Privacy Policy

Last Updated: November 14, 2025

1. Introduction

Embercrown ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, process, and safeguard your information when you visit our website or use our services ("Services").

We operate in the United States and Ireland and comply with applicable privacy laws including GDPR.

2. Information We Collect

2.1 Personal Data You Provide

We may collect information that you voluntarily give us, such as your name or email address when you contact us or sign up for updates.

2.2 Usage Data

When you access our Services, we automatically collect:

• IP address
• Browser type and version
• Device information
• Pages viewed
• Time spent on pages
• Referring URLs

This is standard operational data.

2.3 Cookies and Analytics

We use Google Analytics to understand how visitors interact with our website. Analytics may use:

• Cookies
• Device IDs
• Anonymous usage metrics

You can disable cookies in your browser settings at any time.

2.4 No Sensitive Data

We do not request or intentionally collect sensitive personal data (such as health, financial, or biometric data).

3. How We Use Your Information

We use collected information to:

• Provide, operate, and maintain our Services
• Improve performance and user experience
• Analyze usage patterns and functionality
• Communicate with you when necessary
• Prevent fraud or misuse
• Maintain security

We do not use your information for advertising profiling or targeted ads.

4. Legal Bases for Processing (GDPR – EU/EEA/Ireland)

If you are located in the EU or EEA, we process your data under the following legal bases:

• Legitimate Interests: operating and improving our Services
• Consent: when you opt in to cookies or email updates
• Legal Obligation: complying with applicable laws

5. Where Data Is Stored and Processed

We use trusted third-party providers to host and operate parts of our Services. Data may be stored or processed in:

• The United States
• Ireland
• Other regions where our service providers operate

Our primary hosting infrastructure is Firebase (Google Cloud).

6. Sharing Your Information

We do not sell, rent, or trade your personal information. We do not share your information for advertising purposes.

We may share information only with:

• Service providers who help us operate the Services (Firebase, Google Analytics, email systems)
• Legal authorities when required by law
• Successor entities in the event of a merger or acquisition

All partners must follow strict data-protection standards.

7. AI and Automated Processing

At this stage, our website does not store user data for AI processing. If certain features use automated systems in the future, we will update this policy.

We do not use automated decision-making to profile or evaluate users.

8. Data Retention

We currently do not store user data beyond what is required for basic analytics. If you provide personal information (such as email for updates), we retain it only until:

• You ask us to delete it, or
• It is no longer needed for its purpose

Some data may remain temporarily in backups maintained by our hosting providers.

9. Your Rights (GDPR & International Rights)

Depending on your location, you may have the right to:

• Access your personal data
• Correct inaccurate information
• Request deletion ("Right to be Forgotten")
• Restrict or object to processing
• Request a copy of your data ("Data Portability")
• Withdraw consent at any time (for cookies, emails, etc.)

To exercise these rights, contact us at brian@embercrown.ai.

10. Children's Privacy

Our Services are not directed to children under 13. We do not knowingly collect personal data from children. If such data is identified, we will delete it promptly.

11. Third-Party Links

Our website may link to external sites. We are not responsible for their privacy practices. Review their policies before sharing information.

12. Security

We use reasonable technical and organizational measures to protect your information, including encryption and secure hosting. No internet-based service can guarantee absolute security, but we follow industry best practices.

13. Transfers Outside the EU (GDPR)

If data is transferred outside the EU/EEA, we use one or more of the following safeguards:

• Standard Contractual Clauses (SCCs)
• Adequacy decisions
• Secure hosting on GDPR-compliant platforms

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date. Continued use of the Services means you accept the updated policy.

15. Contact Us

For questions about this Privacy Policy or your data rights, contact us at:

Email: brian@embercrown.ai