Privacy Policy

1. Introduction

VORTEXAI LIMITED ("we," "us," or "our"), incorporated and operating from Glenealy Tower, No.1 Glenealy, Central, Hong Kong S.A.R., is committed to protecting your personal data and privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, services, and website.

By accessing or using our services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with any part of this policy, please discontinue use of our services.

2. Information We Collect

2.1 Information You Provide Directly

• Account registration information: name, email address, company name, job title, phone number
• Billing and payment information (processed securely by our payment processors)
• Communications you send to us via contact forms, email, or support channels
• Content you upload or input into our platform

2.2 Information Collected Automatically

• Log data: IP address, browser type, pages visited, time and date of visits
• Device information: hardware model, operating system, unique device identifiers
• Usage data: features used, actions taken, and performance metrics
• Cookies and similar tracking technologies (see Section 7 for details)

2.3 Information from Third Parties

We may receive information about you from third-party services you connect to our platform, including CRM systems, messaging platforms (WhatsApp, RCS carriers), and analytics tools.

3. How We Use Your Information

We use the information we collect for the following purposes:

• To provide, maintain, and improve our services
• To process transactions and send related information, including confirmations and invoices
• To send technical notices, updates, security alerts, and administrative messages
• To respond to your comments, questions, and customer service requests
• To send marketing communications (where permitted by law and with your consent)
• To monitor and analyze usage trends and service performance
• To detect, prevent, and address technical issues or fraudulent activity
• To comply with legal obligations and enforce our agreements

4. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your data in the following limited circumstances:

• Service providers: Third-party vendors who assist in operating our platform (e.g., cloud hosting, payment processors, analytics)
• Business transfers: In connection with a merger, acquisition, or sale of assets
• Legal requirements: When required by law or to protect our legal rights
• With your consent: For any other purpose with your explicit consent

5. Data Security

We implement industry-standard security measures to protect your personal data, including:

• SSL/TLS encryption for all data in transit
• AES-256 encryption for data at rest
• Access controls and role-based permissions
• Regular security audits and penetration testing
• ISO 27001 certified information security management

While we use commercially reasonable measures to protect your information, no method of electronic storage or transmission is 100% secure, and we cannot guarantee absolute security.

6. Data Retention

We retain personal data for as long as necessary to provide our services and fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law. When data is no longer needed, we securely delete or anonymize it in accordance with our data retention schedule.

7. Cookies

We use cookies and similar tracking technologies to enhance your experience. Cookies we use include:

• Essential cookies: Required for the platform to function
• Analytics cookies: Help us understand how you use our services (e.g., Google Analytics)
• Preference cookies: Remember your settings and preferences
• Marketing cookies: Used to deliver relevant advertisements (with your consent)

You can control cookies through your browser settings. Disabling certain cookies may affect functionality.

8. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Rectification: Request correction of inaccurate or incomplete data
• Erasure: Request deletion of your personal data ("right to be forgotten")
• Portability: Request transfer of your data in a machine-readable format
• Objection: Object to processing of your personal data
• Restriction: Request restriction of processing in certain circumstances

To exercise your rights, please contact us at privacy@vortexai.one. We will respond within 30 days.

9. International Data Transfers

VORTEXAI LIMITED operates globally. Your data may be transferred to, stored, and processed in countries outside of Hong Kong. We ensure appropriate safeguards are in place for all international transfers, including standard contractual clauses and adequacy decisions where applicable.

10. Compliance

Our privacy practices comply with applicable laws including the Hong Kong Personal Data (Privacy) Ordinance (PDPO), the EU General Data Protection Regulation (GDPR), and other applicable regional data protection laws.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or a prominent notice on our website. Your continued use of our services after changes become effective constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact our Data Protection Officer: