Legal · marketing site

Privacy Policy

Last updated · May 6, 2026

This policy describes how Pollenix Inc. ("Pollenix", "we") handles information collected through pollenix.ai and its subdomains. It does not cover data processed inside a customer's Pollenix deployment — that lives in the customer's own cloud and is governed by the order form and DPA signed at deployment time.

1. What we collect

• Contact form submissions: first name, last name, work email, phone number, and any free-form text you provide.
• Server logs: IP address, user-agent, requested URL, timestamp. Retained 30 days for abuse and reliability investigation.
• Cookies: a single first-party preference cookie (theme: light or dark). No analytics or advertising cookies are set by this site.

2. How we use it

• To respond to your inquiry. We aim for one business day.
• To detect and mitigate abuse of the contact endpoint.
• To remember your light/dark theme preference between visits.

We do not sell, rent, or trade contact-form submissions. We do not enrich them through third-party data brokers. We do not add submitters to a marketing newsletter without an explicit opt-in.

3. Who we share it with

• Resend (email delivery) — receives your form submission to deliver the inquiry to our inbox. See Resend's privacy policy.
• Cloudflare (CDN, DNS, edge runtime) — proxies HTTPS traffic to pollenix.ai. See Cloudflare's privacy policy.
• Legal compliance: we may disclose information when required by valid legal process, narrowly tailored to the request.

4. Retention

Contact-form submissions live in our inbox indefinitely unless you request deletion. Server logs roll off after 30 days. Theme preference lives in your browser; clearing site data clears it.

5. Your rights

Depending on where you live, you may have rights to access, correct, delete, or port your information, and to object to or restrict our processing. Email privacy@pollenix.ai and we'll respond within 30 days.

EU/UK residents (GDPR): our lawful bases are consent (when you submit the form) and legitimate interest (server-log security). You may lodge a complaint with your supervisory authority.

California residents (CCPA/CPRA): we do not sell or share personal information as those terms are defined in California law. You have rights to know, delete, correct, and limit. Use the privacy@ address above.

6. Security

Form submissions travel over TLS to Cloudflare and on to Resend. We scope API keys narrowly and rotate them on a schedule. We do not store submission data in a customer database; it lives in our email inbox with two-factor authentication enforced for all team members.

7. Children

Pollenix is a B2B platform; the marketing site is not directed to children under 16. We do not knowingly collect their information.

8. Changes

Material changes will be announced on this page with a new "last updated" date and, where appropriate, a banner. Continued use after a change indicates acceptance.

9. Contact

Email privacy@pollenix.ai for any privacy question. For security or vulnerability disclosures use security@pollenix.ai.

DOC · privacy · v1 · MAY 6, 2026