In Short: We collect personal information that you provide to us.
We collect personal information that you voluntarily provide when you register on the Services, request information about our products, participate in activities on the Services, or otherwise contact us.
Personal Information Provided by You. The data we collect depends on the context of your interactions with us and the Services. It may include:
Sensitive Information. With your consent, or as permitted by law, we may process sensitive information such as financial data.
Payment Data. We collect data needed to process payments (e.g., card number and security code). All payment data is handled by Stripe.
Social Media Login Data. If you register using a social-media account we receive profile information from that provider (see HOW DO WE HANDLE YOUR SOCIAL LOGINS?).
All personal information you provide must be true, complete, and accurate, and you must notify us of any changes.
In Short: Some information — such as your IP address and device characteristics — is collected automatically when you visit our Services.
We collect device and usage information to maintain the security and operation of our Services and for internal analytics. Like many businesses, we also use cookies and similar technologies (see our Cookie Notice: http://www.cutlet.io/cookies).
This includes:
Our use of information received from Google APIs complies with the Google API Services User Data Policy, including its Limited Use requirements.
In Short: We may get limited data from public databases, marketing partners, social-media platforms, and other outside sources.
Examples include mailing addresses, job titles, social-media profiles, and intent data, which help us provide relevant marketing and update our records. If you interact with us via social media, the information we receive depends on your settings on that platform.
In Short: We process your information to provide, improve, and administer our Services, communicate with you, protect against fraud, and comply with laws. We may also process your information for other purposes with your consent.
We process your personal information for a variety of reasons, including:
In Short: We share information in specific situations and with specific third parties as described below.
We may disclose your personal information in the following scenarios:
In Short: Yes — we may use cookies and other tracking technologies to collect and store your information.
We use cookies and similar technologies (web beacons, pixels, etc.) to gather information when you interact with our Services. They help keep the site secure, prevent crashes, remember your preferences, and power basic functions.
We also let certain third-party partners place tracking technologies on our Services for analytics and advertising (for example, to tailor ads to your interests or send abandoned-cart reminders, if you’ve opted in).
Where these technologies count as a “sale” or “sharing” of personal information under US state laws, you can opt out as explained in DO UNITED STATES RESIDENTS HAVE SPECIFIC PRIVACY RIGHTS?
For full details, see our Cookie Notice: http://www.cutlet.io/cookies.
We use Google Analytics to understand how the Services are used. Advertising features may include Remarketing with Google Analytics, Google Display Network Impression Reporting, and Google Analytics Demographics & Interests Reporting.
To opt out, install the Google Analytics Opt-out Add-on, adjust your Ads Settings, or visit optout.networkadvertising.org and networkadvertising.org/mobile-choice. Google’s full privacy policy is available here.
In Short: Yes — certain features and tools in our platform are powered by artificial-intelligence (AI), machine-learning, or similar technologies (“AI Products.”)
Our AI Products are provided through trusted third-party service providers (“AI Service Providers”) such as OpenAI and Anthropic. Your prompts (inputs), the generated content (outputs), and any personal information contained in either will be shared with these AI Service Providers solely to deliver or improve the requested functionality, as explained in WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?
You may not use our AI Products in ways that violate the terms or policies of any AI Service Provider. Your use of AI features remains subject to this Privacy Policy.
The current AI-powered capabilities include:
Any personal information processed through AI Products is handled in accordance with this Privacy Policy and our agreements with AI Service Providers. We apply appropriate technical and organisational safeguards to protect your data throughout the AI workflow.
In Short: We keep your information only as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer period is required by law.
We maintain personal data for the duration of your account and any ongoing legitimate business need (for example, to comply with tax, accounting, or legal obligations). No purpose outlined in this notice requires us to retain your information longer than the period in which you have an active account with us.
When we no longer have a legitimate need to process your personal data, we will delete or anonymize it. If immediate deletion isn’t possible (e.g., because the data is stored in backup archives), we will securely isolate and protect the information from any further processing until deletion is possible.
In Short: We aim to protect your personal information through a system of organizational and technical security measures.
We have implemented appropriate and reasonable administrative, technical, and physical safeguards designed to protect the security of any personal information we process. However, despite our safeguards and efforts, no electronic transmission over the Internet or information-storage technology can be guaranteed to be 100% secure. We therefore cannot promise or guarantee that hackers, cyber-criminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your data.
Although we will do our best to protect your personal information, transmission of personal information to and from our Services is at your own risk. You should only access the Services within a secure environment.
In Short: We do not knowingly collect data from or market to children under 18 years of age.
We do not knowingly collect, solicit data from, or market to children under 18 years of age, nor do we knowingly sell such personal information. By using the Services, you represent that you are at least 18—or that you are the parent or guardian of a minor and consent to that minor’s use of the Services. If we learn that personal information from users less than 18 years of age has been collected, we will deactivate the account and promptly delete such data from our records. If you become aware of any data we may have collected from children under 18, please contact us at support@cutlet.io.
In Short: You may review, change, or terminate your account at any time, and—depending on your location—you may have additional rights regarding your personal information.
These rights can include:
To exercise any of these rights, contact us:
We’ll verify your identity before processing any request and may ask for additional information for security or fraud-prevention purposes. If we deny your request, you can appeal by emailing us again; instructions will be included in our response.
To review, change, or delete information in your account, you can:
Upon your request to terminate your account, we’ll deactivate or delete it and remove information from our active databases. We may retain some data to prevent fraud, assist investigations, or comply with legal obligations.
Cookies and similar technologies: Most browsers accept cookies by default, but you can remove or reject them in your browser settings. For details, see our Cookie Notice.
Questions or comments about your privacy rights? Email us at support@cutlet.io.
In Short: Most browsers and some mobile systems include a “Do-Not-Track” (“DNT”) setting that you can activate to signal your preference not to be tracked online. At this time, no uniform standard for recognizing or responding to DNT signals has been adopted, so we do not currently respond to DNT browser signals or other mechanisms that automatically communicate your choice not to be tracked. If such a standard is adopted in the future, we’ll update this Privacy Notice accordingly.
California law also requires us to state how we respond to DNT signals. Because no industry or legal standard exists, we do not respond to them at this time.
In Short: Residents of California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia may have additional rights regarding their personal information—such as rights to access, correct, delete, limit, or opt-out of certain processing. These rights can differ by state and are subject to legal limits.
The table below lists the categories of personal information we have collected in the last 12 months. (For full details, see “WHAT INFORMATION DO WE COLLECT?” .)
| Category | Examples | Collected |
|---|---|---|
| A. Identifiers | Name, postal address, email address, telephone number, unique identifier, IP address, account name | YES |
| B. Personal info under CA Customer Records statute | Name, contact details, education, employment history, financial information | YES |
| C. Protected classification characteristics | Age, gender, race or ethnicity, national origin, marital status, etc. | NO |
| D. Commercial information | Transaction records, purchase history, payment details | NO |
| E. Biometric information | Fingerprints, voiceprints, iris/facial templates | NO |
| F. Internet or similar network activity | Browsing history, search history, online interactions, interest data | NO |
| G. Geolocation data | Device/location information (e.g., IP-based city or country) | YES |
| H. Audio / visual or similar info | Images, audio or call recordings created in connection with our business | NO |
| I. Professional or employment-related info | Job title, work history, professional qualifications (e.g., job applicants) | YES |
| J. Education information | Student records, directory information | NO |
| K. Inferences drawn from personal information | Profiles reflecting preferences, characteristics, behavior | NO |
| L. Sensitive personal information | Account log-in, debit/credit-card details, contents of email or text messages | YES |
We collect sensitive personal information only for the purposes permitted by law or with your explicit consent, and we do not use it to infer additional characteristics about you.
6. HOW DO WE HANDLE YOUR SOCIAL LOGINS?
In Short: If you choose to register or log in to our Services using a social-media account, we may receive certain information about you.
Our Services let you sign in with third-party social platforms (for example, Facebook or X). When you do, we obtain profile information from that provider. The precise data depends on the platform’s settings but often includes your name, email address, friends list, profile photo, and any details you have chosen to make public.
We use this data solely for purposes described in this Privacy Policy (or as otherwise made clear at the point of collection), such as to create or link your account and personalize your experience. We do not control, and are not responsible for, how the social-media provider uses your information. Please review their privacy notice to learn about their data practices and how to adjust your settings on their site or app.