Privacy Policy

Welcome to Cultural Analysis ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Communication Intelligence Platform and related services.

By accessing or using our services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our policies and practices, please do not use our services.

We collect information in several ways to provide and improve our services:

2.1 Information You Provide Directly

• Account Information: Name, email address, company name, job title, and password when you create an account
• Payment Information: Billing address and payment card details (processed securely by our payment processor)
• Communications: Information you provide when contacting our support team or participating in surveys
• Profile Data: Any additional information you choose to add to your profile

2.2 Information Collected Through Integrations

• Communication Metadata: Timestamps, participant counts, channel/thread identifiers, and response times
• Aggregate Patterns: Communication frequency, collaboration networks, and team interaction metrics
• Sentiment Indicators: Aggregated sentiment analysis derived from communication patterns (not individual message contents)

2.3 Automatically Collected Information

• Device Information: Browser type, operating system, device identifiers
• Usage Data: Pages visited, features used, time spent on the platform
• Log Data: IP address, access times, referring URLs

We use the information we collect for the following purposes:

We do not sell your personal information. We may share your information only in the following circumstances:

4.1 With Your Organization

If you use our services as part of an enterprise account, your organization's administrators may have access to aggregated analytics and reports related to your team's communication patterns.

4.2 Service Providers

We work with trusted third-party service providers who assist us in operating our platform, including:

• Cloud infrastructure providers (data hosting and storage)
• Payment processors (billing and transactions)
• Analytics services (platform usage analysis)
• Customer support tools (help desk and communication)

These providers are bound by strict contractual obligations to protect your data and use it only for specified purposes.

4.3 Legal Requirements

We may disclose information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, government requests).

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and your choices regarding your information.

We implement industry-leading security measures to protect your information:

• Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
• Access Controls: Strict role-based access controls and multi-factor authentication
• Infrastructure: Hosted on SOC 2 Type II certified cloud infrastructure
• Monitoring: 24/7 security monitoring and intrusion detection
• Audits: Regular third-party security assessments and penetration testing
• Compliance: SOC 2 Type II certified, GDPR compliant, and CCPA compliant

While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

• Account Data: Retained for the duration of your account plus 30 days after deletion
• Analytics Data: Aggregated analytics are retained for up to 24 months
• Communication Metadata: Retained according to your organization's configured retention settings (default: 12 months)
• Billing Records: Retained for 7 years as required by financial regulations
• Support Communications: Retained for 3 years

Upon account termination, we will delete or anonymize your personal information within 30 days, except where retention is required by law or for legitimate business purposes.

Depending on your location, you may have the following rights regarding your personal information:

7.1 General Rights

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information
• Portability: Request a portable copy of your data in a structured format
• Objection: Object to certain processing of your information
• Restriction: Request restriction of processing in certain circumstances

7.2 For EU/EEA Residents (GDPR)

If you are located in the European Union or European Economic Area, you have additional rights under the General Data Protection Regulation, including the right to lodge a complaint with your local supervisory authority.

7.3 For California Residents (CCPA/CPRA)

California residents have specific rights under the California Consumer Privacy Act and California Privacy Rights Act, including:

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to opt-out of the sale of personal information
• Right to non-discrimination for exercising privacy rights

To exercise any of these rights, please contact us using the information provided in the Contact Us section below.

We use cookies and similar tracking technologies to enhance your experience on our platform:

8.1 Types of Cookies We Use

• Essential Cookies: Required for the platform to function properly (authentication, security)
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Help us understand how you use our platform
• Marketing Cookies: Used to deliver relevant advertisements (only with your consent)

8.2 Managing Cookies

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our services. For more detailed information about our cookie practices, please see our Cookie Policy.

Cultural Analysis operates globally, and your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws than your country.

When we transfer data internationally, we implement appropriate safeguards to protect your information:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Data Processing Agreements with all service providers
• Certification under recognized frameworks where applicable

Enterprise customers can request data residency in specific regions, including the EU, US, and other supported locations.

Our services are designed for business use and are not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:

• We will update the "Last Updated" date at the top of this policy
• For material changes, we will provide notice through our platform or via email
• We will obtain your consent where required by applicable law

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Email: privacy@culturalanalysis.com
• General Inquiries: hello@culturalanalysis.com
• Data Protection Officer: dpo@culturalanalysis.com

We will respond to your request within 30 days, or sooner where required by applicable law.