1. Information We Collect

We collect two types of information:

A. Client Information

When you use our platform as a client (e.g., a sample provider), we may collect:

• Email address

• IP address

• Account and usage data necessary to provide the service

B. Respondent Information (via third parties)

When panelists respond to profiling questions through our partners (such as Fillout), we may process:

• Profiling information (e.g., demographics, household, interests)

• Sensitive information (only if voluntarily provided in open-ended responses)

We do not collect respondent names, emails, IPs, or any direct identifiers.

2. How We Use Information

We use collected data for the following purposes:

• To provide and improve our services for clients

• To analyze and structure data for survey targeting

• To develop and test new product features

• To ensure system security and performance

Respondent data is processed in a de-identified form and used strictly to deliver services to our clients.

3. Sharing of Information

We only share data with:

• Service providers that help us operate our platform (e.g., AWS for hosting, Fillout for data collection)

• Technology providers we integrate with to deliver services (e.g., OpenAI API for data structuring)

We do not sell or rent personal information.

4. Data Storage & Location

• Data is hosted on secure servers in the United States (AWS).

• We use encryption and access controls to protect stored data.

• We may transfer data across borders as required to provide the service.

• We take reasonable measures to protect your data against unauthorized access or disclosure.

5. Your Rights

Under Canadian privacy laws, you have the right to:

• Access the personal information we hold about you (clients)

• Request corrections to inaccurate information

• Withdraw consent to certain uses of your data

• Request deletion of your client account

Because respondent data is collected without direct identifiers, we may not be able to honor individual deletion requests. Clients may request deletion of their own data.

This policy complies with Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) and Québec’s Law 25.

6. Retention

We retain information only as long as necessary to:

• Provide services to clients

• Comply with legal obligations

• Resolve disputes or enforce agreements

7. Cookies & Analytics

We use limited analytics tools to understand how our websites are used and to improve functionality.

• Framer Analytics: Used on enlightn.io to track page visits and interactions.

• Microsoft Clarity: Used without cookies to capture anonymized usage patterns (e.g., click and scroll behavior).

We do not use tracking cookies, ad networks, or other third-party marketing trackers.

8. Updates to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Effective Date.”

9. Contact Us

For questions or privacy requests, please contact us:

Email: privacy@enlightn.io