Privacy Policy

Effective Date: Jun 05, 2025

1. Introduction

Cellilox Limited (“Company,” “we,” “us,” or “our”) is committed to protecting the privacy and security of the personal information we collect from our users (“you” or “your”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our SaaS applications, or otherwise interact with us. By accessing or using our Services, you agree to this Privacy Policy in addition to our Terms of Service.

2. Definitions

• Account: Your registered user profile on our platform, including credentials (e.g., email, password) and associated data.
• Personal Information: Any information that can be used to identify you, either directly or indirectly (e.g., name, email address, billing address).
• Usage Data: Information about how you interact with our Services (e.g., IP address, device type, pages viewed, actions taken).
• Services: All features, functionalities, and offerings provided through our SaaS platform, including web and mobile interfaces.
• Third-Party Services: Services provided by vendors or partners (e.g., payment processors, analytics providers) that we might integrate with or utilize to operate our platform.

3. Information We Collect

3.1 Information You Provide Directly

• Registration & Account Setup: When you create an account, we collect your name, email address, organization, and a password.
• Payment Information: We collect billing details (e.g., credit card number, billing address) when you subscribe to a paid plan. Payment data is processed by a reputable third-party payment processor (e.g., Stripe, PayPal) and is not stored on our servers.
• Profile & Communication: You may choose to provide additional profile information (e.g., phone number, job title) and communicate with us via support tickets, chat, or email.

3.2 Automatically Collected Information

• Usage Data: Each time you access or use our Services, we collect data about your device (IP address, browser type/version, operating system), access times, pages/screens viewed, and actions performed within the application.
• Cookies & Tracking Technologies: We use cookies, web beacons, and similar technologies to recognize your browser or device, enable certain features, and collect analytics data (see Section 7 for details).

3.3 Information from Third Parties

• Social Logins: If you choose to log in via a third-party service (e.g., Google, LinkedIn), we receive your name, email address, and profile picture (where permitted by that service).
• Third-Party Integrations: If you integrate our Service with other platforms (e.g., GitHub, Slack, CRMs), we may receive data from those services as necessary to provide the integration.

4. How We Use Your Information

• Provide, Maintain, and Improve Our Services:
  • To authenticate and manage your account.
  • To process payments and manage subscription billing.
  • To monitor, analyze, and optimize platform performance, feature usage, and overall user experience.
• Communication & Support:
  • To respond to your inquiries, provide customer support, and send administrative messages (e.g., account confirmations, password resets, security alerts).
  • To send you technical notices, updates, and policy changes.
• Marketing & Promotions (With Consent):
  • To send newsletters, promotional materials, or targeted advertisements about new features, events, or other news we think may interest you.
  • You can opt out of marketing communications at any time by following the unsubscribe link in those emails or contacting us: hello@support.cellilox.com.
• Analytics & Research:
  • To understand how users interact with our Services, develop new features, and refine existing ones.
  • To detect and prevent fraud, abuse, or security incidents.
• Compliance & Legal Obligations:
  • To comply with applicable legal requirements, industry standards, or lawful requests by public authorities (e.g., to meet national security or law enforcement requirements).
  • To enforce our Terms of Service, policies, or protect our rights, property, or safety, and those of our users or others.

5. Sharing and Disclosure of Your Information

5.1 Service Providers & Partners

We may share your Personal Information with trusted third-party service providers who perform functions on our behalf, such as:

• Payment Processors: To bill you and process subscription payments.
• Cloud Hosting & Infrastructure Providers: To store and serve your data securely.
• Analytics & Monitoring Tools: To collect and analyze Usage Data.
• Customer Support Platforms: To manage and respond to support tickets.
• Marketing & Email Service Providers: To send you marketing communications (with your consent).

All third parties are contractually obligated to keep your data confidential and use it solely to provide the requested services.

5.2 Business Transfers

If the Company undergoes a merger, acquisition, reorganization, bankruptcy, or sale of assets, Personal Information may be transferred as part of that transaction. We will notify you via email or prominent notice on our website if ownership or control of your Personal Information changes.

5.3 Legal Requirements & Protection of Rights

We may disclose your Personal Information if required to do so by law or subpoena, in response to valid governmental requests, or to comply with other legal obligations. We may also share information when we believe, in good faith, that disclosure is necessary to:

• Enforce our Terms of Service or other agreements.
• Investigate, prevent, or take action regarding illegal activities, suspected fraud, threats to safety, or violation of our policies.

5.4 Aggregated/De-identified Information

We may aggregate or de-identify the data we collect to produce reports or analytics that do not personally identify you. This information may be shared publicly or with third parties for any purpose.

6. Cookies and Tracking Technologies

We use cookies, web beacons, and other tracking technologies to:

• Authenticate your session and keep you logged in.
• Remember your preferences and settings.
• Analyze usage trends and collect analytics.
• Provide targeted marketing and advertising.

Most browsers allow you to reject or delete cookies. However, disabling cookies may prevent you from fully utilizing certain features of our Services. For more details, see our Cookie Policy.

7. Data Retention

We retain your Personal Information for as long as necessary to provide our Services and for legitimate and lawful business purposes, such as:

• Account maintenance and record-keeping.
• Complying with legal obligations (e.g., tax, regulatory).
• Resolving disputes, enforcing our agreements, and preventing abuse.

After retention periods expire, we securely delete or anonymize your information in accordance with applicable laws and regulations. If you choose to delete your account, we will remove your Personal Information within thirty (30) days after your request, except for data we are required to retain for legal or auditing purposes or de-identified/aggregated data that cannot be tied back to you.

8. Security of Your Information

We implement a variety of technical, administrative, and physical safeguards to protect your Personal Information from unauthorized access, disclosure, alteration, or destruction, including but not limited to:

• Encryption: We use industry-standard encryption (TLS/SSL) for data in transit and encryption at rest for sensitive data stored on our servers.
• Access Controls: Access to Personal Information is limited to authorized personnel on a "need-to-know" basis.
• Regular Audits & Monitoring: We conduct routine security assessments and vulnerability scans to identify and remediate potential risks.
• Secure Development Practices: Our engineering teams follow secure coding standards and conduct code reviews and penetration testing.

Despite these measures, no method of transmission or storage can be guaranteed 100% secure. You acknowledge that you provide Personal Information at your own risk.

9. Third-Party Links & Embedded Content

Our website or application may contain links to third-party websites, services, or integrations (e.g., social media platforms, payment gateways). We do not control and are not responsible for the privacy practices of those third parties. We encourage you to review the privacy policies of any third-party sites you visit. This Privacy Policy applies only to information we collect.

10. Children's Privacy

Our Services are not directed at children under the age of 13 (or the applicable age in jurisdictions where higher). We do not knowingly collect Personal Information from children under the age of 13. If you become aware that a child has provided us with Personal Information, please contact us immediately at hello@support.cellilox.com, and we will take steps to delete such information promptly.

11. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your Personal Information:

• Access & Portability: You can request a copy of the Personal Information we hold about you in a portable, machine-readable format.
• Correction: You can update or correct inaccurate or incomplete information.
• Deletion ("Right to Be Forgotten"): You can request that we delete your Personal Information, subject to exceptions (e.g., legal obligations).
• Restriction of Processing: You can ask us to limit how we process your data.
• Data Portability: You can request to receive your data in a structured, commonly used, and machine-readable format for transfer to another controller.
• Objection: You can object to certain processing activities, such as direct marketing or profiling.
• Withdraw Consent: If we process your Personal Information based on consent, you can withdraw that consent at any time without affecting prior lawful processing.

To exercise any of these rights, please contact us at hello@support.cellilox.com. We may request reasonable information to confirm your identity before fulfilling your request. Note that certain legal obligations or legitimate business interests may prevent us from fully honoring your request, in which case we will inform you.

12. International Data Transfers

If you are located outside of Rwanda and use our Services, your Personal Information may be transferred to, stored, and processed in Rwanda or other jurisdictions. These countries may have data protection laws that are different from those in your jurisdiction. Whenever we transfer Personal Information internationally, we ensure that it is protected in accordance with this Privacy Policy and applicable law (e.g., using Standard Contractual Clauses or other approved transfer mechanisms).

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons.

• Notification of Changes: If we make material changes, we will notify you by email (sent to the address on file) or by posting a notice on our website 30 days before the changes take effect.
• Your Continued Use: By continuing to access or use our Services after those changes become effective, you agree to be bound by the revised Privacy Policy. If you do not agree with the changes, you must stop using the Services and may request deletion of your account as described above.

14. Contact Us

If you have questions, concerns, or complaints regarding this Privacy Policy or our privacy practices, please contact us:

Support Email: hello@support.cellilox.com

Acknowledgment

By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree, please do not use our Services.