Privacy Policy

1. Introduction

AI AppSec Consulting ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website aiappsecacademy.com and use our services.

2. Information We Collect

2.1 Personal Information

We collect personal information that you voluntarily provide when:

• Enrolling in consulting services
• Making payments through Stripe
• Contacting us via LinkedIn or other communication channels
• Subscribing to newsletters or updates (if applicable)

This information may include: name, email address, payment information (processed by Stripe), company name, job title, and communication preferences.

2.2 Automatically Collected Information

When you visit our website, we automatically collect:

• Browser type and version
• Operating system
• IP address (anonymized)
• Pages visited and time spent on pages
• Referring website
• Device information

3. How We Use Your Information

We use collected information for the following purposes:

• Service Delivery: To provide consulting services, process bookings, and communicate course details
• Payment Processing: To process transactions through Stripe (we do not store credit card information)
• Communication: To send session confirmations, updates, and respond to inquiries
• Analytics: To understand website usage and improve our services (via Vercel Web Analytics)
• Legal Compliance: To comply with legal obligations and prevent fraud

4. Third-Party Services

We use the following third-party services that may collect information:

4.1 Stripe

Payment processing is handled by Stripe. Stripe collects and processes payment information according to their Privacy Policy. We do not store credit card information on our servers.

4.2 Google Analytics

We use Google Analytics (GA4) to understand how visitors interact with our website. Google Analytics collects anonymized usage data including page views, session duration, and traffic sources via cookies (_ga, _gid). Data is processed by Google per their Privacy Policy. You can opt out using the Google Analytics Opt-out Browser Add-on.

4.3 Vercel Web Analytics

We use Vercel Web Analytics for privacy-friendly website analytics. Vercel does not use cookies and does not collect personal information. Data is aggregated and anonymized.

4.4 Vercel Hosting

Our website is hosted on Vercel. Server logs may be collected for security and performance monitoring purposes.

5. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law. Consulting engagement records are retained for a minimum of 7 years for tax and legal compliance.

6. Data Security

We implement industry-standard security measures to protect your information:

• SSL/TLS encryption for all data transmission
• Secure hosting infrastructure (Vercel)
• PCI DSS compliant payment processing (Stripe)
• Regular security audits and updates
• Access controls and authentication for internal systems

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

7. Your Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your personal data
• Objection: Object to processing of your data
• Portability: Request transfer of your data
• Withdraw Consent: Withdraw consent for data processing

To exercise these rights, contact us via LinkedIn at linkedin.com/in/vchirrav.

8. Cookies

Our website uses the following categories of cookies:

• Strictly Necessary: Session management cookies essential for website functionality
• Analytics: Google Analytics (_ga, _gid) to understand visitor behavior and improve our services. Data is anonymized and processed by Google per their Privacy Policy.

We do not use advertising or marketing cookies. For full cookie details and to manage your preferences, see our Cookie Policy.

9. International Data Transfers

Your information may be transferred to and processed in the United States where our hosting provider (Vercel) and payment processor (Stripe) operate. We ensure appropriate safeguards are in place for international transfers.

10. Children's Privacy

Our services are intended for professionals and are not directed to individuals under 18 years of age. We do not knowingly collect information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. Continued use of our services after changes constitutes acceptance of the updated policy.

12. Contact Information

For questions about this Privacy Policy or to exercise your rights, contact: