Privacy Policy

Last updated: January 6, 2025

1. Introduction

At Bearly, Inc. ("Bearly," "we," "us," or "our"), we respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Services, including our website, API, SDKs, and related services. Please read this policy carefully to understand our practices regarding your information.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly to us, including:

  • Account Information: Name, email address, company name, job title, and password
  • Payment Information: Billing address, credit card details, and payment history
  • Profile Information: Profile photo, bio, preferences, and settings
  • Communications: Content of messages, support tickets, and feedback you send to us
  • Survey Responses: Information provided in surveys or research studies

2.2 Information We Collect Automatically

When you use our Services, we automatically collect:

  • Usage Data: API calls, request/response data, timestamps, endpoints accessed, and error logs
  • Device Information: IP address, browser type, operating system, device identifiers
  • Analytics Data: Pages viewed, features used, click patterns, and session duration
  • Performance Data: Response times, latency metrics, and service reliability statistics
  • Cookies and Tracking: Information collected through cookies, web beacons, and similar technologies

2.3 Information from Third Parties

We may receive information from third parties such as authentication providers (Google, GitHub), payment processors, analytics services, and business partners who help us provide the Services.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Delivery: To provide, maintain, and improve our Services
  • Account Management: To create and manage your account, authenticate users, and provide customer support
  • Billing and Payments: To process transactions, send invoices, and manage subscriptions
  • Communications: To send technical notices, updates, security alerts, and administrative messages
  • Analytics and Improvement: To monitor usage patterns, analyze trends, and improve our Services
  • Security: To detect, prevent, and address fraud, security issues, and technical problems
  • Legal Compliance: To comply with legal obligations and enforce our Terms of Service
  • Marketing: With your consent, to send promotional materials about new features and services

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

  • Service Providers: With third-party vendors who perform services on our behalf (hosting, analytics, payment processing)
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • Legal Requirements: To comply with legal obligations, court orders, or government requests
  • Protection of Rights: To protect our rights, property, safety, or that of our users
  • With Your Consent: When you explicitly authorize us to share your information

All third-party service providers are contractually obligated to maintain the confidentiality and security of your information and use it only for the purposes we specify.

5. Data Security

We implement industry-standard security measures to protect your information, including:

  • End-to-end encryption for data in transit using TLS 1.3
  • AES-256 encryption for data at rest
  • Regular security audits and penetration testing
  • Access controls and authentication mechanisms (2FA, SSO, SAML)
  • Continuous monitoring for security threats and anomalies
  • SOC 2 Type II compliance and annual audits

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements. Account information is retained while your account is active and for a reasonable period thereafter. Usage logs are retained for 90 days unless required by law or your subscription plan to retain longer. You may request deletion of your data by contacting us at privacy@bearly.ai.

7. Your Rights and Choices

Depending on your location, you may have the following rights:

  • Access: Request access to the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information
  • Portability: Request a copy of your data in a portable format
  • Objection: Object to processing of your information for certain purposes
  • Restriction: Request restriction of processing under certain circumstances
  • Opt-Out: Unsubscribe from marketing communications at any time

To exercise these rights, please contact us at privacy@bearly.ai. We will respond to your request within 30 days.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws different from your jurisdiction. We ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission for transfers from the EEA.

9. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected information from a child, we will take steps to delete such information promptly. If you believe a child has provided us with personal information, please contact us at privacy@bearly.ai.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your use of the Services. You can control cookies through your browser settings. Types of cookies we use include:

  • Essential Cookies: Required for the Services to function properly
  • Analytics Cookies: Help us understand how users interact with our Services
  • Preference Cookies: Remember your settings and preferences
  • Marketing Cookies: Used to deliver relevant advertisements (with your consent)

11. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including:

  • The right to know what personal information we collect, use, and disclose
  • The right to request deletion of your personal information
  • The right to opt-out of the sale of personal information (we do not sell your information)
  • The right to non-discrimination for exercising your privacy rights

To exercise these rights, email us at privacy@bearly.ai or call 1-855-BEARLY-AI.

12. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), UK, or Switzerland, you have rights under the General Data Protection Regulation (GDPR). We process your data based on lawful grounds including contract performance, legitimate interests, and consent. You have the right to lodge a complaint with your local supervisory authority. Our EU representative can be contacted at eu-privacy@bearly.ai.

13. Do Not Track Signals

Some browsers include a "Do Not Track" (DNT) feature that signals websites you visit that you do not want to have your online activity tracked. We currently do not respond to DNT signals as there is no industry-wide standard for handling DNT signals.

14. Third-Party Links and Services

Our Services may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by posting the updated policy on our website and updating the "Last updated" date. For significant changes, we may also send you an email notification. Your continued use of the Services after the effective date constitutes acceptance of the updated policy.