Introduction

Tasty Risk AI ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-driven risk management platform and related services.

Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access or use our services. We reserve the right to make changes to this Privacy Policy at any time and for any reason.

This policy applies to all users of our platform, including entrepreneurs, business owners, and financial professionals who utilize our AI-powered risk management tools and analytics services.

Information We Collect

Personal Information

We may collect personal information that you provide directly to us, including:

• Full name, email address, and phone number for account creation and communication
• Business information including company name, industry, and professional details
• Financial information necessary for risk assessment and portfolio analysis
• Account credentials and authentication information for secure platform access
• Payment information for subscription and billing purposes
• Investment preferences, risk tolerance, and financial goals
• Communication preferences and notification settings
• Profile information including professional background and experience level
• Support ticket information and customer service interactions
• Survey responses and feedback provided voluntarily

Usage Information

We automatically collect certain information about your use of our services:

• Device information including browser type, operating system, and device identifiers
• IP address, location data, and geographic information
• Usage patterns, feature utilization, and interaction data within our platform
• Performance metrics, error logs, and system diagnostics
• Session duration, page views, and navigation patterns
• Search queries and filter preferences within our platform
• Time stamps and frequency of platform usage
• Integration data from connected third-party services
• API usage statistics and data transfer metrics

Financial Data

With your explicit consent, we may collect and process:

• Portfolio composition and asset allocation information
• Investment performance data and historical returns
• Risk metrics and exposure analysis data
• Trading activity and transaction history (when integrated)
• Market data preferences and watchlist information
• Compliance and regulatory reporting data

How We Use Your Information

We use the information we collect for various legitimate business purposes, including:

• Providing and maintaining our AI-driven risk management services and platform functionality
• Processing transactions, managing subscriptions, and handling billing operations
• Improving our AI algorithms, platform functionality, and user experience
• Communicating with you about our services, updates, and important notifications
• Ensuring compliance with regulatory requirements and industry standards
• Detecting, preventing, and investigating fraud, security breaches, and unauthorized access
• Providing customer support and technical assistance
• Conducting research and analytics to improve our services and develop new features
• Personalizing your experience and providing customized recommendations
• Sending marketing communications and promotional materials (with your consent)
• Generating anonymized and aggregated data for business intelligence purposes
• Complying with legal obligations and responding to lawful requests

Information Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties except in the following circumstances:

• With your explicit written consent for specific purposes
• To comply with legal obligations, court orders, or regulatory requirements
• To protect our rights, property, safety, or the safety of our users
• With trusted service providers who assist in our operations under strict confidentiality agreements
• In connection with a business transfer, merger, acquisition, or sale of assets
• To prevent fraud, investigate security incidents, or enforce our terms of service
• With financial institutions for payment processing and fraud prevention
• With regulatory bodies as required for compliance reporting
• With professional advisors including lawyers, accountants, and auditors
• In anonymized or aggregated form that cannot identify individual users

Data Security

We implement comprehensive technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• End-to-end encryption of data in transit using TLS 1.3 and at rest using AES-256
• Regular security assessments, penetration testing, and vulnerability scans
• Multi-factor authentication and advanced access controls for all user accounts
• Employee training on data protection practices and security protocols
• Secure data centers with physical security controls and environmental monitoring
• Regular backup procedures and disaster recovery planning
• Network security monitoring and intrusion detection systems
• Secure software development practices and code review processes
• Third-party security certifications and compliance audits
• Incident response procedures and breach notification protocols
• Data minimization practices and regular data purging schedules

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

• Account information is retained for the duration of your active subscription plus 7 years for regulatory compliance
• Financial data and transaction records are kept for 7 years as required by financial regulations
• Usage analytics and performance data are retained for 3 years for service improvement
• Communication records are kept for 5 years for customer service and legal purposes
• Marketing data is retained until you opt out or for 2 years of inactivity
• Security logs and audit trails are maintained for 1 year for incident investigation
• Backup data is automatically purged according to our data retention schedule
• Anonymized and aggregated data may be retained indefinitely for research purposes

Your Privacy Rights

Depending on your location and applicable laws, you may have certain rights regarding your personal information:

• Right to access and review your personal data stored in our systems
• Right to correct, update, or rectify inaccurate information
• Right to delete your personal information (subject to legal retention requirements)
• Right to restrict or limit the processing of your data
• Right to data portability and to receive your data in a structured format
• Right to object to processing based on legitimate interests
• Right to withdraw consent for data processing activities
• Right to lodge a complaint with supervisory authorities
• Right to opt out of marketing communications and promotional materials
• Right to request information about data sharing with third parties
• Right to receive notification of data breaches affecting your information

To exercise these rights, please contact us at privacy@tastyriskai.com or call us at +1 (718) 423-6905. We will respond to your request within 30 days.

International Data Transfers

Your information may be transferred to and processed in countries other than your own:

• We ensure adequate protection through appropriate safeguards and legal mechanisms
• Standard Contractual Clauses are used for transfers to countries without adequacy decisions
• We comply with GDPR requirements for international transfers from the European Union
• Third-party service providers may process data in different jurisdictions under strict agreements
• We regularly review and update our transfer mechanisms to ensure ongoing compliance
• Users can request specific information about transfer arrangements for their data
• We maintain detailed records of all international data transfers and their legal basis

Children's Privacy

Our services are not intended for individuals under the age of 18:

• We do not knowingly collect personal information from children under 18
• If we become aware of such collection, we will delete the information immediately
• Parents or guardians can contact us to request deletion of their child's information
• Our platform requires users to confirm they are 18 or older during registration
• We implement age verification measures where technically feasible

Contact Us About Privacy

If you have questions about this Privacy Policy or our data practices, please contact us: