Privacy Policy

Last Updated: November 26, 2025

1. Introduction

STRATA AI ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we look after your personal data when you visit our website or use our SaaS platform (the "Service") and tells you about your privacy rights and how the law protects you.

2. Data We Collect

We collect data to provide the Context-Aware AI service:

  • Identity Data: Name, username, or similar identifier.
  • Contact Data: Email address and billing address.
  • Strategic Data ("The Codex"): Business information, brand voice guidelines, audience data, and proprietary strategies you input into the platform.
  • Usage Data: Information about how you use our website, products, and services.
  • Marketing Data: Your preferences in receiving marketing from us.

3. AI Processing & Third Parties

To provide our core functionality, specific data is shared with third-party processors.We strictly adhere to a "Data Sovereignty" model:

  • Google Vertex AI (LLM Provider): We transmit your Codex data to Google's API to generate content. According to Google's enterprise terms, this data is not used to train their foundational models.
  • Supabase (Database): Your data is stored securely in Supabase (PostgreSQL).
  • Stripe (Payments): We do not store credit card details. All payment processing is handled by Stripe.

4. How We Use Your Data

We will only use your personal data when the law allows us to. Most commonly, we use your personal data in the following circumstances:

  • To perform the contract we are about to enter into or have entered into with you.
  • To generate the marketing assets you request via our AI Agents.
  • Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.

5. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for. You may request deletion of your account and all associated "Codex" data at any time via the dashboard.

6. International Transfers

Our primary servers are located in [Region, e.g., US East]. If you are accessing the service from the EU, UK, or Australia, please note that your data may be transferred to and processed in countries outside of your jurisdiction. We utilize standard contractual clauses and data processing agreements to ensure security.

7. Your Legal Rights

Under certain circumstances, you have rights under data protection laws (GDPR, CCPA, APP) in relation to your personal data, including:

  • Request access to your personal data.
  • Request correction of your personal data.
  • Request erasure of your personal data.
  • Object to processing of your personal data.
  • Request restriction of processing your personal data.

8. Contact Us

If you have any questions about this privacy policy or our privacy practices, please contact us at:privacy@strata.ai.