Privacy

Effective Date: 06.08.2026
Last Updated: 06.08.2026

HortSens, Inc. and its affiliates, subsidiaries, products, platforms, applications, websites, devices, services, and internal tools, including but not limited to HortSens, ARfi, ARtists, HS Intelligence, HS Studio, HS Robotics, HS Hardware, HS Healthcare, HS Space, HS Ventures, and any future HortSens products or services, are committed to protecting privacy with seriousness, clarity, and respect.

This Privacy Policy explains how we collect, use, disclose, store, protect, and otherwise process personal information when you use our websites, apps, software, platforms, hardware, devices, AI systems, AR experiences, creator tools, developer tools, payment flows, customer support, events, communications, or any other HortSens service.

Where legally required, this policy also explains your privacy rights and how to exercise them. Privacy notices should identify why personal data is processed, how it is handled, how it is protected, the rights people have, and the controller contact details.

1. Who We Are

“HortSens,” “HS,” “we,” “our,” or “us” means:

HortSens Technologies
team@hortsens.co

Depending on the product, region, or legal structure, the data controller may be HortSens, Inc. or one of its subsidiaries or affiliates. If a product has a separate privacy notice, that notice may provide additional details.

For privacy questions, requests, or complaints, contact:

Privacy Contact: team@hortsens.co

2. Our Privacy Philosophy

HortSens is built around beautiful, useful, fun, and close technology. That also means privacy cannot be treated like decoration.

Our privacy principles are:

1. Collect what we need, not everything we can.

2. Explain important data use clearly.

3. Never sell personal information in a way that betrays user trust.

4. Protect sensitive data with stronger safeguards.

5. Use AI responsibly and avoid using AI to unfairly judge people.

6. Give people meaningful control over their information.

7. Design products with privacy in mind from the beginning.

The FTC’s business guidance emphasizes understanding what personal information a company has, who can access it, how it flows through the business, and how it is secured.

3. Scope of This Policy

This policy applies to information we collect through:

• HortSens websites and domains.

• ARfi mobile apps, AR experiences, music discovery, spatial audio, ArtMap, inventory, collecting, placing, trading, creator tools, and artist platforms.

• ARtists and creator dashboards.

• HS Intelligence AI products, agents, assistants, models, automation systems, developer tools, and APIs.

• HS Studio products, games, films, creative software, community features, and interactive experiences.

• HS Robotics, HS Hardware, and connected devices.

• HS Healthcare or health-related products, unless a separate healthcare privacy notice applies.

• HS Space, research, simulation, or engineering platforms.

• Customer support, waitlists, newsletters, beta testing, events, surveys, and feedback forms.

• Internal tools, job applications, contractor systems, and business operations.

• Payment, billing, subscription, and fraud-prevention systems.

This policy does not apply to third-party services that we do not control, even if they are linked from our services.

4. Information We Collect

We may collect different types of information depending on the product you use.

4.1 Account Information

We may collect:

• Name.

• Username, handle, display name, or artist name.

• Email address.

• Phone number, if provided.

• Password or authentication credentials, if applicable.

• Google, Apple, or other third-party login identifiers.

• Profile photo or avatar.

• Date of birth or age range, where needed.

• Country, language, and region.

• Account preferences and settings.

• Subscription status.

• Verification status.

• Role, such as user, artist, creator, developer, staff, tester, or administrator.

4.2 Identity and Verification Information

For artist payments, creator monetization, fraud prevention, tax compliance, or legal compliance, we or our service providers may collect:

• Legal name.

• Address.

• Date of birth.

• Government-issued ID, where required.

• Tax information.

• Payment account details.

• Business information.

• Beneficial ownership information, if applicable.

• Fraud-risk signals.

We try to limit direct collection of highly sensitive identity information and may rely on specialized providers for verification, payments, tax, and compliance.

4.3 Payment and Transaction Information

We may collect:

• Subscription plan.

• Purchase history.

• Billing address.

• Transaction amount.

• Currency.

• Payment status.

• Refunds, disputes, and chargebacks.

• Payout details for artists, creators, or sellers.

• Marketplace activity.

• ArtM or other virtual economy activity.

• Store seller revenue and fees.

• Tax and invoice records.

We generally do not store full payment card numbers ourselves. Payment processors may process your card or payment details according to their own terms and privacy policies.

4.4 Usage Information

We may collect information about how you use our services, including:

• Pages, screens, and features used.

• App sessions and timestamps.

• Clicks, taps, scrolls, and navigation.

• Search queries within our services.

• Music discovered, collected, played, placed, skipped, liked, saved, shared, or traded.

• Inventory actions.

• Creator uploads, edits, previews, submissions, and analytics.

• AI prompts, outputs, commands, settings, and feedback.

• Error logs, crashes, performance data, and diagnostics.

• Beta test activity.

• Feature engagement and retention analytics.

4.5 AR, Camera, Sensor, and Spatial Information

Some HortSens products, especially ARfi and future AR or hardware products, may use device sensors to make experiences work.

This may include:

• Camera access for AR rendering or environment understanding.

• Device motion data.

• Gyroscope and accelerometer data.

• Compass or orientation data.

• AR plane detection.

• Spatial anchors.

• Approximate object position within an AR scene.

• Surface detection.

• Environment mapping needed for AR placement.

• Audio spatialization data.

• Distance or proximity between a user and virtual objects.

• Device orientation and movement.

Unless clearly stated otherwise, AR camera access is used to power the AR experience, not to secretly identify people or record private spaces. If a feature records photos, videos, audio, or environment scans, we will explain that feature and ask for permissions where required.

4.6 Location Information

Some services may use location to function. ARfi, for example, may need location to show nearby music, ArtMap content, placed objects, discovery zones, or regional experiences.

We may collect:

• Approximate location based on IP address.

• GPS location, if you give permission.

• Location updates while using a feature that requires live positioning.

• Nearby object or content distance.

• Geofencing data.

• City, region, or country.

• Location attached to placed content, if you choose to place something on the map.

• Location-based safety or anti-spam signals.

We will not access precise GPS location unless the device, operating system, or law requires permission or another valid legal basis.

You can usually disable location permissions in your device settings. Some features may not work properly without location.

4.7 Audio, Music, and Media Information

For music, creator, and studio products, we may collect:

• Uploaded audio files.

• Track title, artist name, album art, genre, metadata, lyrics, descriptions, and tags.

• Copyright ownership information.

• Licensing information.

• Royalty or payout information.

• Play counts, collection counts, engagement, and ranking signals.

• User-generated media.

• Photos, videos, thumbnails, covers, creative assets, and project files.

• Reports of copyright infringement, prohibited content, or abuse.

If a product supports audio recording, voice input, or microphone features, we will ask for permission where required.

4.8 AI Interaction Information

If you use HS Intelligence, AI assistants, agents, automation tools, recommendation systems, content moderation tools, coding tools, creative tools, or AI-enabled features, we may collect:

• Prompts and instructions.

• Uploaded files or inputs.

• Generated outputs.

• Conversation history.

• Tool usage.

• Feedback, ratings, corrections, and edits.

• Safety signals.

• Model performance signals.

• Context necessary to complete a task.

• Automation settings and permissions.

• User preferences.

We may use AI interaction data to provide, maintain, secure, debug, and improve our services, subject to your settings, product terms, enterprise agreements, and applicable law.

Where HortSens processes business customer data as a processor or service provider, the relevant business agreement may limit how that data can be used.

4.9 Device and Technical Information

We may collect:

• Device type.

• Operating system.

• Browser type.

• App version.

• IP address.

• Device identifiers.

• Advertising identifiers, where permitted.

• Crash logs.

• Battery, memory, and performance signals.

• Network information.

• Language and timezone.

• Security logs.

• Authentication logs.

• Referrer URLs.

• Cookie identifiers.

4.10 Cookies and Similar Technologies

We may use:

• Cookies.

• Local storage.

• SDKs.

• Pixels.

• Mobile identifiers.

• Analytics tools.

• Session replay or diagnostic tools, where lawful and properly disclosed.

• Fraud-prevention technologies.

These may help us:

• Keep you signed in.

• Remember preferences.

• Measure performance.

• Understand product usage.

• Prevent fraud and abuse.

• Improve services.

• Support marketing, where allowed.

Where required, we will ask for cookie consent and allow you to manage cookie choices.

4.11 Communications

We may collect:

• Emails, messages, support tickets, and chat conversations.

• Feedback and survey responses.

• Bug reports.

• Community reports.

• Waitlist information.

• Event registration information.

• Marketing preferences.

• Records of your consent choices.

4.12 Community, Social, and Public Content

If our services include profiles, creator pages, comments, shared collections, public AR placements, public music pages, leaderboards, forums, or social features, we may collect and display:

• Public profile information.

• Uploaded content.

• Public posts or comments.

• Shared playlists or collections.

• Artist pages.

• Creator storefronts.

• Ratings, likes, follows, or interactions.

• Public location-based placements, if enabled.

• Reports and moderation history.

Do not post information publicly that you do not want others to see.

4.13 Business, Enterprise, Developer, and Partner Information

If you are a developer, business customer, supplier, partner, contractor, investor, vendor, or institutional user, we may collect:

• Work contact details.

• Company name.

• Job title.

• Billing information.

• API usage.

• Integration data.

• Contract records.

• Security review information.

• Support communications.

• Access permissions.

• Audit logs.

4.14 Job Applicant and HSer Information

If you apply to work with HortSens or use internal systems, we may collect:

• Resume/CV.

• Portfolio.

• Work history.

• Education history.

• Interview notes.

• Assessment results.

• References.

• Contact information.

• Immigration or work authorization information, if required.

• Compensation, role, performance, and internal contribution records.

• Internal tool usage.

• Security and access logs.

A separate employee or applicant privacy notice may provide more specific details.

4.15 Sensitive Information

Depending on the product and your choices, we may process sensitive information such as:

• Precise location.

• Government ID.

• Payment and financial data.

• Biometric-related information, if future products require it.

• Health or wellness information, if future HS Healthcare products collect it.

• Voice, image, face, body, or motion data, if a feature requires it.

• Information about minors, if permitted and protected.

• Private communications.

We only process sensitive information when necessary, with your consent where required, or where another legal basis applies.

5. Information We Do Not Want You to Provide

Unless a feature specifically asks for it, do not provide:

• Passwords for other services.

• Highly sensitive health information.

• Financial account passwords.

• Private keys, seed phrases, or crypto recovery phrases.

• Sensitive government secrets.

• Other people’s personal information without permission.

• Illegal content.

• Content that violates our terms.

6. How We Use Information

We may use personal information to:

6.1 Provide and Operate Services

• Create and manage accounts.

• Authenticate users.

• Run apps, websites, AR experiences, AI tools, creator platforms, and hardware features.

• Enable music discovery, collection, placement, playback, inventory, trading, and ArtMap features.

• Process subscriptions, purchases, payouts, and refunds.

• Provide customer support.

• Maintain user preferences.

• Sync data across devices.

• Enable offline features and caching.

6.2 Personalize the Experience

• Recommend music, content, creators, tools, or features.

• Show relevant AR objects or map content.

• Remember preferences.

• Adapt UI, language, or region.

• Improve onboarding.

• Customize creator dashboards.

• Improve accessibility.

6.3 Improve and Develop Products

• Analyze performance.

• Debug errors.

• Improve AR reliability.

• Improve location accuracy.

• Improve recommendation quality.

• Improve AI responses and safety.

• Test new features.

• Conduct research and product development.

• Understand what users love, ignore, or find confusing.

6.4 Safety, Security, and Abuse Prevention

• Detect fraud.

• Prevent spam.

• Enforce content rules.

• Protect artists and creators.

• Prevent bot activity.

• Detect account compromise.

• Investigate abuse.

• Protect physical and digital safety.

• Maintain audit logs.

• Secure systems and infrastructure.

6.5 Legal, Compliance, and Business Operations

• Comply with laws.

• Maintain accounting records.

• Respond to legal requests.

• Enforce contracts and terms.

• Resolve disputes.

• Conduct audits.

• Manage corporate transactions.

• Protect rights, property, and safety.

• Meet tax and payout obligations.

6.6 Communications

• Send service messages.

• Send security alerts.

• Send account updates.

• Send product announcements.

• Respond to support requests.

• Send marketing communications where allowed.

• Invite users to beta tests or events.

• Notify creators about submissions, payments, or policy decisions.

You can opt out of marketing communications, though we may still send important service or legal messages.

7. Legal Bases for Processing

Where laws such as the GDPR or UK GDPR apply, we process personal information under one or more legal bases. The GDPR framework includes obligations for controllers and processors, and recognizes rights and responsibilities around data processing.

Our legal bases may include:

Legal BasisExamplesContractCreating your account, providing ARfi, processing subscriptions, paying artists.ConsentPrecise location, camera, microphone, certain cookies, marketing, certain AI or sensitive-data uses.Legitimate InterestsSecurity, fraud prevention, product improvement, analytics, debugging, preventing abuse.Legal ObligationTax, accounting, identity verification, legal requests, compliance.Vital InterestsRare cases involving safety or emergency protection.Public InterestRare cases where legally applicable.

8. AI, Automation, and Decision-Making

HortSens may use AI or automated systems to:

• Power assistants and agents.

• Generate creative or technical outputs.

• Recommend content.

• Detect spam, fraud, abuse, or policy violations.

• Help moderate content.

• Improve AR/music discovery.

• Help creators understand analytics.

• Improve customer support.

• Help internal teams understand product issues.

We do not want AI to become a silent judge over people. Where legally required, we will provide information about significant automated decisions and allow users to request human review.

We may use human review for safety, abuse prevention, quality improvement, and support, subject to access controls and confidentiality obligations.

9. AI Training and Model Improvement

Depending on the product, settings, contract, and law, we may use certain data to improve AI systems, safety systems, ranking systems, recommendation systems, and product quality.

We may use:

• User feedback.

• Prompts and outputs.

• Error reports.

• Safety signals.

• De-identified or aggregated data.

• Human-reviewed examples.

• Product interaction data.

For business, enterprise, API, or institutional customers, separate agreements may restrict whether customer content is used for model training.

Where we offer controls to disable AI training or product improvement uses, we will honor those controls.

10. Location and AR-Specific Rules

Because ARfi and future HortSens products may exist in the physical world, location and AR data deserve special care.

We may use location and AR data to:

• Show nearby content.

• Place and retrieve music objects.

• Estimate distance from virtual objects.

• Prevent fake movement or abuse.

• Create map-based experiences.

• Improve live positioning.

• Keep AR content stable.

• Support safety and moderation.

We do not use AR camera input to identify private people unless a feature clearly says so and is legally permitted.

If users place content in public or semi-public spaces, other users may see content metadata depending on the feature design.

We may remove or restrict placed content if it creates safety, legal, spam, harassment, copyright, or abuse risks.

11. Music, Artists, Copyright, and Creator Data

For artist and creator services, we may process information to:

• Host submissions.

• Review content.

• Verify rights.

• Display artist pages.

• Calculate plays, collections, payouts, and analytics.

• Prevent duplicate, fraudulent, AI-generated, infringing, illegal, or prohibited content.

• Manage monetization.

• Handle copyright complaints.

• Communicate with artists.

• Pay creators.

• Report tax or legal information where required.

Public artist profiles, submitted tracks, album art, metadata, and other creator content may be visible to users depending on the product.

12. Children and Teens

Our services are not intended for children under the age required by applicable law unless a specific product is designed for them and includes proper safeguards.

We may require age information to determine eligibility.

If we learn that we collected personal information from a child without required consent, we will take appropriate steps to delete or restrict that information.

If a parent or guardian believes a child provided personal information to us, they may contact us at [privacy@hortsens.com].

For products used by teens, we may provide additional protections, restricted features, content filters, privacy defaults, and parental or guardian controls where required.

13. Health, Wellness, and Biometric Information

If HS Healthcare, HS Hardware, HS Robotics, or another product collects health, wellness, biometric, body, face, motion, or sensor-derived information, we will provide additional disclosures and protections.

This may include:

• Separate consent.

• Separate product-specific privacy notices.

• Stronger security.

• Limited access.

• Special retention rules.

• Compliance with health privacy laws where applicable.

If a HortSens product becomes subject to HIPAA, medical-device rules, or similar health privacy frameworks, we will provide the legally required notices and safeguards.

14. Hardware, Robotics, and Connected Devices

Future HortSens hardware or robotics products may collect:

• Device identifiers.

• Sensor data.

• Camera or audio data.

• Usage logs.

• Diagnostics.

• Environment information.

• Connectivity data.

• Firmware version.

• Safety logs.

• User commands.

• Device location, if enabled.

We may use this data to:

• Operate the device.

• Improve safety.

• Deliver updates.

• Diagnose defects.

• Improve reliability.

• Provide support.

• Prevent misuse.

Hardware products may have additional privacy notices.

15. How We Share Information

We may share information with the following categories of recipients.

15.1 Service Providers and Processors

We may share information with companies that help us operate services, such as:

• Cloud hosting providers.

• Database providers.

• Authentication providers.

• Payment processors.

• Analytics providers.

• Crash reporting providers.

• Customer support tools.

• Email providers.

• Fraud-prevention providers.

• Identity verification providers.

• Content delivery networks.

• AI infrastructure providers.

• Security providers.

• Tax and accounting providers.

They are authorized to process information only as needed to provide services to us, unless otherwise permitted by law.

15.2 Affiliates and Subsidiaries

We may share information within the HortSens corporate family, including current and future subsidiaries or affiliates, for the purposes described in this policy.

15.3 Other Users

Depending on your settings and activity, other users may see:

• Your display name.

• Public profile.

• Artist name.

• Public music or content.

• Public collections or placements.

• Likes, comments, follows, or interactions.

• Creator storefront.

• Public AR content.

• Public leaderboard or ranking information.

15.4 Business Customers or Organizations

If you use HortSens through a school, company, organization, or enterprise account, that organization may access certain information about your account, usage, content, permissions, and activity according to the agreement with us.

15.5 Legal and Safety Disclosures

We may disclose information when we believe it is necessary to:

• Comply with law.

• Respond to legal process.

• Protect safety.

• Prevent fraud or abuse.

• Enforce our terms.

• Protect HortSens, users, artists, creators, partners, or the public.

• Investigate security incidents.

15.6 Business Transfers

If HortSens is involved in a merger, acquisition, financing, restructuring, bankruptcy, sale of assets, creation of a subsidiary, or similar transaction, information may be transferred as part of that transaction.

15.7 With Your Consent

We may share information when you direct us to do so or give consent.

16. Selling or Sharing Personal Information

We do not sell personal information in the ordinary meaning of selling names, accounts, private content, or precise location to data brokers.

Some privacy laws define “sale” or “sharing” broadly, including certain advertising or analytics practices. If we engage in activities that qualify as “sale,” “sharing,” or targeted advertising under applicable law, we will provide required disclosures and opt-out choices.

California privacy rules continue to evolve; California’s privacy agency finalized new regulations in 2025, including risk assessment requirements beginning in 2026 for certain covered businesses.

17. Advertising and Analytics

We may use analytics and advertising technologies to understand performance, measure campaigns, prevent abuse, and improve services.

Depending on your region and settings, you may be able to opt out of:

• Targeted advertising.

• Cross-context behavioral advertising.

• Sale or sharing of personal information.

• Certain cookies.

• Certain analytics SDKs.

• Mobile advertising identifiers.

We do not want advertising systems to compromise user dignity or product trust. HortSens should avoid manipulative tracking, dark patterns, and unnecessary surveillance.

18. Data Retention

We keep personal information only as long as reasonably necessary for the purposes described in this policy, unless a longer period is required or permitted by law.

Retention depends on:

• The type of data.

• The product used.

• Account status.

• Legal obligations.

• Security needs.

• Dispute resolution.

• Fraud prevention.

• Tax, accounting, and payout requirements.

• Backup cycles.

• Whether the data is public content.

• Whether deletion would affect other users’ rights or records.

Examples:

Data TypeTypical Retention LogicAccount dataWhile account is active, then deleted or anonymized after closure unless needed.Payment recordsRetained as required for tax, accounting, fraud, and legal compliance.Creator payout dataRetained as required for contracts, taxes, disputes, and royalty records.Public contentRetained while published unless removed, deleted, or restricted. Security logsRetained for a limited security period unless needed for investigation.Support messagesRetained as needed for support history and legal protection.BackupsDeleted on backup rotation schedules.AI interaction dataRetained according to product settings, contracts, and applicable law.

19. Security

We use administrative, technical, and physical safeguards designed to protect personal information.

These may include:

• Encryption in transit.

• Encryption at rest where appropriate.

• Access controls.

• Least-privilege permissions.

• Authentication controls.

• Security logging.

• Monitoring.

• Secure development practices.

• Vulnerability management.

• Employee confidentiality obligations.

• Vendor security reviews.

• Incident response procedures.

• Backup and recovery systems.

No system is perfectly secure. You are responsible for using strong passwords, protecting your devices, keeping credentials private, and notifying us if you suspect unauthorized access.

The FTC recommends companies collect only what they need, keep it safe, and securely dispose of information when no longer needed.

20. International Data Transfers

HortSens may process and store information in the United States and other countries where we, our affiliates, or our service providers operate.

If we transfer personal information internationally, we use safeguards required by applicable law, which may include:

• Standard contractual clauses.

• Data processing agreements.

• Adequacy decisions.

• Transfer impact assessments.

• Technical and organizational safeguards.

• User consent where legally required.

21. Your Privacy Rights

Depending on where you live, you may have rights to:

• Access personal information.

• Correct inaccurate information.

• Delete personal information.

• Export or receive a copy of information.

• Restrict processing.

• Object to processing.

• Withdraw consent.

• Opt out of sale, sharing, targeted advertising, or profiling.

• Appeal a privacy decision.

• Complain to a data protection authority.

• Request human review of certain automated decisions.

• Limit use of sensitive personal information.

The EU data protection framework gives individuals rights and imposes obligations on controllers and processors.

To exercise rights, contact:

team@hortsens.co

We may need to verify your identity before fulfilling a request.

We will not discriminate against you for exercising privacy rights.

22. California Privacy Notice

If you are a California resident, this section provides additional information under California privacy laws.

Categories of Personal Information We May Collect

CategoryExamplesIdentifiersName, email, username, IP address, device ID.Customer recordsBilling info, account info, payment records.Protected classification dataAge or date of birth, where required.Commercial informationPurchases, subscriptions, creator payouts, music activity.Internet activityApp usage, browsing, interactions, logs.Geolocation dataApproximate or precise location, if enabled.Sensory dataAudio, visual, AR, camera, or device sensor data where features require it.Professional informationJob title, company, applicant data.Education informationApplicant or student-related information where provided.InferencesPreferences, recommendations, safety signals.Sensitive personal informationPrecise location, government ID, financial info, account credentials, health or biometric data if applicable.

California Rights

California residents may have the right to:

• Know what personal information we collect, use, disclose, sell, or share.

• Access personal information.

• Delete personal information.

• Correct inaccurate personal information.

• Opt out of sale or sharing.

• Limit use of sensitive personal information.

• Not be discriminated against for exercising rights.

Submit requests at:

team@hortsens.co

If we provide a “Do Not Sell or Share My Personal Information” link, you may use that link to exercise applicable rights.

23. EU, UK, Swiss, and Similar Region Rights

If you are in the European Economic Area, United Kingdom, Switzerland, or another region with similar privacy laws, you may have rights to:

• Access your data.

• Rectify inaccurate data.

• Delete data.

• Restrict processing.

• Object to processing.

• Data portability.

• Withdraw consent.

• Lodge a complaint with a supervisory authority.

Where required, we will identify the data controller, legal basis, retention periods, recipients, transfer safeguards, and rights.

24. Canadian, Brazilian, Moroccan, and Other Regional Rights

Depending on your country or region, you may have additional rights under local privacy laws.

We will respond to privacy requests according to applicable law. If local law requires a specific notice, consent flow, representative, or complaint process, we will provide it.

25. Account Deletion

You may request deletion of your account through:

• In-app settings, if available.

• Website account tools, if available.

• Emailing [privacy@hortsens.com].

Deleting an account may not immediately delete:

• Payment records.

• Tax records.

• Fraud-prevention records.

• Legal records.

• Public content already shared by others.

• Backup copies during backup rotation.

• Information needed to resolve disputes.

• Information we must keep by law.

Where possible, we will delete, anonymize, or restrict personal information after account deletion.

26. User Controls

Depending on the product, you may be able to control:

• Profile visibility.

• Location permissions.

• Camera permissions.

• Microphone permissions.

• Notifications.

• Cookies.

• Marketing emails.

• Public sharing.

• AI memory or history.

• Data export.

• Account deletion.

• Creator profile visibility.

• Public AR placements.

• Music sharing.

• Analytics or personalization settings.

Device permissions can usually be changed in your operating system settings.

27. Third-Party Services

Our services may integrate with third parties, including:

• Google sign-in.

• Apple sign-in.

• Payment processors.

• App stores.

• Cloud services.

• Analytics tools.

• AI infrastructure providers.

• Music rights databases.

• Copyright tools.

• Social sharing platforms.

• Creator payout providers.

• Customer support platforms.

Third-party services may collect information according to their own privacy policies. We are not responsible for the privacy practices of third parties we do not control.

28. APIs, Developers, and Integrations

If HortSens provides APIs, SDKs, plugins, developer tools, or integrations:

• Developers must comply with our terms.

• Developers may not misuse user data.

• Developers must provide their own privacy notices where required.

• Developers may not collect more data than necessary.

• Developers may not sell, share, or use HortSens data in prohibited ways.

• We may monitor API usage for security, abuse prevention, and compliance.

29. Enterprise and Business Customer Data

If a business, school, institution, or enterprise uses HortSens services, the organization may control the data submitted to the service.

In that case:

• HortSens may act as a processor, service provider, or contractor.

• The customer agreement may control data use.

• The organization may manage accounts, access, retention, and deletion.

• Users may need to contact their organization to exercise certain rights.

30. Content Moderation, Safety, and Enforcement

We may review content and account activity to enforce rules related to:

• Hate speech.

• Harassment.

• Terrorist propaganda.

• Incitement to violence.

• Illegal explicit content.

• Copyright infringement.

• Fraud.

• Spam.

• Security abuse.

• AI-generated content bans where applicable.

• Prohibited political, harmful, or illegal content depending on product rules.

Reviews may involve automated systems, human reviewers, or both.

31. Research, Aggregated Data, and De-Identified Data

We may create aggregated, anonymized, or de-identified data for:

• Product analytics.

• Research.

• Public reports.

• Business planning.

• Safety improvements.

• Performance benchmarking.

• Creator insights.

• Infrastructure planning.

We will not attempt to re-identify de-identified data except as permitted by law, such as to test whether de-identification works.

32. Data Accuracy

We try to keep personal information accurate and up to date.

You may update certain information in your account settings. You may also request correction by contacting us.

33. Privacy by Design

HortSens aims to build privacy into product design.

This may include:

• Default privacy protections.

• Minimal collection.

• Local processing where practical.

• Permission prompts before sensitive access.

• Clear user controls.

• Short retention where possible.

• Strong internal access controls.

• Security reviews before launch.

• Product-specific privacy impact assessments.

• Risk assessments for sensitive products.

GDPR includes concepts such as data protection by design and by default, and responsibilities for controllers and processors.

34. Data Breach and Incident Response

If we discover a security incident involving personal information, we will investigate and take appropriate action.

Where legally required, we will notify affected users, regulators, customers, or other parties.

We may also take steps such as:

• Resetting credentials.

• Revoking tokens.

• Disabling integrations.

• Requiring security updates.

• Notifying partners.

• Improving safeguards.

35. Changes to This Policy

We may update this Privacy Policy from time to time.

If changes are material, we may notify you by:

• Posting a notice.

• Sending an email.

• Showing an in-app message.

• Updating the effective date.

• Requesting consent where required.

Your continued use of our services after an update means the updated policy applies, unless law requires another form of acceptance.

36. Contact Us

For questions, privacy requests, complaints, or concerns:

HortSens Privacy Team
Email: team@hortsens.co