Privacy Policy

Information We Collect

Information you provide to us
  • Contact & account data (e.g., name, company, role, email address, phone number, billing address, passwords or authentication factors).
  • Transactional data (purchases, subscriptions, support requests, project briefs, SOWs, and communications with us).
  • Content you upload or submit while using our Services (files, messages, forms, feedback).
  • Payment information processed by our payment processors (we do not store full card numbers).
Information we collect automatically
  • Device & usage data: IP address, browser type, device identifiers, OS, pages viewed, referring URLs, timestamps, and interactions with site features.
  • Cookies & similar technologies: Please see Cookies & Tracking.
  • Approximate location derived from IP address.
Information from third parties
  • Service providers (e.g., analytics, payment, CRM, advertising platforms).
  • Partners and social platforms (subject to your settings with those services).
  • Publicly available sources (business contact information, company details).

How We Use Information

  • Provide, operate, maintain, and improve the Services.
  • Process transactions and fulfill requests.
  • Personalize content, experiences, and communications.
  • Send administrative messages (e.g., confirmations, updates, security alerts) and, where permitted, marketing communications (you may opt out at any time).
  • Conduct research, analytics, and measurement to understand usage and performance.
  • Detect, prevent, and address security incidents, fraud, and abuse.
  • Comply with legal obligations and enforce our terms and policies.
  • Support business transfers (e.g., merger, acquisition, asset sale).

How We Disclose Information

We may disclose personal information as follows:

  • Vendors & service providers who process data on our behalf (hosting, analytics, payment processing, email/SMS, customer support, security).
  • Professional advisors (lawyers, auditors, insurers) under confidentiality obligations.
  • Advertising/analytics partners as described in Advertising & Analytics.
  • Legal & compliance when required by law, subpoena, or to protect rights, safety, and property.
  • Business transfers in connection with, or during negotiations of, a corporate transaction.
  • With your consent or at your direction.

We do not sell personal information for money. We may “share” or process personal information for targeted advertising as defined under certain U.S. state privacy laws. See Your Privacy Rights for opt-out options.

Cookies & Tracking Technologies

We and our partners use cookies, pixels, and similar technologies to operate the site, remember preferences, analyze traffic, and personalize content/ads.

Types of cookies
  • Strictly necessary – required for core functionality and security.
  • Functional – remember preferences and improve experiences.
  • Analytics – measure usage and performance.
  • Advertising – personalize ads and measure effectiveness.

Controls: You can manage cookies in your browser settings and, where available, via our on-site cookie banner or preferences center. Disabling certain cookies may limit functionality.

Advertising & Analytics

We may use analytics services (e.g., Google Analytics) and advertising partners (e.g., Google, Meta, LinkedIn, X/Twitter, TikTok, programmatic networks) that set cookies or other identifiers to collect information about your use of the Services, other websites, and apps to analyze usage and serve ads based on your interests.

You may opt out of interest-based advertising via platform settings and industry tools such as the DAA/NAI opt-out pages. Some browser-level Global Privacy Control (GPC) signals may also be honored where required.

Data Retention

We retain personal information for as long as necessary to provide the Services, fulfill the purposes described in this Policy, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary by data category and context.

Data Security

We implement appropriate technical and organizational measures to protect personal information. However, no method of transmission or storage is completely secure; we cannot guarantee absolute security.

Your Privacy Rights & Choices

Depending on your location, you may have rights over your personal information, such as:

  • Access – request confirmation and a copy of your data.
  • Correction – request that we correct inaccurate data.
  • Deletion – request that we delete certain data.
  • Portability – receive certain data in a portable format.
  • Opt out – of targeted advertising, “sharing,” or certain profiling/automated decisions.
  • Withdraw consent – where processing is based on consent.
  • Appeal – where applicable, appeal our response to your request.

How to submit a request: Email us at info@qolos.com with the subject line “Privacy Request,” or use our privacy request form if available on the site. We may need to verify your identity. Authorized agents may submit requests subject to verification and proof of authorization.

Marketing communications: You can opt out of marketing emails by clicking “unsubscribe” in the message or contacting us. You may still receive non-marketing communications (e.g., transactional or service notices).

California (CCPA/CPRA) Notice: California residents can request disclosures about our data practices and exercise the rights above. We do not sell personal information for monetary consideration. We may “share” personal information for cross-context behavioral advertising; you can opt out by emailing info@qolos.com or using our on-site controls.

Nevada Notice: We do not sell “covered information” as defined under Nevada law. Nevada residents may submit sale opt-out requests to info@qolos.com.

GDPR (EEA/UK/Switzerland): Where GDPR applies, QOLOS is a controller of personal data processed through the Services. Our legal bases include consent, contract performance, legitimate interests, legal obligations, and vital/public interests where applicable. You may lodge a complaint with your local supervisory authority.

Children’s Privacy

The Services are not directed to children under the age of 13 (or the age of digital consent where you live), and we do not knowingly collect personal information from children. If you believe a child has provided us personal information, please contact us and we will take appropriate steps to delete it.

International Transfers

We are based in the United States and may process information in the U.S. and other countries that may have different data protection laws than your country. Where required, we use appropriate safeguards (such as standard contractual clauses) for data transfers.

Changes to This Policy

We may update this Privacy Policy from time to time. The “Effective date” indicates when this Policy was last revised. Material changes will be posted on this page and, where appropriate, notified to you.

Contact Us

If you have questions or requests regarding this Privacy Policy or our privacy practices, please contact us:

Supplemental U.S. State Disclosures

Residents of certain U.S. states (e.g., CA, CO, CT, UT, VA) may have additional rights under their respective privacy laws. These include rights to access, delete, correct, and opt out of certain processing. We describe categories of personal information collected, sources, purposes, and disclosures in the sections above. To exercise rights, see Your Privacy Rights & Choices.

Controller/Processor Roles

For most activities described here, QOLOS acts as a “controller” (or equivalent). For certain client services, we may act as a “processor” (or equivalent) and process personal information on behalf of a client under a separate agreement. In those cases, please direct requests to the relevant client/controller.