Privacy Policy

Last Updated: October 28, 2024

1. Introduction

This Privacy Policy describes how spawntech.io ("we", "our", or "us"), operated by Spawntech (Pty) Limited, collects, uses, and shares information when you interact with our website and associated services. We are committed to protecting your privacy and ensuring transparent data practices.

2. Information We Collect

2.1. Information You Provide

Contact information (name, email, phone)
Content submitted through our contact forms or demos
Communication preferences
Customer support interactions

2.2. Automatically Collected Information

Usage data and interaction patterns
Device information
IP address and location data
Browser type and settings
Session information
Performance and error data

Input prompts and queries (where applicable)
Generated outputs (e.g., when interacting with embedded tools)
Model interaction patterns
Feedback and corrections (if voluntarily submitted)

3. How We Use Your Information

We use collected information for:

3.1. Service Provision

Delivering and improving website content and AI demos
Processing inquiries and feedback
Providing customer support

3.2. Service Improvement

Enhancing UX and AI tool accuracy
Developing new features
Analyzing usage patterns

3.3. Communication

Sending updates and announcements
Providing technical or service notifications
Responding to inquiries
Marketing communications (with consent)

3.4. Security and Compliance

Protecting against unauthorized access
Preventing fraud and abuse
Maintaining integrity and uptime of the site
Complying with legal obligations

4. Data Storage and Processing

4.1. Data Storage

We store data in secure, encrypted environments
Data is retained only as long as necessary
You can request data deletion (subject to legal requirements)

4.2. AI Model Training

We may use anonymized interaction data to improve demos and tools
Personal identifiers are removed before training
You can opt-out of contributing to training data

4.3. Supabase Data Handling

Data submitted through forms may be processed and stored using Supabase
Supabase implements strong encryption standards and follows industry best practices
We utilize Supabase's Row Level Security (RLS) for fine-grained access control

4.4. Payment Information

Spawntech.io does not process payments directly at this time
If payments are introduced, a separate policy will govern them

4.5. Payment Providers

Not currently applicable for this site.

We share information with:

5.1. Service Providers

Cloud hosting providers
Analytics services
Customer support platforms

5.2. Legal Requirements

Court orders
Legal obligations
Government requests
Protection of rights

5.3. Business Transfers

Merger, acquisition, or sale of assets
Due diligence processes

6. Data Security

We implement security measures including:

Encryption in transit and at rest
Access controls and authentication
Regular security audits
Incident response procedures
Use of Supabase RLS and auditing of configurations
SSL enforcement and password hashing standards

7. Your Rights and Choices

You have the right to:

Access your personal information
Correct inaccurate data
Request data deletion
Opt-out of marketing
Export your data
Withdraw consent
Lodge complaints with supervisory authorities
Request a copy of your personal data stored in our Supabase database
Receive information about how your data is processed within our infrastructure

8. Children's Privacy

We do not knowingly collect data from children under 13
Parents can request data deletion
Age verification may be required

9. International Data Transfers

9.1. Data Transfer Mechanisms

Standard contractual clauses
Adequacy decisions
Privacy Shield (where applicable)

9.2. Transfer Safeguards

Data protection agreements
Security assessments
Compliance monitoring

10.1. Types of Cookies Used

Essential Cookies

Site authentication and session maintenance
CSRF and security token storage
Language and interface preferences

Functional Cookies

Visitor preferences and UI state

Analytics Cookies

Google Analytics (_ga, _gid)
Application performance (where used)

Marketing Cookies (Optional)

We may use:

Google Tag Manager
CRM cookies (e.g., HubSpot, ActiveCampaign, Pipedrive)
Optional third-party tracking tools

Users can opt out of marketing cookies via the Cookie Settings panel.

Preferences can be adjusted via our cookie banner
Marketing cookies require explicit opt-in
Essential cookies cannot be disabled

11. AI-Specific Privacy Considerations

11.1. Model Training Data

Anonymized and stripped of identifiers
Retained for up to 12 months
Used to improve output relevance and clarity

11.2. AI Output Privacy

Stored securely with encryption
Access limited to authorized personnel
Deleted on request

12. Technical and Organizational Measures

12.1. Data Storage

Primary infrastructure: Supabase (PostgreSQL)
Hosted in Western Europe (London)
Encryption: AES-256 and TLS 1.3

12.2. Security Measures

OAuth-based secure authentication
24/7 monitoring
Regular audits
Incident response protocols

12.3. Data Retention

Contact form data retained for 180 days unless otherwise agreed
Log and backup data purged after 30–90 days

13. Changes to Privacy Policy

Periodic updates may be made
Material changes will be notified
Continued use implies acceptance

14. Additional Rights for Specific Regions

Right to data portability
Right to restrict or object to processing
Rights regarding automated decision-making

14.2. California (CCPA/CPRA)

Right to know and delete
Right to opt-out of sale (not applicable)
Non-discrimination protections

15. Compliance with South African Law

15.1. POPIA Compliance

Information Officer registered
Routine privacy reviews conducted
Subject rights fully honored
Breach notifications handled promptly

15.2. Cross-border Transfer Safeguards

Contractual clauses
Processor agreements
Ongoing reviews

16. Contact Information

Spawntech (Pty) Limited
3 Sandown Valley Crescent
Sandton, South Africa, 2196

Phone: +27 11 994 9960

Email Contacts:

Operating Hours: Monday to Friday, 08:00–17:00 SAST