Privacy Policy

Last Updated: May 10, 2026

This Privacy Policy describes how Constructs Inc. (“Constructs,” “Company,” “we,” “us,” or “our”), a United States-based artificial intelligence software company, collects, uses, discloses, retains, and protects information in connection with our websites, applications, APIs, software-as-a-service products, artificial intelligence features, models, documentation, communications, events, and related services (collectively, the “Services”).

This Privacy Policy is intended for general commercial website and AI software use in the United States. If you use the Services on behalf of an organization, that organization may have a separate agreement with Constructs that governs our processing of its data.

1. Definitions

“Account” means an account created by or for a user to access the Services.

“AI Features” means any features, functions, models, systems, workflows, agents, automations, analytics, recommendations, classifications, predictions, content generation, or other machine-learning or artificial-intelligence functionality made available through the Services.

“Customer Data” means data, content, prompts, files, text, images, code, datasets, records, business information, or other materials submitted to the Services by or on behalf of a customer or authorized user, including Inputs and Outputs.

“Input” means any prompt, instruction, file, data, text, image, audio, code, query, or other information submitted to an AI Feature.

“Output” means any text, image, code, analysis, recommendation, classification, response, result, or other content generated, returned, or made available by an AI Feature.

“Personal Information” or “Personal Data” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked with an identifiable person or household, as defined under applicable privacy laws.

“Process,” “Processing,” or “Processed” means any operation performed on information, including collection, use, storage, disclosure, transfer, analysis, deletion, or modification.

“Sensitive Personal Information” means Personal Information that applicable law treats as sensitive, which may include precise geolocation, government identifiers, account credentials, financial account information, health information, biometric information, contents of private communications, information about children, or information revealing race, ethnicity, religion, union membership, sex life, sexual orientation, citizenship, or immigration status.

2. Scope

This Privacy Policy applies to Personal Information that we collect when you access or use the Services, visit our websites, create an Account, communicate with us, attend events, request support, interact with AI Features, or otherwise engage with Constructs.

This Privacy Policy does not apply to:

• (a) information processed under a separate written data processing agreement, business associate agreement, enterprise services agreement, or similar contract to the extent that agreement expressly supersedes this Privacy Policy;
• (b) third-party websites, applications, models, platforms, integrations, or services that we do not control;
• (c) employment-related information about our employees, contractors, or job applicants where a separate notice applies; or
• (d) information that has been de-identified or aggregated so that it cannot reasonably be used to identify a person, except where applicable law restricts re-identification.

3. Information We Collect

3.1 Information You Provide to Us

We may collect the following categories of information that you provide directly:

• (a) Account and profile information, such as name, email address, username, password or authentication credentials, organization name, role, team, billing contact, and preferences.
• (b) Contact and communications information, such as messages, support tickets, chat communications, survey responses, meeting information, event registrations, and feedback.
• (c) Commercial and billing information, such as plan type, subscription status, transaction records, payment method metadata, purchase history, invoice details, tax information, and related business records. Payment card data may be processed by third-party payment processors and not stored directly by us.
• (d) Customer Data, Inputs, and Outputs, including prompts, uploaded files, text, code, business records, datasets, configurations, workflow instructions, and materials generated or returned by the Services.
• (e) Verification and compliance information, such as information needed to verify identity, administer security, comply with export control requirements, prevent fraud, or respond to legal requests.
• (f) Optional information, such as marketing preferences, community profile information, testimonials, case studies, or other information you elect to provide.

3.2 Information Collected Automatically

When you use the Services, we may automatically collect:

• (a) Device and technical information, such as IP address, device identifiers, browser type, operating system, device type, language, referring URLs, pages viewed, and access times.
• (b) Usage information, such as features used, pages visited, buttons clicked, search queries, model or API usage, token or compute usage, session duration, workflow activity, error logs, performance metrics, and diagnostic data.
• (c) Cookies and similar technologies, such as cookies, pixels, local storage, SDKs, and analytics technologies used to operate the Services, maintain security, remember preferences, measure performance, and, where enabled, support advertising or marketing.
• (d) Approximate location information, such as location inferred from IP address. We do not intentionally collect precise geolocation unless a feature clearly requests it and you permit it.

3.3 Information from Third Parties

We may collect information from:

• (a) customers, administrators, team members, and authorized users;
• (b) identity providers and single sign-on providers;
• (c) payment processors, fraud prevention providers, and compliance vendors;
• (d) analytics, marketing, and attribution providers;
• (e) business partners, resellers, and integration partners;
• (f) public sources, such as company websites, professional profiles, and public datasets; and
• (g) third-party services that you connect to or authorize for use with the Services.

4. AI-Specific Data Practices

4.1 Inputs and Outputs

AI Features may process Inputs and generate Outputs. Inputs and Outputs may contain Personal Information depending on what you submit or configure. You are responsible for ensuring that you have the rights and permissions necessary to submit Inputs and Customer Data to the Services.

4.2 Model Improvement and Service Improvement

Unless prohibited by a separate written agreement, product setting, or applicable law, we may use information processed through the Services to operate, maintain, secure, debug, analyze, and improve the Services, including AI Features. For enterprise customers, our use of Customer Data for model training or model improvement may be governed by the applicable order form, data processing agreement, product documentation, or administrative settings.

Where we offer a setting to opt in or opt out of model training or improvement, we will honor that setting in accordance with the applicable documentation. We do not use Customer Data to train third-party foundation models except as disclosed in our product documentation, authorized by the customer, required to provide the Services, or permitted under a written agreement.

4.3 Human Review

We may conduct human review of Inputs, Outputs, logs, and related information when reasonably necessary to provide support, investigate abuse, improve safety, enforce our terms, comply with law, troubleshoot errors, or with your consent. We seek to limit human access to Customer Data to personnel and service providers with a need to know.

4.4 Automated Decisions

Unless we specifically disclose otherwise, the Services are not intended to make decisions that produce legal or similarly significant effects about individuals without appropriate human review. You are responsible for evaluating Outputs before relying on them in employment, credit, housing, education, healthcare, insurance, criminal justice, or other high-impact contexts.

4.5 Sensitive Data and Regulated Data

Do not submit Sensitive Personal Information, protected health information, payment card information, government identifiers, children's data, biometric identifiers, or other regulated data to the Services unless your agreement with us expressly permits such data and appropriate safeguards are in place.

5. How We Use Information

We may use information for the following purposes:

• (a) to provide, operate, maintain, and improve the Services;
• (b) to create, authenticate, administer, and secure Accounts;
• (c) to process transactions, subscriptions, invoices, renewals, and payments;
• (d) to provide AI Features, generate Outputs, and process Inputs;
• (e) to personalize user experience and remember preferences;
• (f) to provide customer support, respond to inquiries, and troubleshoot issues;
• (g) to monitor performance, availability, usage, and reliability;
• (h) to develop new products, features, models, analytics, and services;
• (i) to detect, prevent, and respond to fraud, abuse, security incidents, illegal activity, violations of our terms, and technical issues;
• (j) to send administrative, transactional, legal, security, and service-related communications;
• (k) to send marketing communications, newsletters, product updates, and event invitations where permitted by law;
• (l) to conduct research, analytics, benchmarking, and aggregated reporting;
• (m) to comply with legal obligations, enforce agreements, and protect rights, safety, and property; and
• (n) for any other purpose disclosed at the time of collection or with your consent.

6. How We Disclose Information

We may disclose information as described below:

6.1 Service Providers and Contractors

We may disclose information to vendors, processors, contractors, and service providers that perform services on our behalf, such as hosting, cloud infrastructure, AI infrastructure, data storage, security, analytics, payment processing, customer support, email delivery, identity management, and professional services.

6.2 Affiliates

We may disclose information to our corporate affiliates, subsidiaries, and related entities for purposes consistent with this Privacy Policy.

6.3 Customers and Account Administrators

If you use the Services through an organization, we may disclose information about your Account and use of the Services to that organization, its administrators, and other authorized users, subject to the applicable agreement and settings.

6.4 Integrations and Third-Party Services

If you connect, enable, or use a third-party integration, we may disclose information to that third party as necessary to provide the integration. Your use of third-party integrations is subject to the third party's terms and privacy practices.

6.5 Business Transfers

We may disclose or transfer information in connection with an actual or proposed merger, acquisition, financing, reorganization, bankruptcy, receivership, sale of assets, or transition of service to another provider.

6.6 Legal, Safety, and Enforcement

We may disclose information where we believe disclosure is reasonably necessary to comply with law, legal process, governmental request, court order, subpoena, or regulatory obligation; enforce our agreements; protect the rights, property, or safety of Constructs, users, customers, or others; detect or prevent fraud, abuse, or security incidents; or establish, exercise, or defend legal claims.

6.7 Professional Advisors

We may disclose information to attorneys, auditors, insurers, accountants, banks, and other professional advisors.

6.8 Consent and Direction

We may disclose information with your consent or at your direction.

7. Cookies, Analytics, and Advertising

We may use cookies and similar technologies to operate the Services, secure sessions, remember preferences, analyze usage, improve performance, and support marketing. You can control cookies through your browser settings. Some features may not function properly if cookies are disabled.

If we use cookies or similar technologies for targeted advertising, cross-context behavioral advertising, or “sharing” under applicable state privacy laws, we will provide any legally required notices and opt-out mechanisms. You may also be able to use browser-based opt-out preference signals where required by law.

8. Data Retention

We retain information for as long as reasonably necessary to provide the Services, fulfill the purposes described in this Privacy Policy, comply with legal obligations, resolve disputes, enforce agreements, maintain security, prevent fraud or abuse, and maintain business records.

Retention periods may vary depending on the nature of the information, account settings, customer instructions, contractual obligations, legal requirements, security needs, and technical constraints. Where feasible, we delete, de-identify, or aggregate information when it is no longer needed.

9. Security

We implement administrative, technical, and organizational safeguards designed to protect information from unauthorized access, disclosure, alteration, and destruction. These safeguards may include access controls, encryption, logging, monitoring, vulnerability management, vendor diligence, and personnel policies.

No method of transmission or storage is completely secure. We cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your credentials, using strong passwords, managing authorized users, and promptly notifying us of suspected unauthorized access.

10. International Data Transfers

Constructs is based in the United States. If you access the Services from outside the United States, your information may be processed in the United States and other jurisdictions that may not provide the same level of data protection as your jurisdiction. Where required by applicable law, we use appropriate safeguards for international transfers.

11. Your Privacy Choices

Depending on your location and applicable law, you may have rights to:

• (a) access or confirm whether we process your Personal Information;
• (b) obtain a copy of your Personal Information;
• (c) correct inaccurate Personal Information;
• (d) delete Personal Information;
• (e) restrict or object to certain processing;
• (f) opt out of certain sales, sharing, targeted advertising, profiling, or automated decision-making;
• (g) limit the use or disclosure of Sensitive Personal Information;
• (h) withdraw consent where processing is based on consent; and
• (i) appeal a refusal to act on a rights request.

You may exercise available rights by contacting us at legal@constructshq.com or through any privacy request mechanism provided in the Services. We may verify your request by asking for information sufficient to confirm your identity and authority.

12. U.S. State Privacy Notice

Certain U.S. state privacy laws, including California privacy law, may provide residents with specific rights and disclosures. The following notice supplements the rest of this Privacy Policy.

12.1 Categories of Personal Information Collected

In the preceding 12 months, we may have collected the following categories of Personal Information:

• (a) identifiers, such as name, email address, IP address, account ID, and device identifiers;
• (b) customer records information, such as billing contact details and transaction information;
• (c) commercial information, such as subscription plan, purchase history, and product usage;
• (d) internet or electronic network activity information, such as log data, usage data, and analytics;
• (e) approximate geolocation information inferred from IP address;
• (f) professional or employment-related information, such as company name, title, and business contact details;
• (g) audio, electronic, visual, or similar information if you submit it to the Services or participate in recorded communications;
• (h) inferences, such as preferences, usage patterns, or product interests; and
• (i) Sensitive Personal Information, only where submitted by you, required for security, or otherwise permitted by law.

12.2 Sources

We collect Personal Information from you, your organization, your device, service providers, business partners, integrations, public sources, and other third parties described in this Privacy Policy.

12.3 Purposes

We collect, use, and disclose Personal Information for the business and commercial purposes described in Sections 5 and 6.

12.4 Disclosure for Business Purposes

We may disclose the categories listed above to service providers, contractors, affiliates, customers, administrators, integrations, professional advisors, and other parties described in Section 6.

12.5 Sale or Sharing

We do not sell Personal Information for money. Constructs does not sell Personal Information for money and does not share Personal Information for cross-context behavioral advertising or targeted advertising. If our practices change, we will update this Privacy Policy and provide any legally required opt-out mechanism.

12.6 Sensitive Personal Information

We do not use or disclose Sensitive Personal Information for purposes that require a right to limit under California law unless we provide the required notice and choice. Constructs does not intentionally collect or use Sensitive Personal Information except where you submit it to the Services, where it is necessary for security, fraud prevention, account protection, legal compliance, or where otherwise permitted by applicable law.

12.7 Non-Discrimination

We will not unlawfully discriminate against you for exercising privacy rights.

12.8 Appeals

If we deny a privacy request and applicable law provides an appeal right, you may appeal by contacting legal@constructshq.com with the subject line “Privacy Appeal.”

13. GDPR/UK GDPR Notice, If Applicable

If the GDPR, UK GDPR, or similar law applies to our processing of your Personal Data, the following terms apply.

13.1 Controller and Processor Roles

For Personal Data that we process for our own business purposes, Constructs Inc. is the controller. For Customer Data that we process on behalf of an enterprise customer under a written agreement, we may act as processor or service provider, and the customer may be the controller or business.

13.2 Legal Bases

We may process Personal Data based on:

• (a) performance of a contract;
• (b) legitimate interests, such as securing and improving the Services, preventing abuse, supporting customers, and marketing to business contacts;
• (c) consent, where required;
• (d) compliance with legal obligations; and
• (e) protection of vital interests or public interests where applicable.

13.3 Rights

You may have rights to access, rectify, erase, restrict, object, port, and withdraw consent. You may also lodge a complaint with a supervisory authority.

13.4 Representative and Data Protection Contact

Constructs is based in the United States and does not specifically target individuals in the European Union or United Kingdom. Constructs has not appointed an EU or UK representative or data protection officer. If we become legally required to do so, we will update this Privacy Policy with the applicable contact information.

14. Children's Privacy

The Services are not directed to children under 13, and we do not knowingly collect Personal Information from children under 13. If you believe a child has provided Personal Information to us, contact us at legal@constructshq.com, and we will take appropriate steps to delete such information.

15. Marketing Communications

You may opt out of marketing emails by using the unsubscribe link in the email or contacting us. Even if you opt out of marketing communications, we may still send transactional, administrative, security, or legal communications.

16. Third-Party Links and Services

The Services may include links to third-party websites, services, models, APIs, or integrations. We are not responsible for the privacy practices of third parties. You should review their privacy policies before using them.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by a revised “Last Updated” date. If changes are material, we may provide additional notice as required by law. Your continued use of the Services after an update means you acknowledge the updated Privacy Policy.

18. Contact Us

Constructs Inc.
Sunnyvale, California 94085
United States

We currently operate without a public commercial street address. Legal and privacy notices should be sent by email unless a physical mailing address is required by law.

Email: legal@constructshq.com

For privacy rights requests, please contact: legal@constructshq.com.