Privacy Policy

1. Introduction

Stilts AI Corp. (“Company,” “we,” “us,” or “our”) is committed to protecting the privacy of individuals who use our multi-tenant ERP software-as-a-service platform, web hosting, and related services (collectively, the “Services”). This Privacy Policy explains what personal information we collect, how we use and protect it, and your rights regarding that information. By using the Services, you consent to the practices described herein.

2. Information We Collect

Account Information: Name, email address, company name, job title, phone number, and login credentials provided during registration and account management.

Billing and Payment Information: Payment method details, billing address, and transaction history. Payment processing is handled by third-party payment processors (e.g., Stripe); we do not store full credit card numbers on our servers.

Usage Data: Log files, IP addresses, browser type, device information, pages accessed, feature usage, session duration, and other analytics data collected automatically when you use the Services.

Customer Data: Any data you or your authorized users submit, upload, or generate within the Services in the course of your business operations.

Communications: Information provided when you contact our support team, submit feedback, or correspond with us by email or other channels.

3. How We Use Your Information

We use personal information for the following purposes: (a) to provide, operate, maintain, and improve the Services; (b) to process transactions and send related billing and account notices; (c) to communicate with you, including responding to support requests and sending service-related announcements; (d) to monitor usage patterns and analytics to improve performance, security, and user experience; (e) to detect, prevent, and address fraud, abuse, and technical issues; and (f) to comply with legal obligations and enforce our Terms of Service.

4. Third-Party Service Providers

Payment Processing: We use third-party payment processors (e.g., Stripe) to handle billing and transactions. These processors are PCI-DSS compliant and process payment data according to their own privacy policies.

Email and Communication Tools: We use third-party platforms to deliver transactional emails, support communications, and service notifications.

AI and Machine Learning Services: We use third-party AI/ML providers to power certain features of the Services. Data shared with these providers is limited to what is necessary to deliver the feature and is subject to contractual data protection obligations.

All third-party providers are contractually required to protect personal information and may only use it for the purposes specified by us.

5. Data Storage and Transfer

Personal information and Customer Data are stored on servers located in Canada. We take commercially reasonable steps to ensure that your data is treated securely and in accordance with this Privacy Policy and applicable Canadian privacy legislation, including the Personal Information Protection and Electronic Documents Act (PIPEDA).

6. Data Retention

We retain personal information for as long as your account is active or as needed to provide the Services. Upon account termination, we will retain your data for a period of thirty (30) days to allow for data export, after which it may be permanently deleted. We may retain certain information as required by law, to resolve disputes, or to enforce our agreements.

7. Data Security

We implement commercially reasonable technical and organizational measures to protect personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption in transit and at rest, access controls, regular security assessments, and multi-tenant data isolation. However, no method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security.

8. Your Rights

Under applicable Canadian privacy legislation, you have the right to: (a) access the personal information we hold about you; (b) request correction of inaccurate or incomplete personal information; (c) request deletion of your personal information, subject to legal retention requirements; (d) withdraw consent to the processing of your personal information, subject to contractual and legal restrictions; and (e) file a complaint with the Office of the Privacy Commissioner of Canada if you believe your privacy rights have been violated. To exercise any of these rights, please contact us at support@stilts.ai.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to operate and improve the Services. These include essential cookies required for the Services to function, and analytics cookies that help us understand how the Services are used. You may manage cookie preferences through your browser settings, though disabling certain cookies may affect the functionality of the Services.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. Material changes will be communicated with at least thirty (30) days’ notice via the Services or by email. Continued use of the Services after changes take effect constitutes acceptance of the revised Privacy Policy.

11. Governing Law

This Privacy Policy shall be governed by and construed in accordance with the laws of the Province of New Brunswick and the federal laws of Canada applicable therein.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

Stilts AI Corp.
Email: support@stilts.ai
Website: https://stilts.ai