Privacy Policy

Green Fern

Last Updated: October 2, 2024


Welcome to Pathlit, a service provided by Pathlit, Inc. ("Pathlit", "we", "us", or "our"). This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal data when you use our website (the "Site"), mobile application (the "App"), and all related services (collectively, the "Service"). It also explains your privacy rights and how applicable laws protect you. By using the Service, you acknowledge and agree to the collection and use of your information as described in this policy. We are committed to ensuring the privacy and security of your data, and we strive to protect your personal information through compliance with applicable privacy regulations and industry best practices.

0. Introduction

At Pathlit, we recognize that your privacy is important. We believe that transparency and accountability are key to building trust with our users. This Privacy Policy is designed to inform you of our policies regarding the collection, use, and disclosure of your personal information when you interact with our Service, whether through the web platform or our mobile app. By using the Service, you consent to the collection and use of your data in accordance with this Privacy Policy. If you do not agree with this Privacy Policy, please do not access or use the Service.

This Privacy Policy applies to all users of the Service, including individuals who create accounts, visit our website, or interact with our mobile application. It also applies to both personal users and business customers. Certain provisions of this policy may apply specifically to business users and non-users, which we will outline where relevant.

This Privacy Policy will provide information on:

  1. The types of personal data we collect from you.

  2. How we collect and process your personal data.

  3. How we use and share your personal data.

  4. Your rights regarding your personal data.

  5. Security measures we employ to protect your information.

  6. How long we retain your data.

  7. How to contact us if you have any questions or concerns.

1. Definitions

To clarify the language used in this Privacy Policy, the following definitions apply:

  • Account: Refers to a unique account created for you to access and use our Service. Each Account is associated with specific personal data that is used to identify you as a user.

  • Affiliate: Any entity that controls, is controlled by, or is under common control with Pathlit. Control refers to ownership of more than 50% of voting securities or ownership interests in another entity.

  • Cookies: Small text files stored on your device when you visit a website or use an app. Cookies enable us to track your activity and preferences, providing a more personalized experience when using our Service. They are also used for analytics, marketing, and security purposes.

  • Device: Any device used to access the Service, including but not limited to desktop computers, laptops, smartphones, tablets, and smartwatches.

  • Personal Data: Any information that relates to an identified or identifiable individual. This can include information such as your name, email address, phone number, IP address, or any other data that can be linked to you as an individual.

  • Service: This includes both the web platform at https://www.pathlit.ai and the mobile application available for download on mobile operating systems such as iOS and Android. It encompasses all related services and features that Pathlit provides through these platforms.

  • Service Provider: Any third-party organization or individual who processes data on our behalf. Service Providers assist us in providing, maintaining, and improving our Service, including but not limited to hosting, analytics, customer support, and payment processing.

  • Usage Data: Data that is collected automatically during your interaction with the Service. This includes information such as IP addresses, browser types, pages visited, time spent on the Service, and other diagnostic information used for analytics and performance monitoring.

  • Website: Refers to Pathlit's official website, accessible via https://www.pathlit.ai, where users can access information about Pathlit’s products, services, and resources.

  • You: Refers to the individual accessing or using the Service, including personal users and business representatives. "You" may also refer to the company or legal entity that you represent, if applicable.

2. Information We Collect

We collect various types of information from and about users of our Service. This information can be categorized as personal data, automatically collected data, and information received from third parties. The type of data collected depends on how you interact with our Service, whether via the web platform or mobile application.

A. Personal Data You Provide to Us

When you use our Service, we may ask you to provide personal information that can be used to identify or contact you. This includes:

  • Contact Information: When you register for an account, sign up for updates, or communicate with us, you may provide information such as your name, email address, and phone number.

  • Account Information: This includes your username, password, and other security credentials necessary to authenticate and manage your account within the Service.

  • Payment Information: When you subscribe to paid services or make purchases through the Service, we may collect payment details such as your billing address and payment method. Payment card information is processed by our third-party payment provider (e.g., Stripe) and is not stored on our servers.

  • Communication Data: If you communicate with us through email, customer support, or other interactive features, we may collect the content of these communications, including any attachments you may send to us.

  • Marketing Preferences: We collect your preferences for receiving marketing and promotional communications. You may choose to opt-out of such communications at any time.

Providing this personal data is necessary for certain features of the Service. For example, if you do not provide your email address, we may be unable to create an account for you or respond to your customer support inquiries. You are responsible for ensuring that the information you provide to us is accurate and up to date.

B. Automatically Collected Data

When you access or use the Service, certain data is collected automatically. This data helps us understand how the Service is being used, and it assists in improving performance and user experience. Automatically collected data includes:

  • Authentication tokens. When you sign in to the Service, we collect and store encrypted Google or Microsoft authentication tokens.

  • Usage Data: We collect information about how you interact with our Service, including details such as the pages you visit, the features you use, and the time and duration of your sessions.

  • Device Information: We collect information about the device you use to access the Service, including your device type, operating system, browser type, IP address, and device identifiers. This helps us ensure that our Service is compatible with different devices and operating systems.

  • Location Data: If you use the mobile application, we may collect approximate location data based on your IP address or, with your consent, precise location data from your mobile device. This may be used for features such as personalized content or location-based services.

  • Cookies and Similar Technologies: We use cookies, web beacons, and similar technologies to collect data about your browsing behavior and preferences. Cookies allow us to remember your login details, track usage patterns, and personalize your experience. You can manage your cookie preferences through your browser settings. More details about cookies can be found in our Cookie Policy.

  • Log Data: This includes technical information that your browser or app sends whenever you visit or use the Service, such as your IP address, browser type, device type, and time of access. Log data helps us diagnose technical issues, prevent fraud, and monitor the performance of our Service.

C. Information from Third Parties

We may receive personal data from third-party sources, which we combine with data collected through our Service. This includes:

  • Social Media: If you interact with us on social media platforms (e.g., Facebook, Twitter), or use social media credentials to log in to the Service, we may receive data from these platforms, such as your profile information, public posts, and any data you make publicly available.

  • Third-Party Login Services: If you use third-party login services such as Google or Microsoft to create or log in to your account, we may receive certain profile information, such as your name, email address, and profile photo, from these services, depending on your privacy settings with the third-party provider.

  • Publicly Available Data: We may collect personal data from publicly available sources, such as public social media profiles, websites, or other public data repositories, to enhance the functionality of our Service or for marketing purposes.

  • Business Partners: If you are using our Service as part of a business customer’s account (e.g., your employer), we may collect personal data from the business customer, such as account details, contact information, or employment-related data necessary to provide you with access to the Service.

3. How We Use Your Information

We use the information we collect from you in a variety of ways to operate, maintain, and enhance our Service. The data we collect allows us to personalize your experience, ensure the Service runs smoothly, and provide you with relevant content and communications. Below are the specific purposes for which we use your information.

A. To Provide and Maintain Our Service

We use your personal data to provide the essential features and functionality of our Service. This includes, but is not limited to:

  • Account Management: We use your account details, such as your email address and password, to manage your registration, authenticate your identity, and provide secure access to the Service.

  • Service Functionality: Your data is necessary for delivering the key functionalities of the Service, such as enabling you to log in, interact with features, and access personalized content. For example, if you are using our App, we may use location data to customize the content based on your geographic area.

  • Customer Support: When you contact our support team, we use your information to troubleshoot issues, answer your questions, and provide technical assistance.

  • No Retention of Workspace API Data for AI/ML Training: We do not retain any user data obtained through Google Workspace APIs for the purpose of developing, improving, or training generalized AI and/or machine learning models.

B. To Improve, Personalize, and Optimize the Service

We strive to continuously improve and enhance the functionality and performance of our Service. Your data helps us understand how our users interact with Pathlit and where improvements can be made. Specifically, we use your data for:

  • Usage Analytics: We analyze Usage Data, such as how often certain features are used, to identify trends, optimize the user interface, and improve the overall experience. This data helps us understand what features are most useful and allows us to prioritize future updates and feature development.

  • Personalization: We use your data to personalize your experience, providing you with customized recommendations, content, and features based on your preferences and usage patterns. For example, we may show you personalized notifications in the App or offer suggestions based on your activity history.

  • A/B Testing and Research: Your data may be used for testing new features, interface changes, and updates. By analyzing user interactions with different versions of the Service, we can determine what improvements yield the best results.

C. To Communicate With You

We may use your personal data to contact you with communications that relate to your account, security, updates, or other essential notifications. These communications are important for maintaining the integrity and security of your account, as well as ensuring you are informed about critical changes to the Service.

  • Account Notifications: We may send you emails or notifications regarding important account-related activities, such as password changes, login attempts, or subscription updates.

  • Service Announcements: Occasionally, we may notify you of updates, maintenance, new features, or security improvements to our Service.

  • Marketing and Promotions: With your consent, we may send you information about promotions, offers, and services we believe may interest you. You have the option to opt out of receiving these marketing communications at any time through your account settings or by following the instructions provided in our communications.

D. To Facilitate Payments and Transactions

When you make a purchase or subscribe to a service, we use your payment information to process transactions. Your payment details are handled securely by our payment processors (e.g., Stripe), and we do not store full payment card information on our servers.

  • Payment Processing: We use third-party payment services to process your payments securely and to prevent fraud.

  • Billing Information: If applicable, we may use your billing address and payment history to manage subscription renewals, issue refunds, or handle other billing-related inquiries.

E. For Legal and Compliance Purposes

We may use your personal data to comply with legal obligations, enforce our agreements, or protect our rights and interests, as well as those of our users, affiliates, and business partners.

  • Legal Compliance: We process personal data to comply with applicable laws, regulations, and legal processes, including those related to data protection, tax obligations, and fraud prevention.

  • Security: We use data to detect, prevent, and investigate fraud, unauthorized access, abuse, or other harmful activities. For example, we may monitor IP addresses and usage patterns to detect suspicious behavior.

  • Enforcement of Agreements: We may use your data to enforce our Terms of Service, Privacy Policy, and other legal agreements. If necessary, we may also use your information to pursue legal claims or defend against legal disputes.

F. To Share Your Data With Service Providers and Partners

In order to provide the Service, we may share your personal data with trusted third-party service providers and business partners. These entities help us deliver essential features of the Service, such as payment processing, hosting, analytics, customer support, and marketing. We only share data with these parties when it is necessary to provide the Service, and we ensure that they adhere to strict data protection requirements.

  • Service Providers: These are third parties that perform services on our behalf, such as cloud hosting providers, email communication tools, and payment processors. We ensure that any data shared with these providers is protected by contractual obligations.

  • Business Partners: In some cases, we may collaborate with business partners to offer specific features or promotions. If applicable, we will share limited data with these partners to enable joint service offerings or marketing activities.

G. For Business Transfers

In the event of a merger, acquisition, reorganization, sale of assets, or other business transaction, your personal data may be transferred to the acquiring or merging company. We will notify you if your data becomes subject to a new privacy policy as a result of such a transaction.

4. How We Share Your Information

We are committed to maintaining your privacy and only share your personal data when necessary to provide the Service or when required by law. Below, we outline the circumstances in which we may share your personal data with third parties, ensuring that your privacy rights are respected and protected.

A. With Service Providers

We work with third-party service providers to facilitate and enhance the functionality of our Service. These service providers help us operate, manage, and support various aspects of the Service, including hosting, analytics, customer support, and payment processing. We only share personal data with these providers to the extent necessary for them to perform their services on our behalf.

  • Cloud Hosting Providers: We may share personal data with cloud hosting providers that store and manage the infrastructure of our Service. This ensures that your data is securely stored and accessible when needed.

  • Payment Processors: We share your payment information with third-party payment processors (e.g., Stripe) to process your transactions securely. We do not store your full payment card details on our servers. Payment processors are responsible for safeguarding your financial data in accordance with their own privacy policies.

  • Analytics Providers: We partner with analytics providers to help us understand how users interact with our Service. This allows us to analyze usage trends, measure the performance of features, and improve user experience. These providers may collect data such as IP addresses, usage behavior, and technical information.

  • Customer Support Tools: If you contact our customer support, we may use third-party tools to manage and respond to inquiries. These providers may have access to your contact information, support requests, and related data to help us resolve your issues efficiently.

  • All service providers with whom we share your personal data are required to maintain the confidentiality and security of your information and are prohibited from using your personal data for any purpose other than the specific services they provide to us.

B. With Business Partners

We may collaborate with business partners to offer joint services, features, or promotions. If you participate in any promotions or use services provided in partnership with other companies, we may share limited data, such as your contact details or usage information, with those business partners.

In such cases, these partners will be required to comply with data protection laws and contractual obligations that govern how your personal data is handled. We will notify you if additional privacy policies apply to any joint service or promotion, and you will have the option to consent to any such sharing of your data.

C. For Business Transfers

As we continue to grow, there may be situations where we engage in a business transaction, such as a merger, acquisition, or sale of assets. In the event that Pathlit undergoes such a transaction, your personal data may be transferred to the acquiring or merging company as part of the transaction.

  • Mergers or Acquisitions: If our company is involved in a merger or acquisition, your personal data may be transferred to the new entity as part of the transaction.

  • Sale of Assets: If we sell all or part of our assets, including those related to the Service, your personal data may be included in the transferred assets.

  • Restructuring or Reorganization: In the event of a restructuring, reorganization, or bankruptcy, your data may be transferred as part of the continuation of our business operations.

In such circumstances, we will take steps to ensure that your personal data is treated in accordance with this Privacy Policy and that you are informed of any significant changes to the way your data is handled.

D. For Legal Reasons and to Protect Our Service

We may disclose your personal data if we believe such action is necessary to:

  • Comply with Legal Obligations: We may share your personal data in response to a legal request, such as a court order, government investigation, or subpoena, if required by law.

  • Enforce Our Agreements: We may disclose personal data to enforce our terms and policies, including investigating potential violations of our Terms of Service.

  • Prevent Fraud or Harm: We may share your data to detect, prevent, or investigate potential fraud, security breaches, or other harmful activities that pose a risk to our Service, users, or the public.

  • Protect the Rights of Others: We may disclose your data if we believe it is necessary to protect the rights, privacy, or safety of Pathlit, our users, or third parties.

In these situations, we will only share the minimum amount of data necessary to fulfill our legal obligations or protect the safety and integrity of the Service.

E. With Your Consent

In certain situations, we may ask for your explicit consent to share your personal data with third parties. For example, if we participate in a partnership or co-marketing campaign, we may request your consent to share your information with our partners for promotional or joint service purposes.

We will provide clear and transparent information about what data will be shared and with whom, allowing you to make an informed decision. You have the right to withdraw your consent at any time.

F. Public and Anonymous Information

  • Public Information: Any information you choose to make publicly available through the Service, such as posts, comments, or other user-generated content, will be visible to other users and may be indexed by search engines. Please exercise caution when sharing personal data in public areas of the Service.

  • Aggregated or Anonymized Data: We may share anonymized or aggregated data with third parties, which cannot be used to identify you personally. For example, we may publish usage statistics or trends based on aggregated user data to inform stakeholders or improve our Service.

Aggregated and anonymized data is stripped of personally identifiable information and cannot be linked back to individual users.

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law or for legitimate business purposes. The retention period depends on the type of data and how it is used, ensuring we do not retain personal information for longer than is reasonably necessary.

A. Retention of Personal Data

We retain your personal data for the following durations:

  • Account Information: We retain your account data for as long as your account is active or as needed to provide the Service. If you choose to close your account, we will retain your data for a reasonable period of time to allow you to reactivate your account, comply with legal obligations, resolve disputes, or enforce our agreements.

  • Payment Information: Payment data is retained for the duration required to process the transaction and to comply with our legal and financial obligations. We do not store full payment card details on our servers, as they are processed through third-party payment processors.

  • Customer Support Data: We retain records of customer support requests, communications, and any related data for a period necessary to resolve the issue and ensure service continuity. This data helps us identify and resolve recurring issues and improve our Service.

  • Marketing Data: If you have opted in to receive marketing communications, we retain your marketing preferences and related data until you withdraw your consent or opt out of these communications. After you opt out, we may retain your contact details in a suppression list to ensure we do not send you further marketing communications.

B. Retention of Usage Data

We retain Usage Data for internal analytics, monitoring, and performance improvement. This data helps us understand user behavior and Service performance, which is critical for ensuring a reliable and optimized experience for all users.

  • Analytics Data: We retain aggregated, anonymized data indefinitely to analyze long-term trends and improve our Service. This data cannot be traced back to individual users.

  • Log Files: Log data, including IP addresses and other technical details, may be retained for a shorter period, typically for security purposes, fraud detection, and Service troubleshooting. Once this data is no longer necessary for security or analytics purposes, it is anonymized or deleted.

C. Legal Obligations and Business Purposes

In some cases, we may be required to retain personal data for a longer period to comply with legal obligations or for legitimate business purposes. These may include:


  • Legal Requirements: We retain personal data as necessary to comply with legal and regulatory requirements, including tax, accounting, and compliance with applicable laws. For example, we may be required to retain transaction data for a set period to meet financial reporting obligations.

  • Dispute Resolution: We retain data relevant to any potential legal claims or disputes for as long as necessary to defend or pursue legal actions. This ensures that we have the necessary records available to resolve legal issues effectively.

  • Security: Data related to security incidents, fraud, or misuse of the Service may be retained to protect the integrity of the platform and prevent future incidents. This data is retained for as long as necessary to identify and prevent security threats.

D. Data Deletion and Requests for Deletion

You have the right to request the deletion of your personal data under certain circumstances. If you wish to delete your data, you can:

  • Close Your Account: If you no longer wish to use our Service, you may close your account. Upon closing your account, we will delete or anonymize your personal data, subject to the retention periods mentioned above for legal or business reasons.

  • Request Data Deletion: You can submit a request to delete specific personal data we hold about you. We will assess the request and delete the data unless we have a legitimate reason to retain it, such as legal obligations or ongoing disputes.

Please note that, while we strive to honor deletion requests promptly, there may be cases where we cannot fully delete certain data immediately due to legal requirements or technical limitations.

E. Anonymized Data

In some instances, we may anonymize your personal data so that it can no longer be used to identify you. Once anonymized, this data is no longer considered personal data, and we may retain it for analysis, research, or business purposes without further notice to you.

6. Your Privacy Rights

Depending on your jurisdiction and applicable privacy laws, you may have certain rights regarding the personal data we hold about you. These rights are designed to give you control over your data and ensure transparency in how it is processed. We are committed to honoring your rights and providing mechanisms to exercise them easily.

A. Right to Access Your Data

You have the right to request access to the personal data we hold about you. This includes information such as:

  • The types of personal data we collect about you.

  • The purposes for which we process your personal data.

  • The categories of third parties with whom we share your data.

  • The source of the data, if not provided directly by you.

Upon receiving an access request, we will provide a copy of the personal data we hold about you in a commonly used electronic format. We may ask for verification of your identity before processing such requests to ensure the security and confidentiality of your data.

B. Right to Correct or Update Your Data

If any of the personal data we hold about you is inaccurate or incomplete, you have the right to request corrections or updates. You can:

  • Update your account information directly in the Service by accessing your account settings.

  • Request us to correct any inaccurate or outdated personal data that you are unable to update yourself.

We will respond to your correction requests as quickly as possible and ensure that any necessary updates are made promptly.

C. Right to Delete Your Data

You may request the deletion of your personal data in certain circumstances, such as:

  • When the data is no longer necessary for the purposes for which it was collected.

  • If you withdraw your consent (where data processing is based on your consent).

  • If the processing of your data is unlawful.

We will comply with your request unless we have a legitimate reason or legal obligation to retain certain data. For example, we may be required to keep records for compliance with tax regulations, dispute resolution, or fraud prevention.

D. Right to Object to Processing

You have the right to object to the processing of your personal data in certain situations, such as:

  • Direct Marketing: You can object to the use of your personal data for direct marketing purposes. If you object, we will stop sending you marketing communications. You can also opt out of marketing emails by following the "unsubscribe" link in any of our communications.

  • Legitimate Interests: If we process your personal data based on our legitimate business interests, you can object to this processing. In such cases, we will review your request and either stop processing your data or provide a compelling legitimate reason for continuing to process it.

E. Right to Restrict Processing

You can request that we restrict the processing of your personal data in certain cases, including:

  • If you contest the accuracy of the personal data we hold about you, we will restrict processing while verifying the data's accuracy.

  • If you believe the processing is unlawful and prefer restriction to deletion.

  • If we no longer need the data for the purposes for which it was collected but you require the data to establish, exercise, or defend legal claims.

When processing is restricted, we will store your data but will not actively process it until the restriction is lifted.

F. Right to Data Portability

In certain circumstances, you have the right to request that your personal data be transferred to another organization or service provider. This applies to data that you provided to us and that is processed by automated means based on your consent or to fulfill a contract.

We will provide the data in a structured, commonly used, and machine-readable format. Where technically feasible, we will transfer your data directly to the third party you designate.

G. Right to Withdraw Consent

If we process your personal data based on your consent, you have the right to withdraw that consent at any time. This will not affect the legality of any processing we carried out prior to the withdrawal of your consent.

  • Marketing Communications: You can withdraw consent to receive marketing communications by updating your preferences in your account settings or by following the unsubscribe link in any promotional emails.

H. How to Exercise Your Rights

To exercise any of your privacy rights, please contact us using the contact information provided at the end of this Privacy Policy. We will respond to your request within a reasonable timeframe, typically within 30 days, as required by applicable laws. Depending on your location, you may also have the right to lodge a complaint with your local data protection authority if you believe that we have violated your privacy rights.

7. Data Transfers

Currently, Pathlit's services are only available within the United States, and all personal data is processed and stored in U.S.-based data centers. While we do not operate internationally at this time, we are committed to maintaining a high standard of data protection and security for all our users. However, should we expand internationally in the future, we are prepared to implement safeguards to ensure the lawful transfer and protection of your personal data across borders.

A. Data Processing Within the United States

Pathlit is headquartered in the United States, and all our servers and data storage facilities are located within the country. When you use our Service, your personal data will be processed and stored exclusively in the U.S., ensuring that it is protected by U.S. data protection laws. We take steps to ensure that your personal data is secure while being processed and stored within the U.S., including implementing encryption and access controls.


B. Future International Transfers of Personal Data

Although we currently only operate within the U.S., we are planning for potential international expansion. Should we begin providing services in regions outside the U.S., we will ensure that your personal data is protected in compliance with applicable data protection regulations, including:

  • Adequacy Decisions: If personal data needs to be transferred to countries outside the U.S., we will rely on adequacy decisions made by relevant authorities to confirm that the receiving country provides an adequate level of data protection.

  • Standard Contractual Clauses: For data transfers to countries without an adequacy decision, we will use Standard Contractual Clauses approved by the European Commission or other appropriate legal mechanisms to ensure that your personal data receives adequate protection.

  • Binding Corporate Rules: In the event of transferring data within our organization or to affiliates across different countries, we will implement Binding Corporate Rules to ensure compliance with international data protection standards.

C. Consent to International Transfers

If and when we expand internationally, your use of our Service or submission of personal data to us will signify your consent to the transfer, storage, and processing of your personal data in countries outside your jurisdiction. At that time, we will provide updates to this Privacy Policy to reflect any changes to our data transfer practices.

D. Protecting Your Data During Transfers

Even though we currently process data exclusively within the U.S., we have implemented security measures to protect your data in preparation for potential future international transfers. These measures include:

  • Encryption: We use encryption to protect personal data during transfer and storage, ensuring that unauthorized parties cannot access it.

  • Data Minimization: We limit the transfer of personal data to only what is necessary for the purposes outlined in this Privacy Policy.

  • Security Audits: We regularly conduct reviews and audits of our data protection measures to ensure compliance with applicable privacy laws and data protection standards.

8. Security of Your Personal Data

We take the security of your personal data very seriously and are committed to protecting it from unauthorized access, disclosure, alteration, or destruction. While no system is entirely foolproof, we employ a range of industry-standard security measures to safeguard your personal data.


A. Security Measures We Implement

To protect your personal data, we use a combination of physical, administrative, and technical safeguards. These include:

  • Encryption: We use encryption technologies to protect your data both during transmission and while it is stored on our servers. This ensures that sensitive data, such as your account credentials and payment information, is secure from unauthorized access.

  • Access Controls: We limit access to your personal data to only those employees, contractors, and third-party service providers who require access to perform their job duties. All personnel with access to personal data are subject to strict confidentiality obligations and are trained in data protection best practices.

  • Regular Security Audits: We regularly review our security measures to identify and mitigate any potential vulnerabilities. This includes conducting routine audits, vulnerability assessments, and penetration tests to evaluate the effectiveness of our security controls.

  • Secure Payment Processing: We partner with trusted third-party payment processors to handle all financial transactions securely. Payment data is encrypted and processed in compliance with Payment Card Industry Data Security Standard (PCI-DSS) requirements, and we do not store full payment card details on our servers.

B. Protecting Your Account

We also encourage you to take steps to protect your account and personal data. This includes:

  • Strong Passwords: Use a unique and strong password for your account and change it periodically to minimize the risk of unauthorized access.

  • Two-Factor Authentication: Where available, enable two-factor authentication (2FA) on your account for an added layer of security. 2FA requires both your password and an additional code sent to your device, making it more difficult for unauthorized users to gain access.

  • Monitoring for Suspicious Activity: Keep an eye on your account activity and notify us immediately if you notice any suspicious behavior or unauthorized access attempts.

C. Data Breach Response

While we take all reasonable measures to protect your personal data, no system is completely secure. In the event of a data breach that compromises your personal data, we will:

  • Notify You: We will inform you promptly if your personal data has been compromised and is at risk. This notification will include details about the breach, what data was affected, and any steps you should take to protect yourself.

  • Report to Authorities: We will also notify any relevant regulatory authorities as required by applicable data protection laws.

  • Mitigation and Prevention: Following a breach, we will take immediate action to mitigate the damage and prevent future breaches. This may include improving our security measures, conducting a thorough investigation, and offering guidance on protecting your information.

D. Risks Inherent to Online Services

While we strive to use commercially acceptable means to protect your personal data, it’s important to remember that no method of transmission over the internet or method of electronic storage is completely secure. Therefore, we cannot guarantee its absolute security. You use the Service at your own risk and should take the necessary precautions to protect your personal data when interacting with any online platform.

9. Children’s Privacy

Our Service is not intended for or directed at individuals under the age of 13, and we do not knowingly collect personal data from children under this age. If you are under 13, please do not use or access our Service at any time or in any manner. We are committed to complying with applicable laws regarding children's privacy, including the Children's Online Privacy Protection Act (COPPA) in the United States.

A. Collection of Data from Children

We do not intentionally collect or solicit personal data from children under the age of 13. If we become aware that we have collected personal data from a child under the age of 13 without verification of parental consent, we will take steps to delete that information from our systems immediately.

B. Parental Consent

In the event that we offer services to individuals under the age of 13 in the future, we will ensure that we obtain verifiable parental consent before collecting any personal data, as required by applicable law. Parents or guardians would then have the right to review and request the deletion of any data collected from their child.

C. How Parents Can Control Their Child's Information

If you are a parent or guardian and become aware that your child has provided us with personal data without your consent, please contact us immediately. We will work with you to delete that information and take any other actions necessary to protect your child’s privacy.

To exercise your rights, you can contact us through the details provided in the "Contact Us" section of this Privacy Policy. We will respond promptly to any parental requests for access, modification, or deletion of a child's personal data.


D. Teenagers Between 13 and 18 Years Old

For users between the ages of 13 and 18, we advise that they obtain permission from a parent or guardian before using the Service or providing any personal information. Although we do not specifically target our Service to users under 18, we recognize that some teenagers may use it. We recommend that parents guide their teenagers in safe and responsible use of the internet and our Service.

10. Links to Other Websites

Our Service may contain links to third-party websites, applications, or services that are not operated or controlled by Pathlit. These links are provided for your convenience and do not imply our endorsement of the content or practices of these third-party sites. We have no control over the privacy policies, content, or security practices of these third parties, and we cannot be held responsible for how they collect, store, or use your personal data.

A. Third-Party Websites and Services

When you click on a link to a third-party website or service, you will be directed to that third party’s website or app. These sites and services have their own privacy policies, which may differ from ours. We strongly encourage you to review the privacy policies of any third-party websites or services you visit before providing any personal data or engaging in any transactions with them.

B. No Control Over Third-Party Practices

Pathlit does not have control over the data collection and usage practices of third-party websites or applications. Any personal data you provide to third parties or that they collect automatically as you browse their sites is governed by their privacy practices. We are not responsible for the actions, privacy practices, or content of third-party sites, and we disclaim any liability for how your information is used or handled by these sites.

C. Social Media Integration

Our Service may include social media features, such as buttons that allow you to share content or log in using your social media accounts (e.g., Facebook, Twitter, LinkedIn). If you use these features, your interactions with the social media platform are subject to their privacy policies and terms of use. The data collected by these platforms may include your IP address, browser details, and the page you are visiting on our site, which may be collected via cookies or similar tracking technologies.

D. Protecting Your Data When Interacting with Third Parties

When visiting third-party websites or interacting with third-party services, it’s important to understand their privacy policies and how your personal data may be used or shared. You should exercise caution and only provide personal data to trusted sources. We recommend that you read the privacy policies of any external sites you visit to understand their data collection practices and how your personal data will be treated.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational, legal, or regulatory reasons. Any changes will be posted on this page, and if the changes are significant, we will notify you by email (to the address provided in your account) or through a prominent notice on our Service prior to the changes taking effect.

A. Notification of Changes

When we make updates to this Privacy Policy, we will update the "Last Updated" date at the top of this page to indicate when the latest revisions were made. If we make any significant changes that affect how we handle your personal data, we will provide you with notice of the changes before they take effect. We may also notify you via email or by placing a prominent notice on our Service if required by applicable law.

B. Review of Changes

We encourage you to periodically review this Privacy Policy to stay informed about how we are protecting your personal data. If you continue to use the Service after changes have been made, it indicates your agreement to the updated Privacy Policy, including any changes in data handling practices.

C. Material Changes

If any material changes are made that significantly affect your rights or how we process your personal data, we will seek your consent if required by law. Material changes might include, but are not limited to, changes in the purposes for which we collect data, significant updates in how your personal data is shared with third parties, or updates in your rights regarding your data.

D. Your Rights to Dispute Changes

If you disagree with the changes to our Privacy Policy, you may choose to stop using our Service and request the deletion of your personal data in accordance with your rights under this Privacy Policy. Your continued use of the Service following any update to this Privacy Policy indicates your acknowledgment of the updated policy and agreement to abide by its terms.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, or if you would like to exercise any of your data privacy rights, you can contact us using the information below. We are committed to addressing your inquiries in a timely and transparent manner.


  • Email: If you have any questions about this Privacy Policy or how we handle your personal data, you can contact us via email at dev@pathlit.ai.

  • Support: For general support inquiries related to your account or the use of our Service, you can contact us through the support channels provided within the Service or by emailing dev@pathlit.ai.

We strive to respond to all inquiries, requests, and concerns regarding this Privacy Policy or your personal data within a reasonable timeframe. Typically, we will respond within 30 days, in accordance with applicable data protection laws.