Privacy Policy

1. Overview

Alpine DataWorks ("we," "us," or "our") respects your privacy. This policy explains what information we collect when you visit our website or use our API Services, how we use it, and your rights with respect to it. It applies to all Alpine DataWorks products during the Phase 1 early-access period and beyond.

2. Information We Collect

2a. Information you provide

When you request API access or fill out the contact form, we collect your name, work email address, company name, and the use-case description you submit. We do not collect payment information directly during Phase 1.

2b. Usage and technical data

Our servers log API requests including endpoint called, timestamp, response latency, and HTTP status code. We do not log the content of API responses beyond what is necessary for debugging and billing. Website visits may generate standard server logs (IP address, user-agent, referring URL) retained for up to 90 days.

2c. Cookies

We use a single functional cookie to remember your light/dark theme preference. We do not use third-party advertising cookies or cross-site tracking cookies.

3. How We Use Your Information

• To provision and maintain your API access.
• To respond to support requests and legal inquiries.
• To monitor service health, detect abuse, and enforce the Acceptable Use Policy.
• To send product updates, only to users who have requested access. You may unsubscribe at any time.

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

4. Data Sharing

We may share information with subprocessors who assist us in operating the Services (hosting, email delivery, analytics). Each subprocessor is bound by a data-processing agreement with at least equivalent protections. We may also disclose information when required by law, regulation, or valid legal process.

5. Data Retention

We retain account information for as long as your access is active, plus 12 months after termination to resolve disputes and comply with legal obligations. Server logs are purged on a rolling 90-day cycle. You may request deletion of your personal data at any time; see Section 7.

6. Security

We use TLS for all data in transit, and API keys are hashed at rest. Access to production systems is restricted to named personnel and requires multi-factor authentication. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security.

7. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, port, or delete the personal information we hold about you. To exercise any of these rights, contact us at the address below. We will respond within 30 days.

8. Children's Privacy

The Services are not directed at individuals under 18. We do not knowingly collect personal information from minors. If we learn that we have done so, we will delete it promptly.

9. Changes to This Policy

We may update this policy as the Services evolve. We will post the revised policy on this page and update the "Last updated" date. For material changes, we will notify active API users by email.