Your Privacy Matters: Cachee.ai, operated by Appuix, Inc., is committed to protecting your privacy and securing your data. This Privacy Policy explains how we collect, use, share, and protect your information.
1. Overview
Appuix, Inc. ("we," "us," "our," or "Company") operates Cachee.ai, an enterprise AI-powered caching platform. This Privacy Policy applies to all information collected through our website, platform, APIs, and related services (collectively, the "Service").
By using Cachee.ai, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use our Service.
Quick Summary: We collect only the data necessary to provide and improve our Service. We never sell your personal information. You have full control over your data and can request access, correction, or deletion at any time.
3. How We Use Your Information
3.1 To Provide and Improve the Service
- Operate and maintain the Cachee.ai platform
- Process transactions and manage subscriptions
- Provide customer support and respond to inquiries
- Improve our AI algorithms and caching performance
- Develop new features and optimize user experience
- Monitor system health and prevent technical issues
3.2 For Communication
- Send service notifications and updates
- Provide account and billing information
- Send security alerts and system status updates
- Share product updates and feature announcements (with opt-out)
- Respond to support requests and feedback
3.3 For Security and Compliance
- Detect and prevent fraud, abuse, and security threats
- Enforce our Terms and Conditions
- Comply with legal obligations and law enforcement requests
- Conduct security audits and vulnerability assessments
- Protect our intellectual property and user data
3.4 For Analytics and Research
- Analyze usage patterns and trends
- Conduct internal research for technology development
- Generate anonymized, aggregated statistics
- Improve our AI models and predictive algorithms
- Benchmark performance across customers (anonymized)
3.5 Legal Basis for Processing (GDPR)
We process your data based on:
- Contract: To fulfill our agreement with you
- Legitimate Interest: To improve our Service and prevent fraud
- Consent: For marketing communications (with opt-out)
- Legal Obligation: To comply with applicable laws
4. Data Sharing and Disclosure
4.1 We Do Not Sell Your Data
Appuix, Inc. does not sell, rent, or trade your personal information to third parties for their marketing purposes.
4.2 When We Share Information
| Recipient |
Purpose |
Data Shared |
| Service Providers |
Cloud hosting, payment processing, analytics |
Account info, usage data, billing info |
| Payment Processors |
Process payments securely |
Billing information (via Stripe) |
| Analytics Partners |
Understand usage patterns |
Anonymized usage data |
| Security Services |
Detect fraud and threats |
IP addresses, device info |
| Legal Authorities |
Comply with legal obligations |
As required by law |
| Business Transfers |
Merger, acquisition, or sale |
All information (with notice) |
4.3 Third-Party Service Providers
We use trusted third-party services that comply with applicable privacy laws:
- AWS / Google Cloud: Cloud infrastructure and data storage
- Stripe: Payment processing (PCI DSS compliant)
- Google Analytics: Website and usage analytics
- Intercom / Zendesk: Customer support and communications
- SendGrid: Transactional email delivery
All service providers are contractually bound to protect your data and use it only for specified purposes.
5. Data Security
5.1 Security Measures
We implement industry-standard security practices to protect your data:
- Encryption: TLS 1.3 for data in transit, AES-256 for data at rest
- Access Controls: Role-based access, multi-factor authentication (MFA), least privilege principle
- Network Security: Firewalls, intrusion detection, DDoS protection
- Monitoring: 24/7 security monitoring, automated threat detection
- Audits: Regular security audits, penetration testing, vulnerability scanning
- Compliance: SOC 2 Type II, ISO 27001, GDPR, CCPA compliance
5.2 Data Breach Notification
In the event of a data breach that affects your personal information, we will:
- Notify you within 72 hours of discovery (GDPR requirement)
- Provide details about the breach and affected data
- Explain steps we're taking to mitigate harm
- Offer guidance on protecting your information
5.3 Your Security Responsibilities
- Use strong, unique passwords
- Enable multi-factor authentication (MFA)
- Keep your account credentials confidential
- Report suspicious activity immediately
- Keep your software and systems updated
6. Data Retention
6.1 Retention Periods
| Data Type |
Retention Period |
| Account Information |
Until account deletion + 30 days |
| Customer Data |
Until deletion request + 30 days |
| Billing Records |
7 years (tax compliance) |
| Usage Logs |
90 days (anonymized longer) |
| Support Tickets |
3 years after resolution |
| Security Logs |
1 year |
6.2 Data Deletion
When you delete your account or request data deletion:
- Personal information is deleted within 30 days
- Backups are overwritten within 90 days
- Anonymized analytics data may be retained indefinitely
- Some data may be retained longer if required by law
7. Cookies and Tracking Technologies
7.1 Types of Cookies We Use
- Essential Cookies: Required for the Service to function (authentication, security)
- Analytics Cookies: Help us understand how you use the Service (Google Analytics)
- Preference Cookies: Remember your settings and preferences
- Marketing Cookies: Track conversions and ad performance (opt-in only)
7.2 Managing Cookies
You can control cookies through:
- Your browser settings (Chrome, Firefox, Safari, etc.)
- Our cookie consent banner (accept or decline non-essential cookies)
- Third-party opt-out tools (Google Analytics Opt-out, Network Advertising Initiative)
Note: Disabling essential cookies may prevent you from using certain features of the Service.
8. Your Privacy Rights
8.1 Access and Portability
You have the right to:
- Access your personal information
- Request a copy of your data in a portable format (JSON, CSV)
- Download your data directly from your account dashboard
8.2 Correction and Update
- Update your account information anytime through your profile
- Request corrections to inaccurate data
8.3 Deletion and Erasure
- Delete your account and all associated data
- Request erasure of specific data categories
- Exercise your "right to be forgotten" (GDPR)
8.4 Object and Restrict
- Object to processing based on legitimate interests
- Restrict processing in certain circumstances
- Opt out of marketing communications
8.5 Withdraw Consent
- Withdraw consent for data processing anytime
- Unsubscribe from marketing emails via link or account settings
8.6 How to Exercise Your Rights
To exercise any of these rights:
- Email us at privacy@appuix.com
- Use the data management tools in your account settings
- Submit a request through our support portal
We will respond to verified requests within 30 days.
9. International Data Transfers
Appuix, Inc. is based in the United States. Your data may be transferred to and processed in the U.S. or other countries where we or our service providers operate.
9.1 Transfer Safeguards
For data transferred from the EU/EEA or UK, we use approved transfer mechanisms:
- Standard Contractual Clauses (SCCs): EU Commission-approved contracts
- Adequacy Decisions: Transfers to countries with adequate data protection
- Data Processing Agreements: With all third-party processors
9.2 Data Residency Options
Enterprise customers can request data residency in specific regions (EU, US, Asia-Pacific). Contact our sales team for details.
10. Children's Privacy
Cachee.ai is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18.
If we become aware that we have collected data from a child under 18 without parental consent, we will take steps to delete that information immediately.
If you believe we have inadvertently collected data from a child, please contact us at privacy@appuix.com.
11. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
11.1 Right to Know
- Request disclosure of personal information we collect, use, and share
- Request specific pieces of personal information
- Receive information about our data practices
11.2 Right to Delete
Request deletion of your personal information, subject to certain exceptions.
11.3 Right to Opt-Out
We do not sell personal information. If our practices change, we will provide a "Do Not Sell My Personal Information" link.
11.4 Right to Non-Discrimination
We will not discriminate against you for exercising your CCPA rights (no denial of service, different prices, or reduced quality).
11.5 CCPA Data Categories
Personal information categories we collect:
- Identifiers (name, email, IP address)
- Commercial information (purchase history, subscription details)
- Internet activity (browsing history, usage data)
- Professional information (company name, job title)
- Inferences (preferences, behavior patterns)
11.6 Authorized Agent
You may designate an authorized agent to make CCPA requests on your behalf. The agent must provide proof of authorization.
11.7 Contact for CCPA Requests
Email: privacy@appuix.com
Phone: 1-800-CACHEE-AI (toll-free)
Subject: "CCPA Request"
12. European Privacy Rights (GDPR)
If you are located in the EU, EEA, or UK, you have additional rights under the General Data Protection Regulation (GDPR):
12.1 Your GDPR Rights
- Right of Access: Confirm whether we process your data and access that data
- Right to Rectification: Correct inaccurate or incomplete data
- Right to Erasure ("Right to be Forgotten"): Request deletion in certain circumstances
- Right to Restriction: Limit processing in specific situations
- Right to Data Portability: Receive your data in a structured, machine-readable format
- Right to Object: Object to processing based on legitimate interests
- Right to Withdraw Consent: Withdraw consent anytime
- Right to Lodge a Complaint: File a complaint with your supervisory authority
12.2 Data Controller and Representative
Data Controller: Appuix, Inc. (Delaware, USA)
EU Representative: [To be appointed if required]
12.3 Data Protection Officer
For GDPR inquiries, contact our Data Protection Officer:
Email: dpo@appuix.com
12.4 Supervisory Authority
You have the right to lodge a complaint with your local data protection authority. A list of EU supervisory authorities is available at edpb.europa.eu.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.
13.1 How We Notify You
- Post the updated policy on our website with a new "Last Updated" date
- Send email notification for material changes
- Display an in-app notification
- Provide at least 30 days' notice before material changes take effect
13.2 Your Acceptance
Continued use of the Service after the effective date of changes constitutes acceptance of the updated Privacy Policy. If you do not agree, please stop using the Service and contact us to delete your account.