Privacy Policy

**Elneuro Privacy Policy** **Effective Date:** January 20, 2025 **Company:** Elneuro Analytics LLC --- ## 1. Introduction Elneuro Analytics LLC ("Elneuro," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our advanced analytics platform at elneuro.com (the "Service"). Please read this Privacy Policy carefully. By accessing or using the Service, you consent to the practices described herein. --- ## 2. Information We Collect ### 2.1 Information You Provide **Account Information:** - Email address (required) - Full name - Password (encrypted) - Company name (optional) - Phone number (Enterprise only) **Payment Information:** - Credit card details (processed by Stripe; we do not store full card numbers) - Billing address - Payment history **User Data:** - Data files you upload for analysis (CSV, Excel, etc.) - Analysis configurations and parameters - Saved reports and visualizations - Custom scripts (Pro/Enterprise) **Communications:** - Support tickets and correspondence - Feedback and survey responses - Email communications ### 2.2 Automatically Collected Information **Usage Data:** - Pages visited and features used - Time spent on Service - Analysis types and frequency - Browser type and version - IP address - Device information (type, OS, screen resolution) - Referral source **Cookies and Tracking:** - Session cookies (essential for functionality) - Analytics cookies (Google Analytics - optional, can be disabled) - Preference cookies (remember your settings) **Log Data:** - Access times and dates - Error logs and debugging information - API usage (Pro/Enterprise) --- ## 3. How We Use Your Information ### 3.1 Providing the Service - Create and manage your account - Process your data and generate analytics - Provide customer support - Process payments and maintain billing records - Send transactional emails (receipts, notifications) ### 3.2 Improving the Service - Analyze usage patterns to improve features - Develop new features and capabilities - Debug errors and optimize performance - Conduct internal research and development ### 3.3 Communication - Respond to inquiries and support requests - Send important service updates and security alerts - Provide educational content and tips (opt-out available) - Solicit feedback (opt-out available) ### 3.4 Marketing (Opt-In Only) - Send promotional emails about new features (with your consent) - Offer special promotions and discounts (with your consent) - You may opt-out at any time via unsubscribe links ### 3.5 Legal and Security - Comply with legal obligations - Enforce our Terms of Service - Detect and prevent fraud and abuse - Protect rights, property, and safety of Elneuro and users --- ## 4. Data Storage and Security ### 4.1 Where We Store Data - **Account Data**: Stored in secure PostgreSQL databases hosted on Render.com (US-based) - **Analytical Data**: Processed in real-time; not persistently stored unless you save results - **Backups**: Encrypted daily backups retained for 30 days ### 4.2 Data Security We implement industry-standard security measures: - **Encryption in Transit**: All data transmitted via HTTPS/TLS 1.3 - **Encryption at Rest**: Database encryption using AES-256 - **Password Security**: Bcrypt hashing with salt - **Access Controls**: Role-based access and principle of least privilege - **Regular Audits**: Security assessments and penetration testing - **Compliance**: SOC 2 Type II compliant infrastructure ### 4.3 Data Retention - **Account Data**: Retained while account is active - **Analytical Data**: Not stored persistently (processed in-session only) - **Saved Reports**: Retained until you delete them or close account - **Logs**: Retained for 90 days - **Deleted Accounts**: Data permanently deleted within 30 days --- ## 5. Data Sharing and Disclosure ### 5.1 We Do NOT Sell Your Data Elneuro does not sell, rent, or trade your personal information or analytical data to third parties for marketing purposes. ### 5.2 Service Providers We share limited data with trusted service providers who assist in operating our Service: **Hosting and Infrastructure:** - Render.com (web hosting, database) - Cloudflare (CDN, DDoS protection) **Payment Processing:** - Stripe (payment processing - they have their own privacy policy) **Analytics:** - Google Analytics (anonymized, opt-out available) **Communication:** - SendGrid (transactional emails) All service providers are contractually bound to protect your data and use it only for specified purposes. ### 5.3 Business Transfers If Elneuro is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you via email and/or prominent notice on our Service. ### 5.4 Legal Requirements We may disclose information if required by law, such as: - To comply with subpoenas, court orders, or legal processes - To enforce our Terms of Service - To protect rights, property, or safety of Elneuro, users, or public - To detect, prevent, or address fraud or security issues ### 5.5 With Your Consent We may share information for other purposes with your explicit consent. --- ## 6. Your Data Rights ### 6.1 Access and Portability You have the right to: - Access your account data at any time - Export your data in machine-readable formats (CSV, JSON) - Request a copy of all personal data we hold about you ### 6.2 Correction and Updates You may: - Update your account information through account settings - Contact support to correct inaccurate data ### 6.3 Deletion (Right to be Forgotten) You may: - Delete saved analyses and reports at any time - Close your account and request full data deletion - Request deletion of specific data (subject to legal retention requirements) Data deletion requests are processed within 30 days. ### 6.4 Objection and Restriction You may: - Opt-out of marketing communications - Disable non-essential cookies - Object to automated decision-making (if applicable) - Request restriction of processing in certain circumstances ### 6.5 Data Portability You may request your data in a structured, commonly used format for transfer to another service. --- ## 7. Cookies and Tracking Technologies ### 7.1 Types of Cookies We Use **Essential Cookies (Required):** - Session management and authentication - Security features **Functional Cookies (Optional):** - Remember your preferences - Improve user experience **Analytics Cookies (Optional):** - Google Analytics for usage statistics - Can be disabled via cookie settings ### 7.2 Managing Cookies You can control cookies through: - Browser settings (block all, block third-party, delete on exit) - Our cookie preferences center - Google Analytics opt-out browser add-on Note: Disabling essential cookies may impair Service functionality. --- ## 8. Third-Party Links The Service may contain links to third-party websites or services not operated by Elneuro. We are not responsible for the privacy practices of third parties. We encourage you to review their privacy policies. --- ## 9. International Data Transfers Elneuro is based in the United States. If you access the Service from outside the U.S., your information will be transferred to and processed in the U.S. **For EU/EEA Users:** - We comply with GDPR requirements - Data transfers are protected by Standard Contractual Clauses - You have rights under GDPR (see Section 6) **For UK Users:** - We comply with UK GDPR requirements **For California Users:** - See Section 10 for CCPA-specific rights --- ## 10. California Privacy Rights (CCPA) If you are a California resident, you have additional rights: ### 10.1 Right to Know You may request disclosure of: - Categories of personal information collected - Sources of personal information - Purposes for collection - Categories of third parties we share with - Specific pieces of personal information we hold ### 10.2 Right to Delete You may request deletion of personal information, subject to certain exceptions. ### 10.3 Right to Opt-Out of Sale Elneuro does not sell personal information. ### 10.4 Right to Non-Discrimination We will not discriminate against you for exercising your CCPA rights. ### 10.5 Shine the Light California Civil Code Section 1798.83 permits users to request information about disclosure of personal information to third parties for direct marketing. We do not share information for such purposes. ### 10.6 Exercising CCPA Rights To exercise your rights, contact us at privacy@elneuro.com. We will verify your identity before processing requests. --- ## 11. Children's Privacy Elneuro is not directed to individuals under 18. We do not knowingly collect personal information from children under 18. If you believe a child has provided us with personal information, contact us immediately at privacy@elneuro.com. --- ## 12. Data Breach Notification In the event of a data breach that affects your personal information, we will: - Notify you via email within 72 hours of discovery - Provide details about the breach and affected data - Describe steps we're taking to remediate - Offer guidance to protect yourself - Notify relevant authorities as required by law --- ## 13. Changes to This Privacy Policy We may update this Privacy Policy periodically. Material changes will be notified via: - Email to your registered address - Prominent notice on our website - In-app notification Continued use after changes constitutes acceptance. **Last Updated:** January 20, 2025 **Version:** 1.0 --- ## 14. Contact Us For questions, concerns, or to exercise your privacy rights: **Elneuro Analytics LLC** **Privacy Officer** Email: privacy@elneuro.com Support: support@elneuro.com **Response Time:** We respond to privacy requests within 30 days. --- By using Elneuro, you acknowledge that you have read and understood this Privacy Policy.