Privacy Policy

01 Who we are

This site (aosiq.com) is operated by [LEGAL_ENTITY], a Georgia [entity type] with a registered address at [PHYSICAL_ADDRESS]. AOSIQ is the marketing presence for an open-source capability-authorization runtime distributed under the MIT License. References below to "we," "us," and "our" mean [LEGAL_ENTITY].

You can reach us at hello@aosiq.com or by mail at the address above.

02 What this policy covers

This policy covers the information we collect when you visit aosiq.com or submit the contact form. It does not cover the AOSIQ software itself — the runtime is open source, runs in your own trust boundary, and never reports back to us. Anything the software does with data is governed by the deployment you run it in, not by this policy.

03 What we collect

We collect two kinds of information.

3.1 Information you submit through the contact form

• Name
• Organization
• Work email
• Role (selected from a fixed list)
• Vertical (selected from a fixed list)
• Free-text description of the problem you're trying to solve

This is information you actively provide. We don't pre-fill or infer any of it. The form includes a hidden honeypot field used to filter automated submissions; that field is not visible to humans and is discarded.

3.2 Information collected automatically

When you load a page, our hosting provider (Cloudflare Pages) records standard request metadata: IP address, user agent, referrer, requested URL, response status, and timestamp. We use this for operational purposes — diagnosing errors, defending against abuse, and producing aggregate traffic counts.

We do not run third-party analytics, advertising trackers, or session-replay tools. We do not place tracking cookies. The site uses only strictly-necessary cookies if any (for example, a CSRF token on the contact form).

04 Why we collect it

Contact form submissions exist for one purpose: so we can respond to your inquiry. We read them by hand, not through an automated funnel.

Hosting metadata exists for one purpose: keeping the site operational and secure.

We do not use either source of information for advertising, profile building, or sale to third parties. We do not feed it into machine learning training datasets.

05 How long we keep it

• Contact form submissions are kept while the conversation is active and for up to 24 months after the last exchange, then deleted. If a submission becomes a design-partner relationship or a customer record, retention is governed by that engagement's contract.
• Hosting access logs are kept for up to 30 days, then deleted or rotated by our hosting provider.
• Email correspondence with hello@aosiq.com or security@aosiq.com follows our normal business retention practices: kept while operationally relevant, periodically archived or deleted.

06 Who we share it with

We do not sell, rent, or trade your information.

We share information only with the operational service providers required to run the site:

• Cloudflare (hosting, DNS, email routing, edge security)
• Resend (transactional email delivery for contact form submissions)
• A competent authority, if a legal request requires it

We do not transfer your information to advertising networks, data brokers, or AI training datasets.

07 Where it's stored

Site infrastructure and email are hosted in the United States. If you submit information from outside the United States, you are consenting to the transfer of that information to the United States for processing.

08 Your rights

You can ask us, at any time, to:

• Tell you what we have on file for you
• Correct anything that's wrong
• Delete it
• Stop processing it

Send a request to hello@aosiq.com. We aim to respond within 30 days. We may need to verify your identity before acting on a request, especially deletion requests, to protect your data from impersonation.

If you are a resident of California, the EEA, the UK, or another jurisdiction with statutory data rights, those rights apply on top of what's listed here. We comply with applicable law in your jurisdiction.

09 Security

The site is served over HTTPS. Form submissions are transmitted encrypted in transit. We follow reasonable practices for protecting the systems that store this information at rest. No internet-connected system is perfectly secure; we do not warrant absolute security.

If you believe you've found a security vulnerability, please follow our disclosure policy at /.well-known/security.txt.

10 Children

This site is intended for businesses and adult professionals. We do not knowingly collect information from anyone under 13. If you believe a child has submitted information through our contact form, write to hello@aosiq.com and we will delete it.

11 Changes to this policy

We may update this policy. When we do, the "Last updated" date at the top of the page changes. Material changes will be flagged in the page header for at least 30 days. Continued use of the site after a change constitutes acceptance of the new policy.

12 Contact