Privacy Policy

Last Updated: November 30, 2024

1. Introduction

This Privacy Policy (“Policy”) describes how LOUGAO, LLC (“we,” “us,” “our,” or the “Company”), operating the website https://www.buildglare.com (the “Website”), collects, uses, processes, discloses, retains, and protects personal information of users (“you” or “your”). By accessing or using our Website, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

2. Scope and Applicability

2.1. This Policy applies to all personal information collected through our Website, related services, and any other interactions you may have with us.

2.2. This Policy is designed to comply with applicable data protection laws worldwide, including but not limited to the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other relevant privacy regulations.

3. Information We Collect

3.1. Personal Information

We collect the following categories of personal information:

• Full name
• Email address
• Avatar

3.2. Technical Information

We automatically collect certain technical information when you visit our Website, including:

• IP address
• Browser type and version
• Operating system
• Device information
• Access timestamps
• Website usage data

3.3. Cookies and Similar Technologies

We use the following types of cookies:

1. Essential Cookies:

• Strictly necessary for Website functionality
• Cannot be disabled

1. Analytics Cookies:

• Google Analytics cookies (_ga, _gid)
• Used to analyze Website usage and improve our services
• Can be disabled through your browser settings

4. How We Use Your Information

4.1. Primary Purposes

We use your personal information for the following purposes:

• To provide and maintain our services
• To communicate with you regarding service updates
• To respond to your inquiries and support requests
• To improve our Website and services
• To comply with legal obligations

4.2. Legal Basis for Processing

We process your personal information based on:

• Your consent
• Contractual necessity
• Legal obligations
• Legitimate business interests

5. Data Sharing and Disclosure

5.1. Third-Party Service Providers

We share personal information with the following service providers:

1. Google Analytics

• Purpose: Website analytics and usage tracking
• Data shared: Pseudonymized user behavior data
• Privacy policy: https://policies.google.com/privacy

1. Stripe

• Purpose: Payment processing
• Data shared: Transaction-related information
• Privacy policy: https://stripe.com/privacy

1. TiDB Cloud

• Purpose: Database hosting and management
• Data shared: User account data
• Privacy policy: https://www.pingcap.com/privacy-policy/

1. DigitalOcean

• Purpose: Cloud infrastructure and hosting
• Data shared: Website and application data
• Privacy policy: https://www.digitalocean.com/legal/privacy-policy

5.2. Legal Requirements

We may disclose personal information if required to do so by law or in response to valid requests from public authorities (e.g., court orders, subpoenas).

6. Data Retention and Deletion

6.1. Retention Period

We retain your personal information for:

• Active accounts: Duration of your account plus 1 year
• Inactive accounts: 1 year after last activity
• Legal requirements: As required by applicable laws

6.2. Data Deletion

1. Automatic Deletion

• Inactive account data is automatically flagged for deletion after 1 year
• Deleted data is securely purged from our systems within 90 days

1. User-Requested Deletion

• You may request deletion of your personal information
• We will process deletion requests within 30 days
• Certain information may be retained for legal compliance

7. Data Security

7.1. Security Measures

We implement and maintain appropriate technical and organizational security measures, including:

• SSL/TLS encryption for data transmission
• Secure data storage with encryption at rest
• Access controls and authentication mechanisms
• Regular security assessments and updates
• Employee training on data protection

7.2. Data Breach Notification

In the event of a data breach that affects your personal information, we will:

• Notify affected users within 72 hours of discovery
• Provide detailed information about the breach
• Implement necessary remedial measures
• Cooperate with relevant authorities

8. International Data Transfers

8.1. Cross-Border Transfers

We may transfer your personal information to countries outside your jurisdiction. Such transfers are conducted under:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions issued by relevant data protection authorities
• Other legally recognized transfer mechanisms

8.2. Transfer Safeguards

For international transfers, we ensure:

• Recipient countries provide adequate data protection
• Implementation of appropriate technical and organizational measures
• Regular assessment of transfer mechanisms
• Documentation of transfer impact assessments

9. Children’s Privacy

9.1. Age Restrictions

• Our services are not intended for individuals under 16 years of age
• We do not knowingly collect personal information from children
• Parent/guardian consent is required for any inadvertent collection

9.2. Discovery and Deletion

If we discover that we have collected personal information from a child:

• The information will be immediately isolated
• We will seek parental consent within 30 days
• If consent is not obtained, the information will be deleted
• Parents may request deletion of their child’s information at any time

10. User Rights and Choices

10.1. Access Rights

You have the right to:

• Access your personal information through your account dashboard
• Request copies of your personal information
• Receive information about how your data is processed
• Obtain information about third-party recipients

10.2. Additional Rights

You may also request:

• Correction of inaccurate personal information
• Deletion of your personal information
• Restriction of processing
• Data portability
• Objection to processing

10.3. Response Timeline

• We will acknowledge your request within 5 business days
• We will respond to your request within 15-30 days
• Complex requests may require an additional 30-day extension with notice

11. Changes to This Policy

11.1. Policy Updates

We reserve the right to update this Policy at any time. When we do:

• We will revise the “Last Updated” date
• We will send email notifications for significant changes
• Changes become effective 30 days after posting
• Continued use constitutes acceptance of changes

12. Contact Information

12.1. Data Controller

LOUGAO, LLC

651 N Broad St, Suite 201

Middletown, DE 19709

United States

12.2. Contact Details

For privacy-related inquiries:

• Email: contact@buildglare.com
• Response time: Within 2 business days
• Physical mail: Address listed above

13. Cookie Management

13.1. Cookie Settings

You can manage cookie preferences through:

• Browser settings
• Our cookie consent banner
• Third-party opt-out mechanisms

13.2. Cookie Details

Essential cookies:

• Purpose: Website functionality
• Duration: Session to 2 years
• Cannot be disabled

Analytics cookies:

• _ga: 2 years duration, tracks user behavior
• _gid: 24 hours duration, distinguishes users

14. Data Processing Activities

14.1. No Automated Decision-Making

We do not engage in:

• Automated individual decision-making
• Profiling that produces legal effects
• Automated processing of sensitive data

14.2. Processing Records

We maintain detailed records of processing activities, including:

• Categories of processing activities
• Purposes of processing
• Categories of data subjects and personal data
• Recipients of personal data
• Retention periods
• Security measures implemented

15. Governing Law and Jurisdiction

15.1. Applicable Law

This Privacy Policy shall be governed by and construed in accordance with the laws of the State of Delaware, United States, without regard to its conflict of law provisions.

15.2. Dispute Resolution

Any disputes arising from or relating to this Privacy Policy shall be subject to the exclusive jurisdiction of the state and federal courts located in Delaware, United States.

16. Severability

If any provision of this Privacy Policy, or any portion thereof, is held to be invalid, illegal, void, or unenforceable by any court or tribunal of competent jurisdiction, the remainder of this Privacy Policy shall remain in full force and effect to the maximum extent permitted by law. The parties agree that any such invalid, illegal, void, or unenforceable provision shall be modified and limited in its effect to the extent necessary to cause it to be enforceable, or if such modification is not possible, shall be deemed severed from this Privacy Policy. In such event, the parties shall negotiate in good faith to replace any invalid, illegal, void, or unenforceable provision with a valid, legal, and enforceable provision that corresponds as closely as possible to the parties’ original intent and economic expectations.