Soft white clouds on a light background, decorative visual for website design

Privacy Policy

Horsemouth, Inc.

Effective Date:

1. Introduction

Horsemouth, Inc. ("Horsemouth," "we," "us," or "our") operates the Horsemouth AI platform, a SaaS service that enables consumer packaged goods (CPG) brands to facilitate agentic commerce through product data publishing, monitoring, and optimization tools.

This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you use our website (https://horsemouth.ai), our platform ((https://app.horsemouth.ai), and related services (collectively, the "Services"). This policy applies to users located in the United States and the European Economic Area (EEA), and we are committed to complying with applicable data protection laws, including the California Consumer Privacy Act (CCPA), the California Privacy Rights Act (CPRA), and the General Data Protection Regulation (GDPR).

By accessing or using our Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our Services.

2. Contact Information

If you have any questions about this Privacy Policy or our data practices, you may contact us at:

Horsemouth, Inc.
Email: support@horsemouth.ai

3. Information We Collect

We collect the following categories of personal information:

3.1 Account and Identity Data

When you create an account, we collect your name and email address. We also collect your password, if you choose that option. This information is necessary to provide you with access to our Services.

3.2 Contact Information

We may collect your phone number and mailing address when you provide them for communication or billing purposes.

3.3 Business Information

We collect information about your company, including company name, job title, and other business-related details to provide our B2B services effectively.

3.4 Payment and Billing Data

When you subscribe to our Services, we collect billing information including credit card details and billing address. Payment processing is handled by our third-party payment processor, and we do not store complete credit card numbers on our servers.

3.5 Usage Data and Analytics

We automatically collect information about how you interact with our Services, including pages visited, features used, actions taken, time spent on the platform, and other usage patterns.

3.6 Device and Technical Data

We collect technical information including your IP address, browser type and version, device type, operating system, device identifiers, and other technical attributes.

3.7 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect information about your browsing activities. We use essential cookies (required for the platform to function) and analytics cookies (to understand usage patterns). For more information, see Section 9 below.

3.8 API Access Tokens and Credentials

If you integrate our Services with other platforms, we may collect and store API access tokens and credentials necessary to facilitate those integrations.

4. How We Collect Information

We collect personal information through the following methods:

Direct User Input
Information you provide when registering for an account, completing forms, uploading data, or communicating with us.
Automated Collection
Information collected automatically through cookies, analytics tools, server logs, and similar technologies when you use our Services.

5. How We Use Your Information

We use the personal information we collect for the following purposes:

Providing and Maintaining Services
To operate, deliver, and improve our platform.
Account Management
To create and manage your account, authenticate your identity, and provide customer support.
Payment Processing
To process subscriptions, payments, and billing.
Customer Support
To respond to your inquiries, provide technical assistance, and resolve issues.
Analytics and Improvement
To analyze usage patterns, understand user needs, and improve our Services.
Marketing Communications
To send you updates, newsletters, and promotional materials about our Services. You may opt out of marketing communications at any time.
Legal Compliance
To comply with applicable laws, regulations, and legal processes.

7. Third-Party Sharing and Disclosure

We may share your personal information with the following categories of third parties:

Payment Processors
We use third-party payment processors (such as Stripe) to handle payment transactions securely.
Cloud Hosting Providers
Our Services are hosted on cloud infrastructure providers (such as AWS) that may process data on our behalf.
Analytics Services
We use analytics tools (such as Google Analytics) to understand how users interact with our Services.
Email and Communication Services
We use third-party services (such as Buttondown) to send transactional and marketing emails.
Customer Support Tools
We use customer support platforms to manage and respond to support requests.
AI/LLM Providers
We use artificial intelligence and large language model providers to enhance our Services and provide intelligent features.

We require all third-party service providers to respect the security of your personal data and to treat it in accordance with applicable law. We do not allow our third-party service providers to use your personal data for their own purposes.

7.1 Sale of Personal Information (CCPA/CPRA)

We do not sell your personal information. We do not share personal information with third parties for monetary or other valuable consideration. We also do not share personal information for cross-context behavioral advertising purposes.

8. Data Storage and Security

8.1 Data Location

Your personal data is stored on servers located in the United States, hosted by Amazon Web Services (AWS) and other providers we rely on to deliver our services. We do not transfer personal data internationally outside of the United States.

8.2 Security Measures

We implement appropriate technical and organizational measures to protect your personal information, including:

  • Data encryption in transit (TLS/SSL) and at rest
  • OAuth 2.0 authentication protocols
  • Role-based access controls
  • Regular security assessments and monitoring

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our platform.

9.2 Third-Party Tracking

We use Google Analytics to collect information about your use of our Services. Google Analytics uses cookies to collect information such as how often users visit our site, what pages they visit, and what other sites they used prior to coming to our site. You can learn more about how Google uses data at: https://policies.google.com/privacy

9.3 Managing Cookies

Most web browsers allow you to control cookies through their settings. You can set your browser to refuse all or some cookies, or to alert you when websites set or access cookies. However, if you disable or refuse cookies, some parts of our Services may become inaccessible or not function properly.

10. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our Services. We may also retain your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

Your data will be deleted upon:

  • Your request to delete your account or personal data
  • Account inactivity for a period of 18 months

When we no longer need to retain your personal data for the purposes outlined in this Privacy Policy, we will delete or anonymize it.

11. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information.

11.1 Rights Under GDPR (EEA Users)

If you are located in the European Economic Area, you have the following rights:

Right of Access
You have the right to request copies of your personal data.
Right to Rectification
You have the right to request that we correct inaccurate or incomplete personal data.
Right to Erasure
You have the right to request that we delete your personal data, subject to certain exceptions.
Right to Restrict Processing
You have the right to request that we restrict the processing of your personal data.
Right to Data Portability
You have the right to request that we transfer your personal data to another organization or directly to you.
Right to Object
You have the right to object to our processing of your personal data.
Right to Withdraw Consent
Where processing is based on consent, you have the right to withdraw your consent at any time.

11.2 Rights Under CCPA/CPRA (California Residents)

If you are a California resident, you have the following rights:

Right to Know
You have the right to request information about the categories and specific pieces of personal information we have collected about you.
Right to Delete
You have the right to request deletion of your personal information, subject to certain exceptions.
Right to Correct
You have the right to request correction of inaccurate personal information.
Right to Opt-Out of Sale/Sharing
You have the right to opt out of the sale or sharing of your personal information. Note: We do not sell or share personal information.
Right to Non-Discrimination
We will not discriminate against you for exercising your privacy rights.

11.3 Exercising Your Rights

To exercise any of your privacy rights, please contact us at:

Email: support@horsemouth.ai

We will respond to your request within 3 business days. We may need to verify your identity before processing your request. If we cannot verify your identity, we may deny your request.

12. Children's Privacy

Our Services are not directed to individuals under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately at support@horsemouth.ai. If we become aware that we have collected personal information from a child without verification of parental consent, we will take steps to delete that information.

13. International Users

Our Services are operated from the United States. If you are accessing our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States where our servers are located. By using our Services, you consent to the transfer of your information to the United States.

For users in the EEA, when we transfer personal data outside the EEA, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission or reliance on adequacy decisions.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. When we make material changes to this Privacy Policy, we will notify you by email prior to the changes becoming effective.

The "Effective Date" at the top of this Privacy Policy indicates when it was last updated. We encourage you to review this Privacy Policy periodically to stay informed about our data practices.

15. Governing Law

This Privacy Policy shall be governed by and construed in accordance with the laws of the State of Rhode Island, United States, without regard to its conflict of law provisions.

16. Contact Us

If you have any questions, concerns, or complaints about this Privacy Policy or our data practices, please contact us at:

Horsemouth, Inc.
Email: support@horsemouth.ai

Thank you for trusting Horsemouth with your data.