SAFETY ATLAS²⁰²⁶

Privacy Policy

This Policy explains what personal data Safety Atlas collects, why, and your rights. We collect the minimum we need to deliver the product and run the business.

What we collect

• Purchase data: your name, email, company (optional), state preferences, and payment confirmation. Razorpay processes the card / bank data — we never see your full card number.
• License-key state: the license key we mint on purchase, scoped state(s), expiry date, and basic fulfillment logs.
• Email correspondence: if you reply to a fulfilment email or write to [email protected], that conversation is retained for support.
• Outreach intent data: if you submitted the order configuration form, we keep the form payload for 30 days (state choice, notes you wrote) to fulfil the order.
• Website analytics: Cloudflare's first-party analytics (aggregate, no cookies) plus Google Analytics 4 in anonymized-IP mode with Google Signals and ad personalization disabled. See our Cookie Policy for the exact cookies set and how to opt out.

What we DON'T collect

• We don't sell, rent, or share your data with any third party for their marketing.
• We don't run third-party advertising trackers on the site.
• We don't have a Facebook pixel, Google Ads tag, or LinkedIn Insight tag.
• We don't profile site visitors. Email opens are not tracked.

Where the data lives

Order data + license-key state is stored in Cloudflare KV (in the United States and Europe; Cloudflare's standard edge replication). Buyer email + invoice records are kept by Razorpay (India). Payment-card data is not transmitted to or stored by us.

Why we are allowed to process this data

Performance of contract (delivering the product you paid for) and our legitimate interest in running and supporting the business. For California buyers, the legal basis is consent at purchase.

How long we keep it

• Order records: 7 years (tax retention).
• License key state: until 60 days past expiry, then deleted.
• Form intent payloads: 30 days.
• Email correspondence: 24 months.

Your rights

You can request, at any time, by emailing [email protected]:

• A copy of what we hold about you.
• Correction of inaccurate data.
• Deletion of your data (subject to tax retention).
• Opt-out of any non-transactional email (we will honor within 1 business day).

California residents (CCPA / CPRA): the "Do Not Sell or Share My Personal Information" right applies. We do not sell or share for cross-context behavioral advertising; the same email above is your contact point.

EU residents (GDPR): we do not target the EU and do not process EU residents' data for marketing. If you are EU-based and end up here anyway, contact us to delete on request.

Cold-outreach lists

If we contact you cold via email or LinkedIn DM, we sourced your name and role from a publicly available source (a conference speaker page, public newsroom masthead, public board roster, or similar). Every cold message includes one-click unsubscribe and our physical mailing address. Replying STOP or UNSUBSCRIBE removes you instantly.

Children

Safety Atlas is a B2B product; we do not knowingly process data of children under 16.

Security

Data in transit is TLS-encrypted. At rest, Cloudflare KV and Razorpay use AES-256. Access to the operator-side account is single-person, MFA-enabled.

Changes

Material changes will be announced via email to active customers. The "Effective" date at the top will be updated.

Contact

Operator: Amit Behere · [email protected]