CAPELLA PRO PRIVACY POLICY

Effective Date: 01 January 2025

Last Updated: 01 January 2025

Company Name: Capella Pro

Jurisdiction: Global Neutral (US-Standard + GDPR + CCPA + DPDP India compliant)

1. INTRODUCTION

This Privacy Policy explains how Capella Pro ("Company," "we," "us," or "our") collects, uses, stores, discloses, and protects personal information when individuals ("Users," "you," or "your") access or use our software platform, website, applications, services, integrations, or any affiliated systems (collectively, the "Services").

By accessing or using Capella Pro, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy.

If you do not agree, you must discontinue use of the Services immediately.

2. DEFINITIONS

  • "Personal Data" means any information relating to an identifiable natural person.
  • "Processing" means any operation performed on Personal Data, whether automated or not.
  • "Controller" means the entity determining the purposes and means of processing (typically the User for uploaded content; Capella Pro for account data).
  • "Processor" means the entity processing data on behalf of the Controller (Capella Pro).
  • "Services" refers to all Capella Pro applications, web apps, API, and integrations.
  • "GDPR" refers to the General Data Protection Regulation applicable to EU/EEA users.
  • "CCPA/CPRA" refers to the California Consumer Privacy Act.
  • "DPDP Act" refers to India's Digital Personal Data Protection Act.

3. INFORMATION WE COLLECT

We collect the following categories of data:

A. Information You Provide Directly

  • Name, email address, phone number
  • Account credentials
  • Profile photo (optional)
  • Payment information (processed securely by third-party providers)
  • Files, notes, documents, tasks, events, client details, financial entries
  • Customer support inquiries

B. Information Collected Automatically

  • Device and browser information
  • IP address
  • Usage statistics and analytics events
  • Cookies and tracking identifiers
  • Error logs, crash logs, performance metrics
  • Geographic region (non-precise)

C. Information from Third-Party Integrations

If you connect external apps (e.g., Google Calendar), we may receive:

  • Calendar metadata
  • Contact metadata
  • Authentication tokens (encrypted)

D. Sensitive Data (We Do NOT Collect)

We do not collect or intentionally process:

  • Government IDs
  • Biometric data
  • Health data
  • Financial account numbers
  • Any legally protected sensitive classification

4. HOW WE USE PERSONAL DATA

We use Personal Data strictly for legitimate business purposes, including:

A. To Provide and Maintain Services

  • Creating and managing user accounts
  • Syncing tasks, notes, calendars, clients, finance entries
  • Enabling AI features (summaries, suggestions, automation)

B. To Improve Performance

  • Debugging
  • Error analysis
  • Analytics and optimization

C. To Communicate

  • Service announcements
  • Updates
  • Security notices
  • Customer support replies

D. For Security & Compliance

  • Detecting suspicious activity
  • Preventing fraud
  • Enforcing platform rules

E. For Billing

  • Subscription management
  • Invoices
  • Payment verification

5. LEGAL BASES FOR PROCESSING (GDPR Users)

  • Contractual necessity
  • Legitimate interests
  • Consent
  • Legal obligation

6. HOW WE SHARE PERSONAL DATA

Capella Pro does not sell personal data.

A. Authorized Service Providers

  • Supabase
  • Cloud Provider
  • Vercel
  • Payment processors (Stripe or equivalent)
  • Email delivery providers

B. Legal & Compliance

  • Government authorities when required
  • Law enforcement under valid legal process

C. Business Transfers

If Capella Pro undergoes a merger or acquisition, data may transfer accordingly.

7. INTERNATIONAL DATA TRANSFERS

We ensure safeguards such as SCCs, DPAs, and encryption.

8. DATA RETENTION

  • Account data: until deletion request
  • Project data: user controlled
  • Backups: up to 90 days
  • Billing records: 7 years

9. USER RIGHTS

  • Access
  • Rectification
  • Erasure
  • Restriction
  • Portability
  • Objection
  • Withdraw consent

Requests via: legal@capellapro.co

10. CHILDREN'S PRIVACY

Not intended for users under 16.

11. COOKIES & ANALYTICS

We use cookies and similar tracking technologies to improve your experience and understand how you use our Services.

Types of Cookies We Use:

  • Essential Cookies: Required for authentication and basic platform functionality
  • Analytics Cookies: Help us understand usage patterns and improve performance
  • Preference Cookies: Remember your settings and customizations

You can control cookie preferences through your browser settings. However, disabling essential cookies may limit functionality.

12. THIRD-PARTY SERVICES

We work with trusted third-party service providers to deliver and improve our Services. These providers have access only to the data necessary to perform their functions and are contractually obligated to protect your information.

Third-Party Services Include:

  • Supabase: Database and authentication infrastructure
  • Vercel: Hosting and deployment
  • Stripe: Payment processing (subject to Stripe's privacy policy)
  • Email Service Providers: Transactional email delivery
  • Analytics Providers: Usage tracking and performance monitoring

Each third-party service operates under its own privacy policy. We encourage you to review their policies to understand how they handle your data.

We do not share your personal data with third parties for their marketing purposes.

13. SECURITY MEASURES

AES-256, HTTPS/TLS 1.3, App Check, RBAC, audits, zero-trust model.

14. DATA BREACH NOTIFICATION

Users notified within 72 hours where required.

15. CHANGES TO THIS POLICY

Updates may be posted at any time.

16. CONTACT INFORMATION

legal@capellapro.co

capellapro.co@gmail.com

We believe trust is earned through clarity and restraint. Your privacy matters to us, and we are committed to protecting it with transparency and respect.