Privacy Policy

How We Handle Your Data

Welcome to Senseminder. This Privacy Policy explains how Senseminder LLC ("Senseminder", "we", "our", or "us") collects, uses, shares, and protects your personal information when you interact with our services including Sense PC (virtual desktop computing) and Sense Cloud (cloud-based file storage).

Senseminder LLC is a U.S.-based company registered in the State of Georgia. All data handling practices comply with applicable federal and state privacy laws including GDPR, CCPA/CPRA, Virginia CDPA, Colorado CPA, Connecticut CTDPA, and other applicable regulations.

By using our Services, you agree to this Privacy Policy. If you do not agree, please refrain from using our Services.

2. Personal Information We Collect

We collect various categories of personal information to deliver and improve our services.

2.1 Information You Provide Directly

• Full name, email address, phone number
• Payment and billing information
• Organization name (if applicable)
• Profile image (optional)
• Support communications and inquiries

2.2 Information Collected Automatically

• IP address and geolocation data
• Device type, operating system, browser type
• Activity logs (login timestamps, resource usage)
• Clickstream data (navigation paths, session duration)
• Connection status and service interactions

2.3 Information From Third Parties

• Authentication providers (Google, Microsoft, Discord)
• Payment processors (e.g., Stripe)
• Referral programs or marketing affiliates

2.4 Usage & Preferences Information

• System configurations (CPU, RAM, storage selections)
• Sense PC runtime history and uptime data
• File upload/download behavior
• Support interaction history

3. How We Use Your Information

Senseminder collects and uses your personal information for a variety of business, legal, and operational purposes, all aligned with our mission to provide secure and reliable Sense PC and Sense Cloud services. Specifically, we use the information collected:

3.1 To Provide and Maintain services

• Authenticate users and manage access
• Deliver Sense PC and Sense Cloud functionality
• Process billing and subscriptions
• Provide technical support
• Send system alerts and billing notices

3.2 To Improve User Experience

• Enhance system stability and security
• Identify and fix technical issues
• Optimize performance and features
• Conduct quality and satisfaction analysis

3.3 For Communications (With Consent)

• Send product updates and feature announcements
• Deliver promotional offers and usage tips
• Request feedback or survey participation
• Note: You can opt out anytime via email or account settings

3.4 For Legal and Security Purposes

• Enforce Terms of Service and policies
• Detect and prevent fraud and abuse
• Maintain audit trails and investigate violations
• Respond to legal requests and obligations

4. How We Share Your Information

We do NOT sell your personal information. We only share data as necessary to deliver services, comply with law, or protect our platform.

4.1 With Service Providers

• Cloud infrastructure (AWS - EC2, S3)
• Payment processors (Stripe)
• Customer support systems
• Security and monitoring providers
• All providers are contractually bound to protect your data

4.2 For Legal Compliance

• To comply with laws, subpoenas, court orders
• To investigate fraud or Terms violations
• To protect rights, safety, or property of Senseminder and users

4.3 Business Transfers

In mergers, acquisitions, or asset sales, user information may be transferred. We will notify you and ensure the receiving party maintains equivalent privacy protections.

4.4 With Your Consent

We may share data for purposes you explicitly authorize (e.g., third-party app integrations).

5. Third-Party Service Providers and Subprocessors

We share personal information only with trusted providers contractually bound to protect your data.

5.1 Current Subprocessors

5.2 Subprocessor Change Notification

• We notify customers of subprocessor changes:
• Via email to registered address
• Posted at: https://sensepc.com/subprocessors
• At least 30 days advance notice for new subprocessors

Enterprise customers may object to new subprocessors on reasonable data protection grounds by contacting contact@sensepc.com within 30 days.

6. Data Retention

We retain personal information only as long as necessary to fulfill purposes in this Policy, unless longer retention is required by law.

6.1 Specific Retention Periods

6.2 Deletion Procedures

• After retention periods, we permanently delete data using secure methods preventing recovery.

6.3 Legal Exceptions

• We may retain data beyond the stated periods when required for:
  • Legal obligations (litigation holds, government investigations)
  • Dispute resolution or enforcing our Terms
  • Fraud prevention or security purposes

6.4 User-Initiated Deletion

• Users may request early deletion by contacting contact@sensepc.com, subject to legal retention obligations.

7. Data Breach Notification

7.1 Our Commitment

In the event of a data breach affecting your personal information:

• Step 1: Internal Assessment (0–24 hours)
  • Contain and assess breach scope
  • Determine affected users and data types
  • Document incident details
• Step 2: User Notification (Within 72 hours)
  • Notify affected users via email
  • Describe the nature of the breach, data affected, and potential consequences
  • Explain measures taken and recommended user actions
  • Offer identity protection services if appropriate
• Step 3: Regulatory Notification
  • Report to supervisory authorities as required
  • For USA users: Notify per applicable state breach notification laws (Cal. Civ. Code § 1798.82 and similar statutes in all 50 states) and federal requirements.
  • For EU users: Notify within 72 hours per GDPR Art. 33.

7.2 What Constitutes a Breach

A “data breach” means unauthorized access, disclosure, or acquisition of personal information that compromises security, confidentiality, or integrity.

7.3 Non-Reportable Incidents

• Unsuccessful access attempts (blocked attacks)
• Encrypted data incidents where keys are not compromised
• Incidents where affected data was already public

Contact for Breach Inquiries: contact@sensepc.com | 24/7 Incident Response

8. Your Rights & Choices

Depending on your location and applicable law (GDPR, USA state privacy laws), you may have the following rights:

8.1 Right to Access

• Request a copy of personal data we hold about you

8.2 Right to Rectification

• Request correction of inaccurate or incomplete data

8.3 Right to Deletion (Right to Be Forgotten)

• Request deletion of your personal information (subject to legal exceptions)

8.4 Right to Restrict or Object to Processing

• Request to pause or restrict data use, or object to specific processing

8.5 Right to Data Portability

• Receive your data in structured, machine-readable format or have it transmitted to another provider

8.6 How to Exercise Your Rights

• Email: contact@sensepc.com
• Provide: Your name, email, account ID, and specify which right you wish to exercise
• Response time: Within 30 days (may extend to 45 days for complex requests)

8.7 Identity Verification

• For Account Holders: Email from registered address OR login via dashboard OR use MFA
• For Non-Account Holders: Provide name, email, approximate interaction date

8.8 Data Portability Details

• Portable data: Account profile, user content, Sense Cloud files, usage history, settings
• Formats: JSON, CSV, ZIP archive
• Processing time: <1GB within 48 hours; larger datasets within 10 business days

9. USA Privacy Rights (State Privacy Laws)

This section applies to USA residents under applicable state privacy laws including California CCPA/CPRA, Virginia Consumer Data Protection Act (CDPA), Colorado Privacy Act (CPA), Connecticut Data Privacy Act (CTDPA), Utah Consumer Privacy Act (UCPA), and other state privacy statutes.

9.1 Information We Collect (Last 12 Months)

9.2 Your USA Privacy Rights

• Right to Know — Request disclosure of personal information collected, used, or shared
• Right to Delete — Request deletion of personal information (subject to exceptions)
• Right to Correct — Request correction of inaccurate personal information
• Right to Opt-Out — We do NOT sell personal information
• Right to Non-Discrimination — No discrimination for exercising privacy rights
• Right to Limit Use of Sensitive Personal Information (where applicable)

9.3 How to Exercise Your Rights

• Email: contact@sensepc.com
• Subject Line: "USA Privacy Rights Request"
• Include: Full name, email address, account ID (if applicable), state of residence
• Response Time: Within 45 days (may extend to 90 days with notice)

9.4 Do Not Sell My Personal Information

We do NOT sell personal information as defined by CCPA and other state privacy laws. We have not sold personal information in the preceding 12 months.

9.5 Authorized Agent Requests

• If submitting a request through an authorized agent, the agent must provide:
  • Written authorization signed by you
  • Proof of their identity
  • Verification that they are registered with appropriate state authority (if required)

11. Data Security

We implement industry-standard security measures to protect your personal information from unauthorized access, misuse, disclosure, alteration, or destruction.

11.1 Security Measures

• Encryption: HTTPS (TLS) for data in transit; AWS KMS for sensitive data at rest
• Access Controls: Role-based access controls (RBAC)
• Secure Infrastructure: AWS security best practices, network isolation, and firewalls
• Monitoring: Automated alerts for suspicious activity
• Regular Assessments: Penetration tests and compliance audits

11.2 Your Role in Security

• Use strong, unique passwords
• Enable multi-factor authentication (MFA)
• Keep login credentials confidential
• Log out of shared or public devices

Suspected unauthorized access? Contact contact@sensepc.com immediately.

11.3 Limitation of Liability

While we take reasonable security steps, no system is completely immune to breaches. We do not accept liability for unauthorized access beyond our reasonable control, particularly if caused by user negligence or third-party misuse.

13. Cookies & Tracking Technologies

Senseminder does not use cookies or similar tracking technologies for behavioral advertising or analytics. We are committed to a privacy-focused experience.

While we may use limited local device storage (e.g., session memory for UI preferences), no persistent identifiers or cross-site tracking mechanisms are utilized.

If third-party services are integrated in the future (e.g., analytics), we will update this policy and provide opt-in consent options.

10. Children's Privacy

Senseminder does not knowingly collect information from individuals under 16. Our services are intended for users 16 years or older.

10.1 Age Restriction

• If you are under 16, do not register for an account, use our services, or submit personal information.

10.2 Parental Consent Requirement

• If under 16, you may ONLY use services if:
  • A parent/guardian creates and controls the account
  • Parent/guardian agrees to terms on your behalf
  • Parent/guardian supervises your use

10.3 Age Verification

• During registration, users must certify they are 16+. We reserve the right to:
  • Request additional age verification
  • Terminate accounts of suspected underage users

10.4 Discovery of Underage Users

• If we discover collection from a child under 16 without consent:
  • We promptly delete information within 30 days
  • We terminate the associated account
  • We notify the registered email address

10.5 Parental Rights

• Parents/guardians may:
  • Review their child's information
  • Request deletion of their child's information
  • Refuse further collection or use of their child's information

To Exercise Parental Rights: contact@sensepc.com

Senseminder LLC, Attn: Privacy - Children's Inquiries, Atlanta, Georgia, USA

Provide: Proof of parental relationship, child's account info, government ID for verification

12. International Transfers

Senseminder LLC is headquartered in the USA and uses cloud infrastructure (AWS) that may process or store data in various global locations.

12.1 Global Infrastructure

To provide high availability, we may store and process data in the USA or other countries where our infrastructure operates, which may involve cross-border transfers.

12.2 Data Protection Safeguards

• For international transfers, particularly from EEA/UK, we implement:
  • Standard Contractual Clauses (SCCs) approved by regulators
  • Data Processing Agreements with vendors
  • Security controls per industry best practices

12.3 EU-US Data Privacy Framework

Senseminder LLC complies with the EU-US Data Privacy Framework (DPF), UK Extension to EU-US DPF, and Swiss-US DPF as set forth by the U.S. Department of Commerce.

12.4 User Acknowledgement

By using our services, you acknowledge and agree to processing and transfer of your data outside your jurisdiction as necessary to deliver the Senseminder platform.

Questions about international transfers? Contact contact@sensepc.com

14. Notice to European Users (GDPR/UK)

If you are in the European Economic Area (EEA) or United Kingdom (UK), the following outlines your data rights under GDPR and UK GDPR.

14.1 Data Controller

• Senseminder LLC
• Registered in: Georgia, USA
• Email: contact@sensepc.com

14.2 Legal Bases for Processing

• Contractual necessity – to provide services and fulfill agreements
• Legitimate interests – to improve services, ensure security, prevent fraud
• Consent – for marketing, cookies, optional features
• Legal obligation – to comply with laws and legal requests

14.3 Your GDPR Rights

• Access – Obtain confirmation and a copy of your data
• Rectification – Correct inaccuracies or incomplete data
• Erasure – Request deletion (right to be forgotten)
• Restriction – Ask us to restrict processing in specific scenarios
• Portability – Receive data in machine-readable format
• Objection – Object to processing based on legitimate interest or for direct marketing
• Withdraw Consent – Withdraw consent at any time where processing is based on consent

To exercise GDPR rights, contact contact@sensepc.com (response within 30 days).

14.4 Complaints

If you believe we have not handled your data appropriately, you have the right to lodge a complaint with your local supervisory authority.

Find contact details at: https://edpb.europa.eu/about-edpb/board/members_en

15. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in practices, technology, legal requirements, or other factors.

• When we make changes:
  • Update the “Last Updated” date at the top of this document
  • Notify you via email or a platform notice for material changes
  • Provide at least 30 days’ notice before material changes take effect

Your continued use after changes become effective constitutes acceptance of the updated Privacy Policy. If you disagree, you may close your account.

We encourage periodic review of this Privacy Policy to stay informed about data protection.

16. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Senseminder LLC
• General Privacy: contact@sensepc.com
• Security Issues: contact@sensepc.com
• Legal Inquiries: contact@sensepc.com
• Mailing Address: Senseminder LLC, Attn: Privacy Officer, 1372 Peachtree, Atlanta, GA 30309, USA

Additional Notes

• For USA residents: Exercise your state privacy law rights using the contact information above with “USA Privacy Rights Request” in the subject line.
• For European residents: Contact your local Data Protection Authority if you have concerns about our data handling practices.