Privacy Policy

Contracted Customers

For customers that have executed a Services Agreement with Arkero, the terms of that agreement — and, if executed, the applicable Data Processing Agreement — govern and supersede this Privacy Policy in their entirety to the extent of any conflict. The provisions of this Privacy Policy apply to contracted customers only to the extent not addressed by their Services Agreement.

1. Scope

This Policy applies to: (a) visitors to Arkero's public website at https://arkero.ai; (b) prospective customers accessing any Arkero demo or trial environment; and (c) Authorized Users of the Arkero platform. Data processed within the platform on behalf of contracted clients is governed primarily by the applicable Services Agreement and, if executed, the Data Processing Agreement.

2. Information We Collect

Website Visitors

We collect standard analytics data (page views, browser type, IP address, referral source) via cookies and similar technologies. No personal identifying information is collected unless explicitly provided by you.

Inquiries and Contact Forms

If you submit an inquiry or contact form, we collect the information you provide, which may include your name, email address, phone number, job title, and organization.

Platform and Demo Users

We collect account information (name, email, organization, job title) necessary to provision and operate your account, along with usage data described below.

Customer Data

Data submitted to Arkero's platform by contracted clients is owned and controlled by the client. Arkero processes Customer Data only as directed by the client and as necessary to provide the Services. Arkero does not use Customer Data to train, fine-tune, or improve its AI or machine learning models without the explicit written consent of the client.

3. Usage Data

Within the platform, Arkero collects the following usage data for security, audit, and product improvement purposes:

• User ID and email associated with platform actions
• Type and timestamp of actions performed
• IP address and user agent at time of action
• Infrastructure performance metrics and error logs

Usage data is shared only with sub-processors necessary to operate the platform. Sub-processors are disclosed in the applicable Data Processing Agreement.

4. How We Use Information

We use collected information to: (a) provide and operate the Services; (b) respond to inquiries and communicate with prospective and existing clients; (c) improve the platform and develop new features; (d) maintain security and audit logs; (e) send product updates or marketing communications, from which you may opt out at any time; and (f) comply with applicable legal obligations. We do not sell personal information.

5. Data Sharing

Arkero does not sell personal information. We may share information with: (a) service providers and sub-processors who assist in operating our business and platform, under appropriate confidentiality obligations; (b) professional advisors such as attorneys and accountants; (c) law enforcement or government authorities as required by applicable law; and (d) acquirers in connection with a merger, acquisition, or sale of assets. Arkero does not share Customer Data with any third party except sub-processors necessary to operate the Services.

6. Data Security

Contracted customers should refer to their Services Agreement for applicable data security commitments. Arkero implements commercially reasonable technical and organizational measures to protect information, including encryption at rest and in transit and strict access controls. No system is completely secure, and we cannot guarantee absolute security.

7. Data Retention

Contracted customers should refer to their Services Agreement for applicable data retention terms. We retain personal information for as long as necessary to fulfill the purposes described in this Policy or as required by law.

8. California Residents and CCPA

To the extent Arkero processes personal data of California residents on behalf of its clients, Arkero does so as a "service provider" as defined under the California Consumer Privacy Act (CCPA). Arkero's clients are the relevant "businesses" under CCPA and are responsible for fulfilling consumer rights requests with respect to their data. Arkero does not sell personal information. Website visitors who are California residents may contact us at legal@arkero.ai to exercise any applicable rights.

9. UK and EU Data Protection (GDPR)

For customers and users located in the United Kingdom or European Economic Area, Arkero processes personal data in accordance with applicable data protection law, including the UK GDPR and EU GDPR where applicable. Contracted customers should refer to their Data Processing Agreement for applicable data subject rights, lawful basis for processing, and cross-border transfer mechanisms. Website visitors located in the UK or EEA may contact legal@arkero.ai to exercise any applicable data subject rights.

10. Third-Party Links

Our website may contain links to third-party sites. Arkero is not responsible for the privacy practices of those sites and encourages you to review their privacy policies.

11. Policy Updates

We may update this Policy from time to time. Material changes will be communicated to clients and reflected on our website with a revised effective date.

12. Contact

For questions about this Policy:

Arkero Technologies, Inc. | Seattle, WA | legal@arkero.ai