At GREYSCOPE LABS, we take your privacy seriously. This policy outlines how we collect, use, and protect your data across our AI, Web3, and Cloud Engineering services.
1. Introduction
GREYSCOPE LABS ("we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you visit our website at greyscope.xyz, use our services, or engage with us in any capacity.
As a technology company focused on Artificial Intelligence, Web3, and Cloud Engineering, we understand the critical importance of data privacy. We are dedicated to maintaining transparency about our data practices and ensuring that your personal information is handled responsibly and in compliance with applicable data protection laws and regulations.
By accessing or using our website and services, you acknowledge that you have read, understood, and agree to be bound by the terms of this Privacy Policy. If you do not agree with the practices described herein, we kindly ask that you discontinue use of our services.
2. Information We Collect
We collect information that you provide directly to us when you interact with our services, as well as information that is collected automatically when you visit our website. The types of information we may collect include:
Personal Information
Full name, email address, phone number, and company name when you contact us or request a consultation.
Professional information including job title, industry, and technical requirements related to your project needs.
Billing and payment information when you engage our services, processed securely through trusted third-party payment providers.
Account credentials if you create an account to access client portals, project dashboards, or other protected resources.
Automatically Collected Information
Device information including hardware model, operating system, browser type and version, and screen resolution.
Usage data such as pages visited, time spent on pages, click patterns, navigation paths, and interaction events.
IP address, geolocation data (approximate), and network information for analytics and security purposes.
Referral source, search queries, and campaign attribution data that led you to our website.
Technical & Project Data
Code repositories, API keys, configuration files, and deployment credentials that you share with us for project collaboration.
Performance metrics, logs, and diagnostic data from AI models, Web3 applications, or cloud infrastructure we manage on your behalf.
Communication records including emails, meeting notes, and chat transcripts related to project delivery and support.
3. How We Use Your Information
We use the information we collect to deliver, maintain, and improve our AI, Web3, and Cloud Engineering services. Specifically, we use your personal information to:
Service Delivery & Communication
Process and fulfill service requests, including AI model development, smart contract auditing, and cloud infrastructure provisioning.
Communicate with you about project status, deliverables, timelines, and technical requirements.
Provide customer support, respond to inquiries, and resolve issues related to our services.
Send you important updates about our services, including maintenance notifications, security alerts, and feature releases.
Improvement & Analytics
Analyze usage patterns and behavioral data to improve our website, services, and user experience.
Conduct research and analysis to develop new features, products, and service offerings.
Perform A/B testing, user research, and satisfaction surveys to inform product decisions.
Detect, diagnose, and fix technical issues, bugs, and security vulnerabilities.
Legal & Security
Comply with applicable laws, regulations, legal processes, or governmental requests.
Enforce our terms of service, contracts, and other legal agreements.
Protect the rights, privacy, safety, and property of GREYSCOPE LABS, our users, and the public.
Prevent, investigate, and mitigate fraud, security breaches, and other malicious activities.
4. Data Sharing & Disclosure
We do not sell, rent, or trade your personal information to third parties. We may share your information in the following limited circumstances:
Service Providers & Partners
Cloud infrastructure providers (e.g., AWS, Google Cloud, Azure) who host our systems and process data on our behalf.
AI and analytics platforms that assist in model training, data processing, and performance optimization.
Payment processors and financial institutions for secure transaction handling.
Professional service providers including legal counsel, accountants, and auditors as reasonably necessary.
Legal Requirements
When required by law, regulation, subpoena, or other valid legal process.
To establish, exercise, or defend legal claims or rights.
In connection with a merger, acquisition, reorganization, bankruptcy, or sale of assets, where your personal information may be transferred as part of the transaction.
With Your Consent
When you have explicitly given us consent to share your information with a specific third party.
When you publicly post information on our platforms or social media channels that is accessible to others.
5. Data Security
We implement robust technical and organizational measures designed to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Our security practices include:
End-to-end encryption for data in transit using TLS 1.3 and strong cipher suites.
Encryption at rest using AES-256 for all stored personal data and sensitive project files.
Role-based access controls (RBAC) with the principle of least privilege to limit data access to authorized personnel.
Regular security audits, vulnerability assessments, and penetration testing conducted by independent third parties.
Secure software development lifecycle (SSDLC) practices including code reviews, static analysis, and dependency scanning.
Incident response procedures with dedicated security team for rapid detection, containment, and remediation of security events.
While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data and encourage you to take appropriate measures to protect your own credentials and sensitive information.
6. Cookies & Tracking Technologies
Our website uses cookies, web beacons, pixel tags, and similar tracking technologies to enhance your browsing experience and collect analytical data. These technologies help us understand how visitors interact with our website and allow us to provide personalized content.
Types of Cookies We Use
Essential cookies: Required for basic website functionality including authentication, session management, and security features. These cannot be disabled.
Analytics cookies: Help us understand how visitors use our website by collecting information about pages visited, time spent, and interaction patterns. We use Google Analytics with anonymized IP addresses.
Functional cookies: Enable personalized features and remember your preferences, such as language settings, theme preferences, and recently viewed content.
Performance cookies: Collect information about how our website performs, including load times, error rates, and resource utilization metrics.
Managing Cookies
You can control and manage cookies through your browser settings. Most browsers allow you to refuse or accept cookies, delete existing cookies, and set preferences for certain websites.
Please note that disabling certain cookies may affect the functionality of our website and limit your ability to use some features.
We use "Do Not Track" (DNT) signals where supported, but please be aware that DNT is not universally recognized across all browsers and tracking technologies.
7. Third-Party Links & Services
Our website may contain links to third-party websites, plugins, services, or integrations that are not operated or controlled by GREYSCOPE LABS. This Privacy Policy does not apply to those third-party services. We encourage you to review the privacy policies of any third-party services you access.
We do not endorse, control, or assume responsibility for the content, privacy policies, or practices of any third-party websites or services. Your interactions with these third-party services are governed solely by their respective terms and policies.
Examples of third-party integrations on our website may include:
Analytics platforms (e.g., Google Analytics) for website usage measurement.
Communication tools (e.g., email service providers, CRM systems) for managing inquiries and client relationships.
Development platforms (e.g., GitHub, GitLab) for code collaboration and project management.
Cloud services (e.g., AWS, GCP, Azure) referenced in our case studies and technical documentation.
8. Children's Privacy
Our website and services are not directed to individuals under the age of 16. We do not knowingly collect, use, or retain personal information from children under the applicable legal age in any jurisdiction.
If we discover that we have inadvertently collected personal data from a child under the applicable legal age, we will take immediate steps to delete that information from our servers and records. If you believe that a child under the applicable age has provided us with personal information, please contact us immediately at [email protected] so we can take appropriate action.
In compliance with the Children's Online Privacy Protection Act (COPPA) and other applicable regulations, we maintain strict procedures to verify the age of users where age-restricted services are involved.
9. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. Our data retention practices are guided by the following principles:
Active project data: Retained for the duration of the engagement plus 90 days post-project completion for warranty and support purposes.
Client communication records: Retained for up to 3 years from the last interaction for business continuity and reference.
Website analytics data: Anonymized after 26 months and retained in aggregate form for long-term trend analysis.
Financial and billing records: Retained for 7 years in accordance with applicable tax and accounting regulations.
Job applications and recruiting data: Retained for up to 2 years from the date of application.
Marketing communications preferences: Retained until you withdraw your consent or request deletion.
When your personal information is no longer needed, we will securely delete or anonymize it in accordance with our data disposal procedures. In certain circumstances, we may be required by law to retain certain information for a specified period.
10. Your Rights
Depending on your jurisdiction, you may have certain rights regarding your personal information. We are committed to facilitating the exercise of these rights in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant regulations.
Rights You May Exercise
Right of Access: Request a copy of the personal data we hold about you.
Right to Rectification: Request correction of inaccurate or incomplete personal data.
Right to Erasure ("Right to Be Forgotten"): Request deletion of your personal data, subject to certain legal exceptions.
Right to Restrict Processing: Request that we limit how we use your personal information.
Right to Data Portability: Request a copy of your data in a structured, machine-readable format.
Right to Object: Object to the processing of your personal data for specific purposes, including direct marketing.
Right to Withdraw Consent: Withdraw previously given consent for data processing at any time.
Right to Lodge a Complaint: File a complaint with a supervisory authority if you believe your data rights have been violated.
How to Exercise Your Rights
To exercise any of these rights, please submit a written request to [email protected] with the subject line "Data Rights Request."
We will acknowledge your request within 5 business days and respond substantively within 30 days, or as required by applicable law.
We may request verification of your identity before processing your request to protect against unauthorized access.
Certain requests may be subject to exemptions as permitted by applicable law, in which case we will explain the reasons for any refusal.
11. Changes to This Privacy Policy
We reserve the right to update, modify, or replace this Privacy Policy at any time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will:
Update the "Effective Date" prominently displayed at the top of this page.
Post a notice on our website homepage for a reasonable period (typically 30 days).
Send an email notification to registered users and active clients regarding significant changes.
Update the privacy policy link in our website footer to ensure visibility.
We encourage you to review this Privacy Policy periodically to stay informed about how we collect, use, and protect your information. Your continued use of our website and services after any changes to this policy constitutes your acceptance of the updated terms.
A history of significant changes to this Privacy Policy will be maintained and available upon request.
12. Contact Information
If you have any questions, concerns, or requests regarding this Privacy Policy, our data practices, or how we handle your personal information, please do not hesitate to reach out. We are committed to addressing your concerns promptly and transparently.