

We use your information for the following purposes:

  • Provide and operate the Services
  • Process transactions and manage subscriptions
  • Perform analytics to improve accuracy, performance, and reliability
  • Develop new features and enhance user experience
  • Communicate with you, including service updates, notifications, promotions, and support
  • Enforce security, prevent fraud, detect abuse, and protect platform integrity
  • Comply with legal obligations, audit requirements, or law enforcement requests
  • Train or improve algorithms, where permitted and only in anonymized/de-identified form

We do not sell your personal information.

3. Legal Bases for Processing (GDPR)

For users in the EEA/UK, we process your data under the following legal bases:

  • Performance of a contract: providing the Services you requested
  • Legitimate interests: platform security, analytics, fraud prevention, product improvement
  • Consent: marketing communications, cookies, optional integrations
  • Legal obligations: tax, accounting, compliance, and regulatory requirements

4. How We Share Information

We may share information with:

4.1 Service Providers

Trusted vendors that perform services on our behalf, such as:

  • Cloud hosting (AWS, GCP, Azure, etc.)
  • Email delivery platforms
  • Payment processors
  • Customer support tools
  • Analytics providers

These providers are contractually bound to protect your information.

4.2 Business Transfers

If we engage in a merger, acquisition, financing, or sale of assets, your information may be transferred as part of the transaction.

4.3 Legal & Compliance

We may disclose information when:

  • Required by law, subpoena, or court order
  • Necessary to protect the rights, safety, or property of users, the public, or the Company
  • Preventing, detecting, or investigating illegal or harmful activities

4.4 Aggregated or De-Identified Data

We may share anonymized data that does not identify you.

We do not sell personal information as defined under CCPA/CPRA.

5. Cookies and Tracking Technologies

We use cookies, web beacons, pixels, and similar tracking technologies ("Cookies") to operate and improve the Services. Cookies help us maintain sessions, recognize returning users, analyze engagement, measure performance, and personalize experiences.

5.1 Types of Cookies We Use

  • Strictly Necessary Cookies – required for authentication, security, account access, and core functionality.
  • Functional Cookies – support preferences and enhanced features, such as language or interface settings.
  • Analytics Cookies – measure usage, diagnose issues, and improve performance.
  • Marketing & Advertising Cookies (where permitted) – deliver relevant content and measure campaign effectiveness.
  • Third-Party Cookies – set by service providers such as analytics platforms, payment processors, and integrated tools.

5.2 Cookie Consent

Where required by law, we display a Cookie Consent Banner that allows users to accept, reject, or manage non-essential Cookies. You may withdraw your consent at any time.

5.3 Your Choices

You can manage cookie preferences through:

  • The cookie banner (where applicable)
  • Browser settings to block or delete Cookies
  • Opt-out mechanisms provided by analytics or ad providers

Blocking certain Cookies may affect Service performance or functionality.

6. AI, Automated Processing & Output Data

Our Services may include automated processes, algorithmic analysis, data enrichment, AI-powered insights, and machine-learning components. This section explains how your data interacts with these systems.

6.1 Input Processing

Content you upload, search, submit, or otherwise provide may be processed by AI models to generate results, analyze patterns, verify data, or enhance functionality.

6.2 Model Training and Improvement

We do not use your identifiable personal data to train AI models unless you explicitly opt in or provide written authorization.

We may use:

  • Synthetic data
  • Aggregated or anonymized data
  • System-generated metadata
  • De-identified analytics

for model evaluation, safety research, or quality improvements.

6.3 Automated Decision-Making

We do not engage in automated decision-making that produces legal or similarly significant effects as defined under GDPR.

If automated features influence your experience, they are used only to:

  • Generate insights
  • Prioritize content
  • Detect anomalies or abuse
  • Personalize non-essential features

6.4 Output Data

AI outputs may contain inaccuracies, approximations, or incomplete information. You are responsible for validating results before using them for business, marketing, compliance, or decision-making purposes.

6.5 Your Controls

Where applicable, you may request:

  • Opt-out of non-essential AI data processing
  • Restriction of processing
  • Correction or deletion of data used for automated analysis

We provide settings or support channels to help manage these options.

7. Data Retention

We retain your information only for as long as necessary to fulfill the purposes described in this Privacy Policy, including:

  • Providing and maintaining the Services
  • Managing your account
  • Complying with legal, regulatory, or tax obligations
  • Enforcing rights and resolving disputes
  • Preventing fraud and securing the platform

7.1 Retention Periods

Different data types have different retention periods, including:

  • Account data: retained while your account is active
  • Billing and transaction records: retained as required for financial and audit compliance
  • Logs and security data: retained for operational integrity and fraud detection
  • Communication history: retained for support and quality assurance
  • AI system data: anonymized and retained for analytics or model improvement

7.2 Deletion

When you request deletion or close your account, we will delete or anonymize your personal information unless:

  • We must retain it under applicable law
  • It is needed to resolve disputes or enforce our agreements
  • It exists in backup archives (which will be purged on a scheduled cycle)

7.3 Backup and Archival Storage

Data in backups is not actively processed and will be deleted automatically according to our backup retention schedule.

8. Data Security

We implement industry-standard administrative, technical, and organizational security measures to protect your information against unauthorized access, loss, alteration, or misuse.

8.1 Security Measures May Include

  • Encryption in transit (TLS) and at rest
  • Access controls and authentication safeguards
  • Role-based permissions
  • Network and infrastructure firewalls
  • Intrusion detection and anomaly monitoring
  • Regular vulnerability scanning and patching
  • Secure data centers and cloud infrastructure
  • Employee confidentiality and security training
  • Audit logs for critical events
  • Rate limiting and abuse prevention systems

8.2 Shared Responsibility

You are responsible for:

  • Maintaining secure passwords and access credentials
  • Protecting devices and networks used to access the Services
  • Configuring permissions appropriately within your organization
  • Reporting suspicious activity promptly

8.3 Security Incidents

If we determine that a breach has compromised your personal information, we will notify you in accordance with applicable breach-notification laws, including GDPR, US state laws, and other regulations.

8.4 No Absolute Security Guarantee

While we take reasonable steps to protect your data, no method of storage or transmission is completely secure. You acknowledge that you use the Services at your own risk.

9. International Data Transfers

We may transfer, store, or process your information outside of your country of residence, including in the United States, the European Economic Area ("EEA"), the United Kingdom, and other jurisdictions where we or our service providers operate.

9.1 Safeguards for International Transfers

When transferring personal data internationally, we rely on one or more of the following legal mechanisms:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • UK International Data Transfer Addendum
  • Adequacy decisions issued by the European Commission or UK authorities
  • Binding contractual and organizational safeguards
  • Other lawful transfer mechanisms permitted under applicable regulations

9.2 Data Storage Locations

Data may be processed or stored in secure data centers operated by trusted infrastructure providers. The specific locations may vary based on technical, operational, or redundancy requirements.

9.3 Your Rights Regarding Cross-Border Transfers

You may contact us to obtain a copy of the transfer safeguards applicable to your data where permitted by law.

10. Your Privacy Rights

Depending on your jurisdiction, you may have certain rights regarding your personal information.

10.1 Rights Under GDPR and UK GDPR

Users located in the EEA, Switzerland, or the UK may exercise:

  • Right of access – request a copy of your data
  • Right to rectification – correct inaccurate information
  • Right to erasure – request deletion ("right to be forgotten")
  • Right to restriction of processing
  • Right to data portability
  • Right to object to certain processing, including marketing
  • Right not to be subject to automated decisions

10.2 Rights Under CCPA/CPRA (California Residents)

California residents may exercise:

  • Right to know what categories of personal information we collect
  • Right to access your personal information
  • Right to delete information (subject to exceptions)
  • Right to correct inaccurate information
  • Right to opt out of sale or sharing (if applicable)
  • Right to restrict sensitive data use
  • Right to non-discrimination for exercising your rights

We do not sell personal information under CCPA/CPRA definitions.

10.3 Exercising Your Rights

You may submit a rights request using the contact information provided at the end of this Policy. We may require reasonable verification steps to confirm your identity before processing the request.

11. Children's Privacy

Our Services are not intended for children under 16 (or a higher age threshold where required by local law). We do not knowingly collect personal information from children.

If we learn that data has been collected from a child without appropriate consent, we will promptly delete such information. If you believe a child has used our Services, please contact us immediately.

12. Data Controller and Data Processor Roles

Our role under privacy laws may vary depending on how you use the Services.

12.1 When We Act as Data Controller

We act as the Data Controller for:

  • Account registration data
  • Billing and subscription information
  • Usage analytics and telemetry
  • Customer support interactions
  • Marketing communications

12.2 When We Act as Data Processor

We act as a Data Processor when processing:

  • User-submitted content
  • Contact data you upload or obtain using our enrichment tools
  • Data processed on your behalf through automated or AI-powered features
  • Any information you direct us to store or analyze

In such cases, processing is governed by your instructions and, where applicable, a Data Processing Agreement (DPA).

13. Service Providers and Subprocessors

We engage third-party providers to assist in delivering and maintaining our Services. These include:

  • Cloud hosting and infrastructure providers
  • Analytics and monitoring platforms
  • Customer support and communication tools
  • Payment processors
  • Security and verification vendors
  • AI model infrastructure providers

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service enhancements.

If we make material changes, we will provide notice through one or more of the following:

  • Email notification
  • In-app or dashboard announcement
  • Publishing the updated Policy with a revised "Last Updated" date

Your continued use of the Services after changes take effect indicates your acceptance of the updated Policy.

15. Contact Information

If you have questions, requests, or concerns regarding this Privacy Policy or your data rights, you may contact us at:

Dolphin Radar Privacy Team Email: info.dolphinradar@gmail.com

You may also contact your local data protection authority if you believe your rights have been violated.

Privacy Policy – Dolphin Radar