Privacy Policy

1. Introduction

Cognetra Brain ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.

2. Information We Collect

2.1 Information You Provide Directly

• Account Information: Name, email address, company name, phone number, and billing information
• Contact Information: Messages submitted through contact forms, support requests, and communications
• Payment Information: Credit card details processed securely through third-party payment processors
• Service Data: Data you submit for verification and validation on our platform

2.2 Information Collected Automatically

• Usage Data: Pages visited, time spent, features accessed, and interaction patterns
• Technical Information: IP address, browser type, operating system, device information
• Cookies and Tracking: Cookies, web beacons, and similar tracking technologies
• Analytics: Website performance metrics and user behavior analysis

3. How We Use Your Information

We use collected information for the following purposes:

• Providing and improving our services
• Processing transactions and payments
• Sending service updates and support communications
• Responding to customer inquiries and support requests
• Conducting data analytics and improving user experience
• Ensuring platform security and detecting fraud
• Complying with legal obligations and regulations
• Marketing and promotional purposes (with your consent)

4. Data Security

We implement comprehensive security measures to protect your data:

• Encryption: AES-256 encryption for data at rest and TLS/SSL for data in transit
• Authentication: Multi-factor authentication and secure password policies
• Access Controls: Role-based access controls limiting data access to authorized personnel
• Monitoring: Continuous security monitoring and intrusion detection
• Audits: Regular security audits and penetration testing
• Compliance: ISO 27001, SOC 2 Type II certified infrastructure

5. Data Sharing and Disclosure

We do not sell or rent your personal information. We may share data in the following circumstances:

• Service Providers: Third-party vendors for payment processing, analytics, and hosting
• Legal Requirements: When required by law, court order, or government request
• Business Transfer: In case of merger, acquisition, or sale of assets
• Your Consent: When you explicitly authorize data sharing

6. GDPR Compliance

For users in the European Union, we comply with the General Data Protection Regulation (GDPR):

• Data Rights: You have the right to access, rectify, delete, and port your data
• Consent: We obtain explicit consent before collecting and processing personal data
• DPA: We maintain Data Processing Agreements with all data processors
• Lawful Basis: Processing is based on legitimate business interests, contractual necessity, or consent
• Erasure: Data can be deleted upon request, subject to legal retention requirements

7. Cookies and Tracking

We use cookies and similar technologies to enhance your experience:

• Essential Cookies: Required for platform functionality and security
• Analytics Cookies: Track usage patterns to improve our services
• Marketing Cookies: Personalize content and measure campaign effectiveness

You can control cookies through your browser settings. See our Cookie Policy for more information.

8. Data Retention

We retain personal information as long as necessary to provide services and comply with legal obligations:

• Account Data: Retained during account active status plus 90 days after deletion
• Transaction Data: Retained for 7 years for accounting and tax compliance
• Service Data: Retained according to blockchain immutability and your settings
• Analytics: Anonymized analytics retained for continuous improvement

9. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware of such collection, we will delete the information immediately.

10. Your Privacy Rights

You have the following rights regarding your personal information:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete information
• Erasure: Request deletion of your data (subject to retention requirements)
• Portability: Receive data in a structured, portable format
• Objection: Opt-out of certain data processing activities
• Restriction: Request limitation of data processing

11. Contact Us for Privacy Matters

For privacy questions, data access requests, or to exercise your rights:

• Email: privacy@cognetra-brain.com
• Phone: +84 (939) 000-000
• Mail: Cognetra Brain, Ho Chi Minh City, Vietnam

12. Policy Changes

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated "Last Modified" date. Your continued use of our services constitutes acceptance of updated policies.

13. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices. Please review their privacy policies before providing any information.

14. Data Breach Notification

In the event of a data breach affecting personal information, we will:

• Notify affected users within 72 hours
• Provide details of the breach and remediation steps
• Comply with all regulatory notification requirements

Questions? Contact our Privacy Team at privacy@cognetra-brain.com