CrystalView

CrystalView.ai Privacy Policy

Effective Date: 08/01/2025 Last Updated: 08/01/2025

1. Introduction

Welcome to CrystalView. We are a company operating out of California, and we are committed to protecting the privacy and security of your personal information. This Privacy Policy is designed to help you understand how we collect, use, and safeguard your data when you use our AI financial application and services (the "Services").

By using our Services, you consent to the data practices described in this policy. We serve a global user base and, as such, have designed this policy to meet the standards of the most stringent global privacy regulations, including but not limited to the California Consumer Privacy Act (CCPA) and the General Data Protection Regulation (GDPR).

2. Data We Collect

We collect information to provide, improve, and secure our Services. The types of data we collect depend on how you interact with our application.

Personal Information

This is information that can be used to identify you directly. It includes:

  • Contact Information: your name, email address, phone number, etc.
  • Account Information: your username and password, security questions, or other credentials, etc
  • Sensitive Financial Information: Because our Services involve connecting with your financial systems, we collect and process sensitive information. This may include credentials for connecting into your financial systems.

Client Metadata and Usage Data

This is information generated by your use of our Services. It helps us understand how our application is being used and how we can improve it. This may include:

  • Usage Information: data on how you use our application, pages you visit, features you interact with, queries that you ask the system and any feedback you provide.
  • Device Information: We may also store your IP address, device type, operating system, browser type.
  • Log Data: logs of your activities on our platform.
  • Aggregated Data: We may aggregate or anonymize data to create statistical or demographic information. This data cannot be used to identify you and is used for research and development.

3. How We Use Your Data

We use the data we collect for the following purposes:

  • To Provide and Manage our Services: To connect to your financial accounts, analyze your financial data, and provide the core functionality of our AI application.
  • To Store Credentials: To provide a seamless experience, we store your financial credentials in a highly secure, encrypted manner. This allows our AI to access your financial data and provide continuous service without requiring you to re-enter your credentials repeatedly.
  • To Improve and Personalize our Services: To analyze user trends, train our AI models, and customize the Services to your needs.
  • To Communicate with You: To send you service updates, security alerts, and customer support messages. We may also send you marketing communications, but you can opt out at any time.
  • For Security and Fraud Prevention: To protect against unauthorized access, fraud, and other malicious activity.
  • For Legal and Regulatory Compliance: To meet our legal obligations and respond to legal requests from courts, law enforcement, or other government bodies.

4. How We Store and Protect Your Data

We are committed to the security of your data. We use a variety of technical and organizational measures to protect your information:

  • Encryption: We encrypt all sensitive data, including financial credentials, both in transit and at rest.
  • Access Controls: Access to your data is restricted to authorized personnel who have a legitimate business need.
  • Regular Audits: We conduct regular security audits and vulnerability assessments to maintain the highest level of security.
  • Data Retention: We only retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including for satisfying any legal, accounting, or reporting requirements. For financial records, this may be dictated by regulatory requirements (e.g., 7 years).

5. How We Share Your Data

We do not sell your personal information. We may share your data in the following limited circumstances:

  • Third-Party Service Providers: We use trusted third-party service providers to help us operate our business, such as cloud hosting providers, data analytics services, and customer support platforms. These providers are contractually obligated to protect your data and only use it for the purposes we specify.
  • Financial Institutions: We may share data with financial institutions as necessary to provide our Services, with your explicit consent.
  • Legal Compliance: We may disclose your information if we are required to do so by law, such as to comply with a subpoena or other legal process.
  • Business Transfers: If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

6. Your Privacy Rights

You have certain rights regarding your personal data. We are committed to honoring those rights.

Global Rights

  • Right to Access: You have the right to request a copy of the personal information we hold about you.
  • Right to Rectification: You can request that we correct any inaccurate or incomplete personal information we have about you.
  • Right to Deletion: You can request that we delete your personal information, subject to certain exceptions (e.g., to comply with a legal obligation).
  • Right to Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to Object: You can object to our processing of your personal data for certain purposes, such as direct marketing.

California-Specific Rights (CCPA/CPRA)

If you are a California resident, you have additional rights:

  • Right to Opt-Out of Sale or Sharing: We do not sell or share your personal information. If our practices change, we will provide a clear "Do Not Sell or Share My Personal Information" link.
  • Right to Limit Sensitive Personal Information: You have the right to limit the use and disclosure of your sensitive personal information to specific purposes. Our use of your sensitive financial information is strictly limited to providing you with the Services you have requested.

EU/UK-Specific Rights (GDPR)

If you are a resident of the European Union or the United Kingdom, you have additional rights:

  • Lawful Basis: We will process your data based on a lawful basis, such as your explicit consent or our contractual relationship with you.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority.

To exercise any of these rights, please contact us using the details in the "Contact Us" section below.

7. Children's Privacy

Our Services are not intended for children under the age of 16. We do not knowingly collect personal information from children without parental consent. If you are a parent or guardian and believe we have collected information from your child, please contact us immediately.

8. Changes to this Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will notify you by a prominent notice on our website. The updated policy will be effective as of the "Last Updated" date.

9. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your privacy rights, please contact us at:

Email: contact@crystalview.ai