Privacy Policy

1. Introduction

AXISA Inc. ("AXISA", "we", "us", or "our") is committed to protecting the privacy of our users, customers, and website visitors. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at axisa.tech, use our software platform at app.axisa.tech, or engage with our services (collectively, the "Services").

By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use our Services.

2. Information We Collect

2.1 Information You Provide

• Account Information: When you create an account, we collect your name, email address, phone number, company name, and company website.
• Demo Request Information: When you book a demo, we collect your first name, last name, email, phone, company name, website, preferred plan, availability, and any additional message you provide.
• Payment Information: When you subscribe to a paid plan, payment information is collected and processed securely by our third-party payment processor, Stripe. We do not store your full credit card number on our servers.
• Business Data: Data you input into the platform, including customer records, quotes, job details, inventory information, slab photos, scheduling data, and any other business information you choose to enter.
• Uploaded Content: Photos and images you upload for 3D rendering (AXISA Render) or vein matching (AXISA VeinFlow).
• Communications: Emails, support requests, and other correspondence you send to us.

2.2 Information Collected Automatically

• Usage Data: We collect information about how you interact with our Services, including pages visited, features used, actions taken, and time spent on the platform.
• Device Information: Browser type, operating system, device type, screen resolution, and language preferences.
• Log Data: IP address, access times, referring URLs, and pages viewed.
• Analytics: We use Vercel Analytics to collect anonymized website usage data to improve our Services.
• Cookies: We use essential cookies to maintain your session and preferences. We do not use third-party advertising or tracking cookies.

3. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain the AXISA platform and Services
• Process your transactions and manage your subscription
• Respond to your demo requests, inquiries, and support tickets
• Send you service-related communications (account confirmations, invoices, technical notices, security alerts)
• Generate 3D renders and vein matching results using your uploaded content
• Improve, personalize, and optimize our Services and user experience
• Analyze usage trends and platform performance
• Detect, prevent, and address fraud, unauthorized access, and technical issues
• Comply with legal obligations

We do not sell your personal information to third parties. We do not use your business data or uploaded content for any purpose other than providing the Services you requested.

4. How We Share Your Information

We may share your information only in the following circumstances:

• Service Providers: We share information with third-party providers who assist us in operating the platform, including Stripe (payment processing), Resend (email delivery), and Vercel (hosting and analytics). These providers are contractually obligated to protect your data.
• Legal Requirements: We may disclose information if required by law, regulation, legal process, or governmental request.
• Safety & Protection: We may disclose information if we believe it is necessary to protect the rights, property, or safety of AXISA, our users, or the public.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information becomes subject to a different privacy policy.

5. Data Security

We take the security of your data seriously and implement industry-standard technical and organizational measures to protect it, including:

• Encryption of data in transit (TLS/SSL) and at rest
• Secure, access-controlled cloud infrastructure
• Regular security assessments and monitoring
• Strict access controls limiting who can access your data
• PCI-compliant payment processing through Stripe

While we strive to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to timely notification in the unlikely event of a data breach.

6. Data Retention

We retain your personal information and business data for as long as your account is active or as needed to provide the Services. If you cancel your subscription, we will retain your data for 90 days to allow for reactivation, after which it will be permanently deleted unless we are required to retain it for legal, regulatory, or legitimate business purposes.

You may request deletion of your data at any time by contacting us at sales@axisa.tech.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Deletion: Request deletion of your personal data, subject to legal retention requirements.
• Data Portability: Request a machine-readable copy of your data.
• Opt-Out: Unsubscribe from promotional communications at any time.
• Restriction: Request that we limit processing of your data in certain circumstances.

To exercise any of these rights, contact us at sales@axisa.tech.

8. International Data Transfers

AXISA serves customers in North America, Europe, and worldwide. Your information may be transferred to and processed in countries other than your country of residence, including the United States and Canada. We ensure that appropriate safeguards are in place to protect your data in compliance with applicable laws, including GDPR for European users.

9. GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA) or the United Kingdom:

• We process your data based on your consent, the necessity to perform a contract with you, or our legitimate business interests.
• You have the right to lodge a complaint with your local data protection authority.
• You may request data portability, erasure, or restriction of processing at any time.
• We will respond to all data subject requests within 30 days.

10. CCPA Compliance (California Users)

If you are a California resident:

• You have the right to know what personal information we collect, use, and disclose.
• You have the right to request deletion of your personal information.
• You have the right to opt out of the sale of your personal information. Note: we do not sell personal information.
• We will not discriminate against you for exercising your privacy rights.

11. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 18, we will take steps to delete it promptly.

12. Third-Party Links

Our website and platform may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last Updated" date. Your continued use of the Services after changes are posted constitutes your acceptance of the updated policy.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, contact us at: