LEGACY INVENTORY — PRIVACY POLICY 

1. Data Scope and Telemetry
We collect Identity Data, Device Data, Inventory Data, Marketplace Data, Behavioral Telemetry, and AI interaction logs to detect fraud, operate the Service, secure accounts, improve features, and optimize internal systems. We may also collect billing, support, and transactional information where applicable. We do not intentionally collect sensitive personal information unless you upload or submit it.

2. Primary Usage and Model Evolution
Data is used to operate the Service, process requested features, prevent fraud, maintain security, comply with law, and improve the Service. We may transform User Content into de-identified, anonymized, or aggregated statistical sets for internal AI training, analytics, and service development. We do not train third-party public models on private inventory data.

3. Marketplace Controller Status
Once data is transmitted to a marketplace, that platform becomes the sole controller or independent controller of that information under its own policies and terms. We cannot delete downstream copies held by third parties except to the extent their systems and policies allow. You are responsible for reviewing each marketplace’s privacy policy before enabling integrations.

4. Sub-Processor Consent
You consent to our use of sub-processors and service providers, including AWS, OpenAI, Stripe, and similar vendors, to host, process, store, transmit, secure, or analyze data as needed to operate the Service. We may change sub-processors from time to time to maintain service levels, enhance security, or support business operations.

5. Security: No “Zero Vulnerability” Guarantee
We implement industry-standard safeguards but do not guarantee a hack-proof system, perfect confidentiality, or protection from zero-day exploits, malware, phishing, nation-state attacks, or other threats. No system connected to the internet can be guaranteed to be completely secure.

6. Retention and Compliance Archiving
We may retain logs, backups, audit records, archived copies, security records, and related data even after deletion requests to satisfy legal, safety, fraud-prevention, operational, or compliance obligations. Retention periods may vary depending on the type of data and the reason for retention.

7. Emergency and Legal Disclosure
We reserve the right to disclose personal data to law enforcement, regulators, courts, or other appropriate parties to prevent physical harm, investigate fraud, protect the Service’s legal integrity, enforce our rights, or comply with legal process, subpoenas, court orders, or other lawful requests.

8. Automated Decision-Making (ADM)
We do not use automated decision-making to produce legal effects or similarly significant effects on you without human intervention. Any automated suggestions, classifications, or risk flags are informational and subject to human review before action is taken.

9. International Transfers
You consent to the transfer, storage, and processing of your data in the United States and other global regions where our providers, vendors, or systems operate. You assume the risk that foreign governments or authorities may access data under applicable local law.

10. Biometric Identification Disclaimer
We do not utilize facial recognition or biometric identification technology for the purpose of uniquely identifying a person. Any images uploaded by users are processed as user content for organizational and Service-related purposes only.

11. User Rights and Jurisdictional Limits
Depending on your jurisdiction, you may have rights to access, delete, correct, port, or restrict certain uses of your data. Requests may be denied if they conflict with legal retention duties, security obligations, fraud-prevention needs, third-party rights, or legally recognized exemptions.

12. Cookies and Persistent Tracking
We may use cookies, local storage, pixels, session identifiers, persistent identifiers, logs, and similar technologies to operate the Service, maintain login sessions, improve security, analyze usage, and remember preferences. You may disable certain technologies in your browser or device settings, but some features may not function properly.

13. Data Access Controls
Access to personal data is limited to authorized personnel, contractors, and service providers on a need-to-know basis. We use reasonable administrative, technical, and physical safeguards designed to reduce the risk of unauthorized access, disclosure, or misuse.

14. De-Identified and Aggregated Data
We may create, use, store, and retain de-identified, anonymized, or aggregated data for analytics, service improvement, fraud detection, security, and product development. Such data is not intended to identify you personally and may be used without restriction to the extent permitted by law.

15. Consent to Processing
By using the Service, you consent to our collection, use, processing, storage, disclosure, and retention of your information as described in this Privacy Policy and any related notices. If you do not agree, you must stop using the Service.

16. Complaint and Inquiry Process
If you have a privacy complaint, privacy inquiry, or request regarding your personal data, you may contact us using the information in Section 17. We will review requests in good faith and respond within a reasonable time where required by law.

17. Data Breach Response
If we determine that a security incident involving personal data has occurred, we may take steps including investigation, containment, remediation, law enforcement notification, and user notification where required by law. We do not guarantee that any incident can be prevented, reversed, or fully mitigated.

18. Policy Updates and Notice
We may update this Privacy Policy at any time by posting a revised version in the Service or by otherwise providing reasonable notice. Your continued use of the Service after the effective date of the updated policy constitutes acceptance of the revised Privacy Policy.

19. Contact Information
Core Layer Development LLC
5900 Balcones Dr Ste 100, Austin, TX 78731
Email: support@legacyinventory.com