Back

Privacy Policy for Avandar Labs

Last Updated: December 29, 2025

This Privacy Policy describes how Avandar Labs ("we," "us," or "our") collects, uses, and discloses your information when you use our website, products, and services (collectively, the "Services"). We are committed to protecting your privacy and handling your data in a transparent and secure manner.

By accessing or using our Services, you agree to the terms of this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use our Services.

1. Who We Are

Avandar Labs

1007 N Orange St. Fl 4 Ste 3770, Wilmington, DE 19801, United States

Website: https://www.avandarlabs.com

Contact for Privacy Inquiries: privacy@avandarlabs.com

2. Information We Collect

We collect various types of information to provide and improve our Services.

A. Information You Provide to Us

  • Name and Email Address: We collect your name and email address when you register for an account, subscribe to updates, or communicate with us. This information is used for communication, sending updates, and personalizing your experience on our platform.
  • User-Uploaded Information: When you use our data management platform, you may upload raw data or connect to third-party data sources. This data is essential for the delivery of our Services, as the platform is designed to process and manage your data.
  • App-Generated Data: As you use our platform, we collect metadata and other information you generate within the application, such as rules, queries, and configurations. This data is used for service delivery to provide the data platform for your use.

B. Information Collected Automatically

  • Device and Browser Information: We collect information about the device and browser you use to access our Services, such as device type, operating system, and browser type. This information is used for usage analytics to optimize the platform and improve your experience. We do not collect IP addresses.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To Provide and Maintain Our Services: This includes operating our website, providing access to our data management platform, and delivering the functionalities you request.
  • To Improve and Personalize Our Services: We use data to understand how our Services are used, identify areas for improvement, and personalize your experience.
  • To Communicate with You: We use your contact information to send you updates, respond to your inquiries, and provide customer support.
  • For Analytics and Research: We analyze usage patterns to enhance the performance, features, and user experience of our Services.
  • To Ensure Security: We use information to detect and prevent fraud, abuse, and other harmful activities, and to maintain the security of our Services.

4. Legal Basis for Processing Your Information

We process your personal information based on the following legal grounds:

  • Consent: We process certain data, such as your name and email for updates and personalization, based on your explicit consent. You have the right to withdraw your consent at any time.
  • Legitimate Interest: We process device and browser information for usage analytics based on our legitimate interest in optimizing our platform and improving user experience. This processing does not involve personally identifiable information (PII) and is conducted in a way that respects your privacy.
  • Contractual Necessity: We process user-uploaded data and app-generated data as necessary to fulfill our contractual obligations to you by providing our data management platform services.

5. Data Handling Practices for User-Uploaded Data

  • Offline-Only Datasets: Any dataset you manually upload can be selected to be offline-only. This means the data will not be stored in our cloud infrastructure. However, please note that offline-only datasets cannot be shared or served to team members within a workspace; cloud-syncing and storage are necessary for multi-user collaboration.
  • Third-Party Connected Data: When you connect to a third-party service (e.g., Google Sheets), we will always make a first attempt to process the data transiently (in memory). This means that once the necessary processing is completed, we dispose of the raw data. We will only persist data in storage if the connected data is too large to be efficiently processed transiently.
  • Data Minimization: We are committed to optimizing our algorithms to store as little data in the cloud as possible, consistent with providing our Services.

6. Third-Party Service Providers

We may engage third-party service providers to perform functions on our behalf, such as hosting, analytics, and customer support. These providers will have access to your information only as necessary to perform their functions and are obligated to maintain the confidentiality and security of your data.

  • Google Sheets Integration: Please refer to Google's data protection mechanisms and data retention clauses for explanations on how they manage your data.

7. Data Protection Mechanisms for Sensitive Data

We implement robust security measures to protect all data you provide to us.

  • Google User Data: The only Google User data we collect is your email address and an authentication token to facilitate connection to our application. We encrypt all necessary data and utilize a secure secrets manager to ensure its protection.
  • General Data Protection: We employ industry-standard security practices, including encryption, access controls, and regular security audits, to protect all data you send us from unauthorized access, disclosure, alteration, and destruction.

8. Data Retention and Deletion

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Deleted Datasets or Workspaces: When datasets or workspaces are deleted, the associated data is retained for 30 days to allow you to undo the action. After this period, the data is permanently deleted.
  • Account Deletion: If you delete your account, the deletion is immediate and cannot be undone. All associated data you own (e.g., datasets) will also be deleted from Avandar immediately.
  • Third-Party Connected Data: Any data connected via a third-party service (e.g., Google Sheets) will be permanently deleted the moment the integration is removed or consent is revoked. This includes Google User data, not just datasets or other objects.

9. Your Data Protection Rights

Depending on your location and applicable laws, you may have the following rights regarding your personal data:

  • Right to Access: You have the right to request copies of your personal data.
  • Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • Right to Erasure (Right to be Forgotten): You have the right to request that we erase your personal data, under certain conditions.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • Right to Object to Processing: You have the right to object to our processing of your personal data, under certain conditions.
  • Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

To exercise any of these rights, please contact us at . We will respond to your request within a reasonable timeframe and in accordance with applicable laws.

10. International Data Transfers

Your information, including personal data, may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction.

We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your personal data will take place to an organization or a country unless there are adequate controls in place, including the security of your data and other personal information. Where required by law, we implement appropriate safeguards such as Standard Contractual Clauses for international data transfers.

11. Children's Privacy

Our Services are not intended for individuals under the age of 13 (or 16 in certain jurisdictions under GDPR). We do not knowingly collect personally identifiable information from anyone under the age of 13 (or 16). If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us. If we become aware that we have collected personal data from children without verification of parental consent, we take steps to remove that information from our servers.

12. Security Measures

We are committed to protecting the security of your personal data. We implement a variety of security measures, including technical and organizational safeguards, to maintain the safety of your personal data when you enter, submit, or access your personal data. These measures include, but are not limited to, encryption, firewalls, secure server facilities, and regular security assessments.

13. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this Privacy Policy. We will also notify you via email or a prominent notice on our Service, prior to the change becoming effective. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

14. Do Not Sell My Personal Information

We do not sell your personal information.

15. Links to Other Websites

Our Service may contain links to other websites that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

16. Your Agreement

By using our Services, you signify your acceptance of this Privacy Policy. If you do not agree to this policy, please do not use our Services. Your continued use of the Services following the posting of changes to this policy will be deemed your acceptance of those changes.

17. Terms of Service

For more information about the terms governing your use of our Services, please visit our Terms of Service at: https://www.avandarlabs.com/terms-of-service