Privacy Policy

Information you give us directly:

• Email address, when you join the waitlist, create an account, or contact us.
• Account information you choose to provide: name, handle, profile details, payment information when payments are enabled.
• Files you upload to create Asset Passports: images, audio, video, text, design files, and any metadata you attach.
• Messages you send us, including support requests and license inquiries.

Information we collect automatically:

• Log data: IP address, browser type, pages visited, timestamps, referring URLs. We use this to operate the service and investigate problems.
• Cookies and similar technologies: session cookies that keep you logged in, and a small number of functional cookies. We do not use advertising cookies or sell data to advertisers.

Information from third parties:

• If you sign in through a third-party identity provider, we receive the information that provider shares with us.
• If you use a payment processor through Tegata, that processor shares transaction information with us. We do not store full payment card numbers.

We use the information we collect to:

• Operate the service: create your account, store your work, generate Passports, run monitoring, route licensing requests.
• Communicate with you: respond to support, send service notifications, send waitlist or product updates you have opted into.
• Improve the service: understand which features are used, identify bugs, measure performance.
• Comply with law: respond to legal requests, enforce our terms, prevent abuse, protect rights.

We do not sell personal information. We do not use your uploaded work to train artificial intelligence models, our own or anyone else's. We do not share your uploaded work with third parties except as described below.

We share information with third-party service providers who help us operate Tegata. Each is bound by a contract requiring them to use the information only to provide their service to us. As of this writing, those providers include:

• Hosting and infrastructure (Railway, Supabase, Cloudflare)
• Email delivery (Resend)
• Authentication and analytics (as configured)
• Monitoring providers you authorize (TinEye and others, when enabled)
• Payment processing (Stripe, when payments are enabled)

We share information with law enforcement or other parties when required by law, when we believe it is necessary to prevent harm, or when you direct us to.

If Tegata is acquired, merged, or reorganized, information may transfer to the successor entity. We will notify you before your information becomes subject to a different privacy policy.

• Account information: while your account is active, and for a reasonable period after closure to handle disputes and comply with law.
• Uploaded work and Passport records: as long as the Passport exists. You can delete a Passport at any time. Some records, including evidence packets and audit logs, are retained longer to preserve the integrity of the authentication record.
• Log data: typically 90 days, longer if needed for security investigation.
• Waitlist email addresses: until you unsubscribe or we launch and you either create an account or decline to.

You can:

• Update your account information at any time.
• Delete your account, which removes your Passports and personal information from active systems. Some records persist in backups and audit logs as described above.
• Unsubscribe from non-essential email at any time using the link in any email or by visiting your email preferences page.
• Contact us at hello@tegata.us with any privacy question or request.

If you are in California, the EU, the UK, or another jurisdiction with specific privacy rights, you have the right to access, correct, delete, or port your personal information, and the right to object to or restrict certain processing. To exercise these rights, email hello@tegata.us. We will respond within the period required by your jurisdiction's law.

We do not knowingly collect information from children under 13. If you believe a child has provided us information, contact hello@tegata.us and we will delete it.

We take reasonable measures to protect the information we hold, including encryption in transit, access controls, and routine security review. No system is perfectly secure. If we discover a breach that affects you, we will notify you as required by applicable law.

Tegata is operated from the United States. If you use Tegata from outside the United States, your information will be transferred to and processed in the United States. By using Tegata you consent to this transfer.

We will update this policy as Tegata grows. The “Last updated” date at the top reflects the most recent change. Material changes will be communicated to account holders by email or in-product notice before they take effect.

hello@tegata.us