Privacy Policy

---

Effective Date: February 1, 2026

Last Updated: February 3, 2026

At Ample One Technologies ("Ample One," "we," "us," or "our"), we provide proprietary AI-driven engagement frameworks and NLP-as-a-Service. This Privacy Policy explains how we collect, use, and protect data when you interact with our platform, APIs, and enterprise services.

We collect information necessary to provide high-performance AI infrastructure:

• Account & Billing Data: Name, business email, corporate address, and payment details (processed via secure third-party processors).
• API Usage Data: Metadata related to API calls (timestamps, request volume, and endpoint usage) for billing and infrastructure optimization.
• Technical Data: IP addresses, browser types, and device identifiers collected via logs for security and performance monitoring.
• Customer-Provided Content: Data submitted via our NLP APIs (e.g., text for analysis). Note: Ample One acts as a Data Processor for this content.

• Service Provision: To maintain our NLP-as-a-Service and engagement frameworks.
• Billing & Licensing: To calculate usage-based fees and manage enterprise licenses.
• AI Infrastructure Optimization: To monitor system health, reduce latency, and ensure high concurrency.
• Security: To detect and prevent fraudulent API usage or unauthorized access.

• Transparency: When using our NLP services, you are interacting with an Artificial Intelligence system.
• Training Disclosure: We do not use Customer-Provided Content submitted through our Enterprise APIs to train our base proprietary models without explicit, written opt-in consent.
• Automated Decision-Making (ADMT): Our frameworks provide engagement insights. However, the final implementation of these insights is controlled by the enterprise client. We do not perform "high-risk" automated profiling as defined by the EU AI Act unless specifically contracted under a dedicated compliance framework.

We do not sell your personal data. We share information only with:

• Infrastructure Providers: Cloud hosting (e.g., AWS, GCP) for data storage and processing.
• Compliance & Legal: When required by law or to protect our legal rights.
• Sub-processors: A list of our current technical sub-processors is available upon request for enterprise DPA (Data Processing Addendum) execution.

• Retention: API logs are retained for 12 months for security audits, while billing data is kept for the duration required by tax law (typically 7 years).
• Security Standards: We utilize AES-256 encryption at rest and TLS 1.3 in transit. Our infrastructure undergoes regular SOC 2 Type II audits.

Depending on your jurisdiction (GDPR, CCPA/CPRA, etc.), you have the following rights:

• Access & Portability: Request a copy of your personal data in a structured format.
• Deletion & Correction: Request that we erase or update inaccurate data.
• Opt-Out of ADMT: The right to object to automated decision-making.
• Do Not Sell or Share: We honour Global Privacy Control (GPC) signals and provide a "Do Not Sell/Share" mechanism for California residents.

For privacy inquiries or to exercise your rights: Privacy Office Ample One Technologies

Email: admin@ampleonetechnologies.com

Address: 2112 Chestnut Street, Suite 560, Alhambra, CA 91830