Privacy Policy

For Sterlig

Effective Date: March 11, 2025

Sterlig ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and share information when you use our website, sterlig.com, and our chat application, chat.sterlig.com (collectively, the "Services"). This policy applies to visitors, users, and others who access the Services ("Users").

1. Scope and Consent

By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with this Privacy Policy, you should not access or use our Services.

Specifically, you consent to the collection, use, storage, and disclosure of your personal information as described in this Privacy Policy. Where required by applicable law (e.g., GDPR), we will obtain your explicit consent for certain processing activities.

2. Information We Collect

We collect information in the following ways:

  • Information You Provide Directly:

    • Account Information: When you create an account, we collect your name, email address, username, password, and any other information you provide during registration.
    • Chat Content (User Data): We collect and store the content of your chats, including messages, files, images, audio, video, and other communications exchanged through the chat application.
    • Payment Information: If you purchase a subscription or other services, we collect payment information such as your credit card details, billing address, and transaction history. All payment information is processed through secure, PCI DSS-compliant third-party payment processors. Sterlig does not store credit card information directly.
    • Feedback and Support: When you contact us for support or provide feedback, we collect your contact information, the content of your communication, and any other information you provide to us.
    • Demographic Information (Optional): We may collect optional demographic information, such as your age, gender, location, and interests, to personalize your experience and improve our Services. You are not required to provide this information.

  • Information Collected Automatically:

    • Usage Data: We collect information about how you use the Services, such as the features you use, the time and duration of your activities, the pages you visit, the content you interact with, and your search queries.
    • Device Information: We collect information about the device you use to access the Services, including the device type, operating system, IP address, browser type, language preferences, time zone settings, unique device identifiers (e.g., IMEI, MAC address), and mobile network information.
    • Cookies and Similar Technologies: We use cookies, web beacons, pixels, and other similar technologies to collect information about your browsing activity, preferences, and usage patterns. We use both session cookies (which expire when you close your browser) and persistent cookies (which remain on your device for a set period). You can control cookies through your browser settings. We use cookies for essential functions, analytics, personalization, and advertising purposes.
    • Log Data: Our servers automatically record information ("log data") created by your use of the Services. Log data may include your IP address, browser type, referring domain, pages visited, search terms, and the dates and times of your visits.

  • Information from Third-Party Sources:

    • Model Providers: As a hub for various AI models, we receive information about model usage and performance from the model providers. This information may include model input, output, processing time, and error rates. The information received is primarily technical in nature and is used to monitor model performance and improve our Services.
    • Integrations: If you integrate our Services with third-party applications (e.g., social media platforms, productivity tools), we may receive information from those applications, such as your profile information, contacts, and activity data.
    • Advertising Partners: We may receive information from our advertising partners about your interactions with their advertisements on our Services or on other websites and platforms.
    • Data Enrichment Services: We may use data enrichment services to supplement the information we collect about you with data from publicly available sources or third-party databases, such as demographic information or contact details.

3. How We Use Your Information

We use your information for the following purposes:

  • Provide and Improve the Services:

    • To operate, maintain, and improve the Services; personalize your experience; develop new features and functionality; optimize performance; and fix errors.
    • To provide customer support and respond to your inquiries.
    • To process payments and manage subscriptions.
    • To analyze usage trends and patterns.
    • To enhance the security of our AI Models and detect harmful content.

  • Communicate with You:

    • To send you updates, announcements, and service-related notifications.
    • To send you marketing communications (where permitted by law, and with your consent where required). You can opt-out of receiving marketing communications at any time.
    • To conduct surveys and solicit feedback.

  • Ensure Safety and Security:

    • To detect and prevent fraud, abuse, and other malicious activity.
    • To enforce our Terms of Service and other policies.
    • To protect the security and integrity of our Services and data.
    • To verify your identity and prevent unauthorized access to your account.
    • To monitor the usage of AI Models and remove harmful or inappropriate content.

  • Comply with Legal Obligations:

    • To comply with applicable laws, regulations, and legal processes.
    • To respond to legal requests and court orders.
    • To protect our rights and interests.

  • Research and Development:

    • To conduct research and analysis to improve our Services, develop new technologies, and personalize your experience.
    • To train and improve our AI models while respecting privacy safeguards, including aggregation, anonymization, and pseudonymization techniques.
    • To share aggregated and anonymized data for research purposes. No individual user data is identifiable in shared research data.

  • Advertising and Marketing:

    • To display personalized advertisements and marketing content on our Services and on other websites and platforms.
    • To measure the effectiveness of our advertising campaigns.
    • To create targeted advertising audiences.

4. Data Anonymization and Aggregation

We take specific steps to reduce the risk of re-identification. Some of those measures are:

  • Before using any User Data for research or development purposes, we will aggregate and anonymize the data. This involves removing or obscuring any information that could reasonably be used to identify you.
  • We implement differential privacy techniques where applicable, adding statistical noise to prevent individual user data from being revealed.
  • We maintain internal data handling policies and procedures designed to protect your privacy throughout the anonymization process.
  • We regularly review and update our anonymization techniques to ensure they are in line with industry best practices and evolving privacy standards.

5. How We Share Your Information

We may share your information with the following parties:

  • Service Providers: We share information with third-party service providers who help us operate the Services, such as hosting providers, payment processors, analytics providers, email marketing platforms, customer support tools, and security vendors. These providers are contractually obligated to protect your information and only use it for the purposes we specify. We ensure these providers meet industry-standard security requirements and data protection standards.
  • Model Providers: We share data with AI model providers related to usage and performance for the purposes of providing the service and improving model capabilities. We take steps to minimize the amount of personal information shared with model providers. Where feasible, we utilize pseudonymization techniques to protect user identity when sharing data.
  • Affiliates: We may share information with our affiliates, subsidiaries, and parent companies for business purposes, such as marketing, research, and development, subject to the terms of this Privacy Policy.
  • Business Transfers: If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.
  • Legal Compliance: We may disclose your information to law enforcement agencies, government officials, or other third parties if we are required to do so by law or legal process, or if we believe that such disclosure is necessary to protect our rights, property, or safety, or the rights, property, or safety of others. We will make every reasonable effort to provide you with notice of any such disclosure, where permitted by law.
  • With Your Consent: We may share your information with third parties with your consent.
  • Advertising Partners: We may share information with our advertising partners, such as demographic data, interests, and browsing activity, to display personalized advertisements and measure the effectiveness of our advertising campaigns. We use aggregated and anonymized data wherever possible to minimize the sharing of identifiable information.

6. Data Retention

We retain your information for as long as necessary to provide the Services and fulfill the purposes described in this Privacy Policy, or as required by law. The length of time we retain your information depends on the type of information and the purpose for which it is processed.

  • Account Information: We retain your account information as long as your account is active. If you close your account, we may retain your account information for a period of time to comply with legal, audit, or archival requirements.
  • Chat Content (User Data): We retain chat content for a period of 6 months to 1 year to allow you to access your chat history and to improve our AI models. After that period, we will anonymize or delete your chat content in accordance with our data anonymization policies. If chat content is used for model training or improvements, the original content will be deleted as quickly as reasonably possible. We will retain the information that is extract only.
  • Payment Information: We retain your payment information for as long as necessary to process payments, prevent fraud, and comply with financial regulations. Payment data is tokenized and stored securely by our third-party payment processor. Sterlig has limited access to raw payment data.
  • Log Data: We retain log data for a period of 3 months to 6 months for security and analytics purposes.
  • Marketing Data: We retain marketing data until you opt-out of receiving marketing communications.

Even after you stop using the Services, we may retain your information for a period of time to comply with legal, audit, or archival requirements, resolve disputes, enforce our agreements, or for other legitimate business purposes.

7. Your Rights

You may have certain rights regarding your personal information, depending on your location and applicable law. These rights may include:

  • Right to Access: You have the right to access the personal information we hold about you and receive a copy of it.

  • Right to Rectification: You have the right to correct inaccurate or incomplete personal information.

  • Right to Erasure ("Right to be Forgotten"): You have the right to request the deletion of your personal information under certain circumstances.

  • Right to Restriction of Processing: You have the right to restrict the processing of your personal information under certain circumstances.

  • Right to Data Portability: You have the right to receive your personal information in a structured, commonly used, and machine-readable format and to transmit it to another controller.

  • Right to Object: You have the right to object to the processing of your personal information under certain circumstances, including for direct marketing purposes.

  • Right to Withdraw Consent: If we are processing your personal information based on your consent, you have the right to withdraw your consent at any time.

  • Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority in your country if you believe that we have violated your rights.

  • Specific to AI Processing: You also have the right to request information about how your data is used in our AI models, including the types of data used, the purposes of processing, and any potential impact on your privacy.

How to Exercise Your Rights:

To exercise your rights, please contact Irisa at jakin@sterlig.com. As Sterlig is not yet a registered entity, Irisa is responsible for overseeing our data protection practices. We will respond to your request within a reasonable timeframe and in accordance with applicable law. We may require you to verify your identity before processing your request.

8. California Consumer Privacy Act (CCPA) Compliance

If you are a California resident, you have certain rights under the CCPA, including the right to:

  • Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources of the information, the purposes for collecting it, and the categories of third parties with whom we share it.
  • Delete: You have the right to request the deletion of your personal information.
  • Opt-Out of Sale: You have the right to opt-out of the sale of your personal information. We do not currently "sell" your personal information as defined by the CCPA. If we change our practices in the future, we will provide you with notice and the opportunity to opt-out.
  • Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

How to Exercise Your CCPA Rights:

To exercise your CCPA rights, please contact Irisa at support@sterlig.com. We may require you to verify your identity before processing your request. You may designate an authorized agent to make a request on your behalf, subject to verification.

9. Data Security

We take reasonable and appropriate measures to protect your information from unauthorized access, use, disclosure, alteration, or destruction. These measures include:

  • Encryption: We use encryption to protect sensitive data both in transit and at rest.
  • Firewalls: We use firewalls to protect our servers from unauthorized access.
  • Access Controls: We restrict access to your personal information to authorized personnel only.
  • Security Audits: We conduct regular security audits to identify and address potential vulnerabilities.
  • Employee Training: We provide regular security training to our employees.
  • Regular Vulnerability Scanning: We conduct regular vulnerability scans of our systems and applications to identify potential security weaknesses.
  • Intrusion Detection Systems: We employ intrusion detection systems to monitor our network for suspicious activity.
  • Incident Response Plan: We maintain a documented incident response plan to address and mitigate any security breaches or incidents.
  • User Authentication: We use multi-factor authentication where appropriate to enhance user account security.
  • AI Model Security: We employ content moderation and monitoring techniques to prevent the misuse of AI models for malicious purposes and to identify and remove harmful or inappropriate content. This includes automated filtering, human review, and user reporting mechanisms.

However, no method of transmission over the internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee the absolute security of your information.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own, including countries that may not have the same data protection laws as your country. We will take steps to ensure that your information is protected when it is transferred internationally, such as by using Standard Contractual Clauses approved by the European Commission or other appropriate safeguards as required by applicable law.

11. Children's Privacy

Our Services are not directed to children under the age of 13. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child under 16, we will take steps to delete the information as soon as possible.

12. Data Protection Contact

For any questions or concerns regarding your personal data, or this Privacy Policy, please contact Irisa at support@sterlig.com.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. We will post any changes on our website and update the "Effective Date" at the top of this policy.

We will also provide notice of material changes to this Privacy Policy, such as by email or through the Services. Your continued use of the Services after the effective date of the revised Privacy Policy constitutes your acceptance of the changes.

14. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

Sterlig support@sterlig.com