Privacy Policy

Last updated: January 2026

1. Introduction

This Privacy Policy describes how Autometa Solutions ("we," "our," or "us") collects, uses, and shares information in connection with your use of our website (autometasolutions.com), products, and services (collectively, the "Services"). This policy applies to all users of our Services worldwide, including users in the European Economic Area (EEA) and the United Kingdom.

1.1 Scope

This privacy policy covers:
• The Autometa Solutions website (autometasolutions.com)
• The ETL++ Airtable extension
• Custom automation and software development services
• CRM, ERP, and marketing automation services
• Any related services and features we provide

1.2 Data Controller

Autometa Solutions is the data controller responsible for your personal data. For questions about this Privacy Policy or our data practices, please contact us at: requests@autometasolutions.com

2. Information We Collect

2.1 Account Information

When you sign up for our Services (such as ETL++), we collect:
• Email address
• Name
• Company information (optional)
• Billing information (processed by our payment providers)

2.2 Service Data

We collect and store:
• API request configurations (not the fetched data itself)
• OAuth access and refresh tokens for third-party service connections
• Airtable API credentials (encrypted)
• Metadata about your API requests including URLs, record counts, and destinations
• Project requirements and communications for custom development services

2.3 Temporary Processing

• Response data from third-party applications temporarily passes through our servers to update your Airtable base but is not stored permanently
• All data in transit is encrypted using industry-standard protocols

2.4 Website Usage Data

We may collect information about how you interact with our website, including:
• Pages visited and time spent
• Referring website or source
• Browser type and device information
• IP address (anonymized where possible)

3. How We Use Your Information

3.1 Service Provision

We use your information to:
• Create and manage your account
• Save your API request configurations
• Run your scheduled API requests
• Process your payments
• Send service-related communications
• Deliver custom automation and development services
• Improve and optimize our Services

3.2 Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA) and UK, we process your personal data based on the following legal grounds:

• Contract Performance: Processing necessary to provide our Services to you (e.g., account management, running your ETL jobs, delivering custom development work)
• Legitimate Interests: Processing necessary for our legitimate business interests, such as improving our Services, preventing fraud, and ensuring security, where these interests are not overridden by your rights
• Consent: Where you have given us explicit consent to process your data for specific purposes (e.g., marketing communications). You may withdraw consent at any time
• Legal Obligation: Processing necessary to comply with our legal obligations

3.3 Data Storage and Processing

• Account information and API configurations are stored in secure, encrypted databases
• Sensitive information including API keys and OAuth tokens is encrypted at rest
• Payment processing is handled through secure third-party processors (we do not store full payment card details)
• We use privacy-focused analytics to improve our service

4. Data Security

4.1 Security Measures

• We employ bank-level encryption (AES-256) for all sensitive information
• Our systems require multi-factor authentication for administrative access
• We implement role-based access systems to limit internal data access
• All data transfers use SSL/TLS encryption
• Regular security audits and vulnerability assessments

4.2 Data Retention

• We retain your data as long as your account is active or as needed to provide Services
• Upon account deletion request, your data will be permanently deleted within 30 days
• Some data may be retained longer if required by law or for legitimate business purposes (e.g., tax records)
• Backup data is securely deleted according to our data retention schedule
• For custom development projects, project files are retained for 90 days after project completion unless otherwise agreed

5. Your Privacy Rights

5.1 Rights for All Users

You have the right to:
• Access - Request copies of your personal data
• Rectification - Request correction of inaccurate information
• Erasure - Request deletion of your personal data ("right to be forgotten")
• Restrict processing - Limit how we process your data
• Data portability - Request transfer of your data in a machine-readable format
• Object to processing - Opt out of certain data processing activities

5.2 Additional Rights for EEA and UK Residents (GDPR)

If you are located in the European Economic Area or United Kingdom, you also have the right to:

• Withdraw consent - Where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal
• Lodge a complaint - You have the right to lodge a complaint with your local data protection supervisory authority if you believe we have violated your privacy rights. A list of EU Data Protection Authorities can be found at: https://edpb.europa.eu/about-edpb/about-edpb/members_en

• Object to automated decision-making - You have the right not to be subject to decisions based solely on automated processing that significantly affect you

5.3 Exercising Your Rights

To exercise any of these rights, please contact us at requests@autometasolutions.com. We will respond to your request within 30 days (or within the timeframe required by applicable law). We may need to verify your identity before processing your request. There is no fee for most requests, but we may charge a reasonable fee for repetitive or excessive requests.

6. Cookies and Tracking Technologies

Our website may use cookies and similar tracking technologies to improve your experience. These include:

• Essential cookies: Required for basic website functionality
• Analytics cookies: Help us understand how visitors use our site (we use privacy-focused analytics)
• Preference cookies: Remember your settings and preferences

You can control cookies through your browser settings. Note that disabling certain cookies may affect website functionality.

7. Third-Party Services

Our Services integrate with third-party platforms including Airtable, Salesforce, HubSpot, Stripe, and various APIs. When you connect these services:

• You are also subject to their respective privacy policies and terms of service
• We only access data necessary to provide our Services
• We do not sell your data to third parties
• We may share data with service providers who assist in operating our Services (e.g., cloud hosting, payment processing), under strict confidentiality agreements

We encourage you to review the privacy practices of any third-party services you connect through our platform.

8. International Data Transfers

We process and store information primarily in the United States. If you are located in the EEA, UK, or other regions with data protection laws, please note that your data will be transferred to and processed in the United States.

When we transfer personal data internationally, we implement appropriate safeguards to ensure your data remains protected, including:
• Standard Contractual Clauses (SCCs) approved by the European Commission
• Data processing agreements with our service providers
• Technical and organizational security measures

You may request a copy of the safeguards we use by contacting us at requests@autometasolutions.com.

9. Children's Privacy

Our Services are not directed to children under 16 (or under 13 in the United States), and we do not knowingly collect personal information from children. If we learn we have collected personal information of a child under the applicable age, we will delete such information immediately. If you believe we may have collected information from a child, please contact us.

10. Data Breach Notification

In the event of a data breach that affects your personal data, we will:
• Notify the relevant supervisory authority within 72 hours where required by GDPR
• Notify affected users without undue delay if the breach is likely to result in high risk to your rights and freedoms
• Document the breach and our response measures

11. Changes to Our Privacy Policy

Autometa Solutions keeps its privacy policy under regular review and places any updates on this web page. We will notify you of any significant changes by updating the "Last Updated" date at the top of this policy and, where appropriate, sending you a notification via email or through our Services.

12. Contact Us

If you have any questions about this Privacy Policy, our data practices, or wish to exercise your rights, please contact us at:

Autometa Solutions
Email: requests@autometasolutions.com
Website: autometasolutions.com

For privacy-specific inquiries, please include "Privacy Request" in your email subject line.