Privacy Policy

1. Introduction

At Soy Un Glitch ("we", "our" or "the Company"), operating under Soy Un Glitch LLC in Puerto Rico, we are committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, share and protect your information when you use our services, including but not limited to: the Glitch One platform, AI Employees, AI Receptionist, Beato AI and any other product or service offered by Soy Un Glitch. By using our services, you accept the practices described in this Privacy Policy.

2. Information We Collect

3. How We Use Your Information

We use the collected information to:

• Provide, operate and maintain our services, including AI Employees, AI Receptionist and Beato AI.
• Process and analyze conversations and interactions to improve the quality, accuracy and relevance of our AI systems' responses.
• Train and improve our proprietary models and algorithms using aggregated and anonymized data from interactions with our services.
• Personalize and optimize your user experience.
• Process transactions and send notifications related to your account.
• Send service communications, updates and technical support.
• Develop new features and improve our existing products.
• Detect, prevent and address technical issues, fraud or unauthorized activities.
• Comply with applicable legal and regulatory obligations.

4. Use of Artificial Intelligence Providers

Our services use artificial intelligence technologies provided by third parties, including: • Anthropic (Claude API) • OpenAI (GPT API) • Other AI service providers When you interact with our AI systems, your queries and data may be processed through these third-party platforms. These providers have their own privacy policies and data handling practices. We recommend reviewing their respective policies. We work to minimize the exposure of sensitive personal data to these providers and apply appropriate security measures in all data transmissions.

5. AI Data Protection and Ownership

When you configure your AI Employee, AI Receptionist or use Beato AI:

• Your business data is stored securely and logically isolated from other customers.
• Use for Improvement: Interactions and conversations with our AI systems may be used to improve the overall quality of our services and the experience of all users. This improvement may include analysis of usage patterns, response optimization and development of new features.
• We do not sell your data to third parties for marketing purposes.
• Conversations with your end customers are processed with strict security and confidentiality measures.
• You maintain intellectual property ownership of the original business data you provide to our systems.

6. Sharing Information

We share your data only in the following circumstances:

• Service Providers: With technology infrastructure, hosting and cloud service providers necessary to operate our platform.
• AI Providers: With Anthropic, OpenAI and other artificial intelligence providers to process queries and generate responses.
• Payment Processor: With Stripe to securely manage payment transactions.
• Legal Requirements: When required by law, court order, subpoena or other valid legal process.
• Protection of Rights: When necessary to protect our rights, privacy, security or property, or those of our users or third parties.
• Corporate Transactions: In case of merger, acquisition, reorganization or sale of assets, your data may be transferred as part of such transaction.

We never sell your personal data to third parties for marketing or advertising purposes.

7. Security

We implement technical, administrative and physical security measures designed to protect your information:

• Data encryption in transit (TLS/SSL) and at rest.
• Role-based access controls and principle of least privilege.
• Continuous security monitoring and threat detection.
• We use infrastructure providers that maintain recognized security certifications, including SOC 2 and ISO 27001.
• Periodic vulnerability assessments and security testing.
• Access management and secure authentication policies.

Although we strive to protect your information, no data transmission or storage system is completely secure. We cannot guarantee the absolute security of your data.

8. Security Breach Notification

In case of a security breach affecting your personal data:

• We will investigate the incident immediately and thoroughly.
• We will notify affected users by email within 72 hours of breach confirmation, or as soon as reasonably possible.
• We will provide information about the nature of the incident, the types of data affected and the measures we are taking to remedy the situation.
• We will notify competent authorities as required by applicable laws.
• We will offer guidance on measures users can take to protect themselves.

9. Your Rights

You have the right to:

• Access: Request a copy of the personal data we hold about you.
• Rectification: Correct inaccurate or incomplete personal information.
• Deletion: Request the deletion of your personal data, subject to certain legal and operational exceptions.
• Portability: Receive your data in a structured, commonly used and machine-readable format.
• Opposition: Object to certain types of processing of your data.
• Restriction: Request the limitation of processing of your data in certain circumstances.
• Withdrawal of Consent: Withdraw your consent at any time, when processing is based on consent.

To exercise any of these rights, contact our privacy team at [email protected]. We will respond to your request within 30 days of receipt.

10. Data Retention

We retain your information for as long as necessary to fulfill the purposes described in this policy:

• Account Data: While your account remains active and for a reasonable period thereafter to comply with legal obligations.
• AI Conversations and Interactions: According to the retention settings you establish, or for a predetermined period necessary for service improvement.
• Billing Records: For the period required by applicable tax and commercial laws (generally 7 years).
• Aggregated and Anonymized Data: May be retained indefinitely for analysis and service improvement.

11. Age Requirements

Our services are designed for users over 18 years of age. We do not intentionally collect personal information from minors under 18 years of age. Exception for Educational Institutions: Educational institutions (schools, colleges, universities) may authorize the use of our services by students under 18 years of age under their supervision and responsibility. In these cases:

• The educational institution acts as the data controller for minors.
• The institution must obtain the necessary parental or guardian consents as required by applicable laws.
• The institution is responsible for ensuring appropriate use of services by minors.
• We will work with institutions to implement additional protection measures appropriate for minor users.

If we discover that we have collected information from a minor without appropriate authorization, we will take steps to delete such information from our systems.

12. International Users and Data Transfers

Soy Un Glitch operates from Puerto Rico, United States. If you access our services from outside Puerto Rico or the United States, please note that:

• Your data may be transferred, stored and processed in the United States and other countries where our service providers operate.
• Data protection laws in these countries may differ from those in your country of residence.
• By using our services, you consent to the transfer of your information to the United States and other countries as described in this policy.

For users in the European Union or European Economic Area, we implement appropriate safeguards for international data transfers, including standard contractual clauses when necessary.

13. Jurisdiction and Applicable Law

This Privacy Policy is governed by the laws of the Commonwealth of Puerto Rico, United States, without giving effect to any principles of conflict of laws. Any dispute related to this policy shall be subject to the exclusive jurisdiction of the courts of Puerto Rico.

14. Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience, analyze the use of our services and personalize content. For detailed information about our use of cookies, including the types of cookies we use and how to manage them, please see our Cookie Policy.

15. Third-Party Links

Our services may contain links to third-party websites, services or applications. This Privacy Policy does not apply to such third-party services. We recommend reviewing the privacy policies of any third-party service you visit.

16. Updates to this Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technologies, legal requirements or other factors.

• Significant changes will be notified by email to the address associated with your account and/or through a prominent notice on our services.
• The "Last updated" date at the top of this policy indicates when the most recent revision was made.
• We recommend reviewing this policy periodically to stay informed about how we protect your information.

Continued use of our services after the publication of changes constitutes your acceptance of such changes.

17. Contact

If you have questions, concerns or requests related to this Privacy Policy or our data practices, you can contact us:

We are committed to responding to your inquiries promptly and working with you to resolve any privacy concerns.