Privacy Policy
Last Updated: February 15, 2026
Table of Contents
- Scope and Applicability
- Information We Collect
- Information We Do Not Collect
- Third-Party Service Providers
- How We Use Your Information
- CalOPPA Compliance
- CCPA / CPRA Rights (California Residents)
- GDPR Provisions (EEA / UK Visitors)
- Children's Privacy (COPPA)
- FTC Section 5 Compliance
- Data Retention
- Data Security
- Do Not Track Signals
- Changes to This Policy
- Contact Information
- Your Rights Summary
PureTensor Inc ("Company," "we," "us," or "our"), a Delaware C-corporation, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit any of our websites. Please read this policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access our websites.
1. Scope and Applicability
This Privacy Policy applies to all websites owned and operated by PureTensor Inc, including but not limited to:
- puretensor.ai — corporate website and primary digital presence
- intel.puretensor.ai — strategic analysis and intelligence reporting
- cyber.puretensor.ai — cybersecurity assessments and research
- pureclaw.ai — open-source AI tooling and utilities
- nesdia.com — linguistic technology and analytical research
Collectively, these are referred to as the "Websites" or "Services." This policy governs all data collection practices across these properties regardless of which specific domain you access.
2. Information We Collect
2.1 Information You Provide Directly
We collect information that you voluntarily submit to us through our Websites. This includes:
- Contact Form Submissions: When you complete a contact form on any of our Websites, your submission is processed by Formspree Inc., a third-party form handling service. The information collected typically includes your name, email address, company or organization name, and the content of your message. We receive this data via Formspree and store it for the purpose of responding to your inquiry.
- Email Correspondence: If you send email directly to ops@puretensor.ai or any other Company email address, we collect the content of your message, your email address, and any metadata transmitted with the email (such as timestamps, IP address of your mail server, and mail headers).
2.2 Information Collected Automatically
When you access our Websites, certain information is collected automatically by our infrastructure:
- Web Server Logs: Our hosting infrastructure (Google Cloud Platform) maintains standard access logs that record your IP address, browser type and version, operating system, referring URL, pages visited, and the date and time of your visit. These logs are generated automatically as part of standard web server operations.
- Google Fonts CDN: Our Websites load the Inter and JetBrains Mono typefaces from Google's font delivery network. When your browser requests these font files, your IP address is transmitted to Google LLC. This transmission is a technical necessity of loading web fonts from a content delivery network and is governed by Google's Privacy Policy.
- DNS and CDN Data: Certain domains utilize Cloudflare Inc. for DNS resolution and content delivery. Cloudflare may process connection-level data (including your IP address) in the course of providing these services, as described in Cloudflare's Privacy Policy.
3. Information We Do Not Collect
We believe in data minimization. The following practices describe what we deliberately do not do:
- We do not use Google Analytics or any other third-party analytics platform.
- We do not set cookies, use local storage, or employ any browser-based tracking mechanism for the purpose of monitoring user behavior.
- We do not use tracking pixels, web beacons, or similar technologies.
- We do not deploy advertising networks, remarketing services, or behavioral advertising technologies.
- We do not sell, rent, lease, or otherwise transfer personal information to third parties for monetary or other valuable consideration.
- We do not collect payment card information, Social Security numbers, government-issued identification numbers, or biometric data through our Websites.
4. Third-Party Service Providers
We engage a limited number of third-party service providers whose technologies interact with your data when you use our Websites:
- Formspree Inc. processes contact form submissions on our behalf. When you submit a form, your data is transmitted to and temporarily stored by Formspree before being forwarded to us. Formspree's handling of your data is governed by their own privacy policy, available on their website.
- Google LLC provides font delivery via the Google Fonts CDN. Your IP address is transmitted to Google when your browser loads typefaces used on our Websites. Google's data practices are governed by the Google Privacy Policy.
- Google Cloud Platform (Google LLC) provides the hosting infrastructure for our Websites. Standard server access logs are maintained as part of this service. Google Cloud's data processing terms govern the handling of infrastructure-level data.
- Cloudflare Inc. provides DNS resolution and content delivery network services for certain domains. Cloudflare may process connection metadata as part of these services, governed by the Cloudflare Privacy Policy.
We do not share your personal information with any other third parties except as required by law or as necessary to protect our rights.
5. How We Use Your Information
We use the information we collect for the following purposes:
- To respond to your inquiries: Information provided via contact forms or email is used to communicate with you regarding your request.
- To maintain and improve our Websites: Server logs help us monitor the performance, security, and availability of our infrastructure.
- To protect against misuse: Log data may be reviewed to detect and prevent unauthorized access, abuse, or security incidents.
- To comply with legal obligations: We may process and retain data as required by applicable law, regulation, or legal process.
6. CalOPPA Compliance
In accordance with the California Online Privacy Protection Act (CalOPPA), we make the following disclosures:
- This Privacy Policy is conspicuously posted and accessible via a link on every page of our Websites.
- This policy identifies the categories of personally identifiable information collected (Section 2) and the categories of third parties with whom such information may be shared (Section 4).
- The effective date of this policy is clearly stated at the top of this document.
- Our process for notifying users of material changes is described in Section 14.
- Users may review, update, or request changes to their personal information by contacting us at ops@puretensor.ai.
7. CCPA / CPRA Rights (California Residents)
If you are a resident of the State of California, the California Consumer Privacy Act of 2018 (as amended by the California Privacy Rights Act of 2020) ("CCPA/CPRA") provides you with specific rights regarding your personal information. This section describes those rights and explains how to exercise them.
7.1 Right to Know
You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which that information was collected, the business or commercial purpose for collecting the information, and the categories of third parties with whom we share the information. You may submit a verifiable consumer request up to twice within a twelve-month period.
7.2 Right to Delete
You have the right to request the deletion of personal information we have collected from you, subject to certain exceptions provided by law (such as information necessary to complete a transaction, detect security incidents, comply with legal obligations, or exercise free speech).
7.3 Right to Correct
You have the right to request that we correct inaccurate personal information that we maintain about you, taking into account the nature of the information and the purposes for which it is processed.
7.4 Right to Opt-Out of Sale or Sharing
We do not sell your personal information, nor do we share your personal information for cross-context behavioral advertising as those terms are defined under the CCPA/CPRA. Because we do not engage in these practices, no opt-out mechanism is necessary. Should our practices change in the future, we will provide a conspicuous "Do Not Sell or Share My Personal Information" link on our Websites.
7.5 Right to Non-Discrimination
We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you goods or services, charge you different prices, provide a different level of quality, or suggest that you will receive different treatment for exercising your rights under this law.
7.6 Right to Limit Use of Sensitive Personal Information
We do not collect sensitive personal information as defined by the CPRA (including Social Security numbers, financial account credentials, precise geolocation data, racial or ethnic origin, religious beliefs, biometric information, health information, or sexual orientation). As such, no limitation mechanism is applicable.
7.7 Submitting and Verifying Requests
To exercise any of the rights described above, you may submit a verifiable consumer request by emailing ops@puretensor.ai with the subject line "CCPA Request." To verify your identity, we will ask you to provide information that matches data we have on file. Specifically:
- We will request your email address and match it against records of prior contact form submissions or correspondence.
- For requests to access specific pieces of personal information, we may require you to provide at least two data points that match our records (for example, the email address used to contact us and the approximate date of your inquiry).
- We will not ask you to create an account in order to submit or verify a request.
7.8 Authorized Agents
You may designate an authorized agent to submit a request on your behalf. If an authorized agent submits a request, we may require: (a) written, signed authorization from you designating the agent; and (b) verification of your identity directly, unless the agent provides a power of attorney valid under the California Probate Code.
7.9 Response Timeline
We will acknowledge receipt of your request within ten (10) business days. We will respond to a verifiable consumer request within forty-five (45) calendar days of receiving it. If we require additional time (up to an additional forty-five days), we will inform you of the reason and the expected response date in writing.
8. GDPR Provisions (EEA / UK Visitors)
If you are located in the European Economic Area ("EEA") or the United Kingdom ("UK"), the General Data Protection Regulation (EU 2016/679) and, where applicable, the UK GDPR as supplemented by the Data Protection Act 2018, provide you with additional rights regarding your personal data.
8.1 Data Controller
The data controller for information processed through our Websites is:
8.2 Lawful Basis for Processing
We process your personal data on the following legal bases:
- Legitimate Interest (Article 6(1)(f)): Processing server logs to maintain website security and performance, and processing connection data necessary for the technical delivery of our Websites.
- Consent (Article 6(1)(a)): When you voluntarily submit information through a contact form, you consent to our processing of that data for the purpose of responding to your inquiry.
- Contractual Necessity (Article 6(1)(b)): Where processing is necessary for the performance of a contract or to take pre-contractual steps at your request.
8.3 Data Subject Rights
Under the GDPR, you have the following rights with respect to your personal data:
- Right of Access (Article 15): You may request a copy of the personal data we hold about you.
- Right to Rectification (Article 16): You may request that we correct any inaccurate or incomplete personal data.
- Right to Erasure (Article 17): You may request deletion of your personal data, subject to applicable legal exceptions.
- Right to Restriction of Processing (Article 18): You may request that we restrict the processing of your personal data under certain circumstances.
- Right to Data Portability (Article 20): You may request your personal data in a structured, commonly used, machine-readable format.
- Right to Object (Article 21): You may object to processing based on legitimate interests. We will cease processing unless we demonstrate compelling legitimate grounds that override your interests.
- Right to Withdraw Consent (Article 7(3)): Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing conducted prior to withdrawal.
To exercise any of these rights, contact us at ops@puretensor.ai. We will respond within one (1) month, extendable by two (2) additional months where necessary, with notification of the extension.
8.4 International Transfers
Your personal data is processed in the United States. The European Commission has not issued an adequacy decision with respect to the United States under the GDPR (except as may apply under the EU-U.S. Data Privacy Framework). Where we transfer personal data outside the EEA or UK, we rely on one or more of the following legal mechanisms: (a) the transfer is necessary for the performance of a contract between you and us, or for pre-contractual measures taken at your request (Article 49(1)(b)); (b) you have provided your explicit consent to the transfer (Article 49(1)(a)); or (c) the transfer is necessary for the establishment, exercise, or defense of legal claims (Article 49(1)(e)).
8.5 Data Protection Officer
PureTensor Inc is a small organization and is not required under Article 37 of the GDPR to appoint a Data Protection Officer. For all data protection inquiries, please contact ops@puretensor.ai.
8.6 Supervisory Authority
If you are located in the EEA or UK, you have the right to lodge a complaint with your local supervisory authority (data protection authority) if you believe our processing of your personal data violates applicable data protection law.
9. Children's Privacy (COPPA)
Our Websites are not directed at, and are not intended for use by, children under the age of thirteen (13). We do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected personal information from a child under 13, we will take prompt steps to delete such information from our records. If you are a parent or guardian and believe that your child under 13 has provided personal information to us, please contact us immediately at ops@puretensor.ai so that we can take appropriate action.
10. FTC Section 5 Compliance
We are committed to compliance with Section 5 of the Federal Trade Commission Act, which prohibits unfair or deceptive acts or practices in or affecting commerce. In furtherance of this commitment:
- Our stated data collection and processing practices accurately reflect our actual practices.
- We do not make misleading representations about our data handling.
- We do not engage in unfair data collection or processing that would cause substantial injury to consumers that is not reasonably avoidable and not outweighed by countervailing benefits.
- We implement reasonable data security measures appropriate to the volume and sensitivity of the data we process.
11. Data Retention
We retain personal information only for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law:
- Contact Form Submissions: Retained for up to two (2) years from the date of submission, after which they are permanently deleted.
- Web Server Logs: Retained for ninety (90) days, then automatically purged.
- Email Correspondence: Retained for the duration of the business relationship plus three (3) years, after which correspondence is archived or deleted.
We do not retain any category of personal information longer than is reasonably necessary for the purpose for which it was collected.
12. Data Security
We implement administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:
- All Websites are served exclusively over HTTPS with TLS encryption.
- Server access is restricted to authorized personnel using key-based authentication.
- Infrastructure is regularly patched and monitored for security vulnerabilities.
- We do not collect or store payment information or highly sensitive categories of personal data.
While we strive to protect your personal information, no method of transmission over the Internet or method of electronic storage is completely secure. We cannot guarantee absolute security, but we are committed to maintaining safeguards appropriate to the sensitivity of the data we process.
13. Do Not Track Signals
Our Websites honor Do Not Track ("DNT") browser signals to the extent applicable. Because we do not engage in tracking, behavioral advertising, or cross-site data collection, our data collection practices are the same regardless of whether your browser sends a DNT signal. No additional action on your part is required.
14. Changes to This Policy
We reserve the right to update or modify this Privacy Policy at any time. When we make changes, we will revise the "Last Updated" date at the top of this page. If we make material changes to this policy, we will provide notice by prominently posting the updated policy on our Websites. Your continued use of any of our Websites after the posting of a revised Privacy Policy constitutes your acknowledgment of the changes and your consent to abide by the updated policy.
We encourage you to review this Privacy Policy periodically to stay informed about our data practices.
15. Contact Information
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
We will endeavor to respond to all legitimate inquiries within a reasonable timeframe. If you are not satisfied with our response, you may have the right to lodge a complaint with your applicable regulatory authority.
16. Your Rights Summary
The following table summarizes the data protection rights available to you based on your jurisdiction:
| Right | California (CCPA/CPRA) | EEA / UK (GDPR) | All Users |
|---|---|---|---|
| Access / Right to Know | Yes | Yes | Yes |
| Deletion / Erasure | Yes | Yes | Yes |
| Correction / Rectification | Yes | Yes | Yes |
| Opt-Out of Sale / Sharing | Yes (N/A — we don't sell) | — | — |
| Data Portability | — | Yes | — |
| Restrict Processing | — | Yes | — |
| Object to Processing | — | Yes | — |
| Withdraw Consent | — | Yes | Yes |
| Non-Discrimination | Yes | — | — |
| Limit Sensitive Data Use | Yes (N/A — not collected) | — | — |
| Lodge Complaint with Authority | — | Yes | — |
To exercise any right listed above, please email ops@puretensor.ai.