Privacy Policy for airsuper

1. Information We Collect

a) Information you provide

• Account details: name, email address, and other registration information.
• Payment & billing: billing details required to process subscriptions (payment transactions are handled by our Merchant of Record; we do not directly store full card details).
• User Content: Airtable data or other data you connect or upload via API.
• Support and feedback: messages you send us (support requests, feedback, surveys).

b) Information we collect automatically

• Usage data: log files, IP address, browser/device characteristics, pages visited, and interaction data.
• Cookies & tracking: cookies, pixels, and similar technologies used to improve the Services and analyse usage.

2. How We Use Your Information

We use personal information to:

• Provide, operate, and maintain the Services.
• Manage accounts, billing, and subscriptions.
• Process payments securely via our Merchant of Record.
• Respond to inquiries, provide support, and communicate important updates.
• Improve, personalise, and develop the Services.
• Detect and prevent fraud and other malicious activity.
• Comply with legal obligations and enforce our Terms.

Legal basis (EEA users): If you are located in the EEA, we process your data based on one or more of the following: contract performance (providing the Services), consent (where requested, e.g. marketing cookies), legal obligation, or our legitimate interests (e.g. security, service improvements) so long as those interests do not override your rights.

3. Sharing and Disclosure

We do not sell your personal information. We may share information with:

• Service providers: trusted third parties (e.g., Merchant of Record such as Paddle or other authorized providers, hosting, analytics, and support vendors) who help provide the Services and operate our business. These providers process data under contract and only on our instructions.
• Legal requirements: when required by law, regulation, subpoena, or governmental request, or to protect rights, safety, or property.
• Business transfers: in connection with mergers, acquisitions, reorganizations, or asset sales (users will be notified as required by law).
• With your consent: where you have provided explicit permission to share certain data.

Please review the privacy policies of third-party services you connect (for example Airtable or the Merchant of Record) for details about their processing and storage practices.

4. Payments

Subscription payments are processed by our Merchant of Record (e.g., Paddle or another authorized provider). We do not directly store or process full payment card details. For details about how your payment information is handled, please consult the payment provider's privacy policy at the time of checkout.

5. Data Retention

We retain personal data only as long as necessary to provide the Services, to comply with legal obligations, to resolve disputes, and to enforce our agreements. Typical retention periods:

• Account and transactional data: retained for the duration of your account and for up to 6 years for accounting and legal compliance.
• Support and communication records: retained for up to 2 years unless longer retention is required.
• Usage logs and analytics: retained in anonymised or aggregated form where possible; raw logs for up to 12 months.

When data is no longer required, we securely delete or anonymise it.

6. Data Security & Breach Notification

We implement reasonable technical and organisational measures designed to protect personal data from unauthorised access, disclosure, alteration, and destruction. However, no security measure is perfect—transmission and storage of data carry inherent risks.

In the event of a security incident affecting your personal data, we will investigate promptly and, where required by applicable law, notify you and the relevant supervisory authority without undue delay.

7. Your Rights

Depending on your jurisdiction, you may have rights such as:

• Access to the personal data we hold about you.
• Correction of inaccurate or incomplete data.
• Request deletion or restriction of processing.
• Object to processing based on legitimate interests.
• Withdraw consent where applicable.
• Data portability where technically feasible and required by law.

To exercise your rights, contact us at [email protected]. We will respond in accordance with applicable law.

8. International Transfers

We are based in India (Maharashtra). Your data may be transferred to and processed in India and other jurisdictions where our service providers operate. Where such transfers occur from the EEA or other regions with data transfer restrictions, we rely on appropriate safeguards such as standard contractual clauses, adequacy decisions, or other legal mechanisms to ensure an adequate level of protection.

9. Children's Privacy

The Services are not directed to individuals under 18. We do not knowingly collect personal information from children. If we learn that we have collected such information, we will take steps to delete it.

10. Cookies & Tracking

We use cookies, pixels, and similar technologies to remember preferences, keep you signed in, analyze usage patterns, and deliver functionality. You can manage or disable cookies through your browser settings, but disabling certain cookies may affect the functionality of the Services.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The revised version will be posted on this page with an updated "Last updated" date. Continued use of the Services after changes indicates acceptance of the revised policy.

12. Contact Us

For questions about this Privacy Policy, to exercise your rights, or to raise privacy concerns, contact:

Email: [email protected]