Privacy Policy

GIGR Inc. ("we," "us," or "Company") respects your privacy and is committed to protecting your personal data as you ("you" or "User") use our Services. This Privacy Policy (this "Policy") describes how we collect, use, and handle your personal data when you use Saju House and related platforms, websites, and services ("Services").

If you have any questions regarding this Policy or our privacy practices, please contact our Data Protection Department listed in this Policy. It is crucial that you thoroughly read and understand the terms of this Policy. Please note that this Policy should be read in conjunction with our Terms of Service.

Collection and Use of Personal Data

Personal information, or personal data, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data). During your use of the Services or any interaction with us, we may collect and use the following types of personal data:

• Account details — email address, password, display name.
• Birth chart information — birth date, birth time, and gender, which are essential to provide the core fortune reading service. This information is considered sensitive personal data and is processed with additional safeguards.
• Payment information — credit card details, billing information (processed through our third-party payment processor; we do not store full payment card numbers).
• Transactional information — details about purchases made, reports ordered, and payment history.
• Usage information — how you use our Services, interactions with AI masters, chat and voice session data, reading history, preferences, and feedback.
• Technical information — IP address, login data, browser type and version, time zone setting and location, device information, operating system and platform.
• AI interaction data — prompts, inputs, outputs, conversation logs with AI masters. This data is used to provide and improve the Services.
• Marketing and communication information — your communication preferences and marketing opt-in status.

Method of Personal Data Collection

We collect personal data from and about you through various methods, including:

• Direct Interactions: You may provide personal data to us directly when creating an account, entering birth information during onboarding, purchasing Reports, communicating with AI masters, or contacting support.
• Automated Technologies and Cookies: As you interact with our Services, we may automatically collect technical data about your device, browsing actions, and usage patterns through cookies, server logs, and similar technologies. You may set your browser to not accept cookies, but this may limit your ability to use the Services.
• Third Parties: We may receive your personal data from third-party authentication providers (e.g., Google) when you use social login features.

Purposes of Collecting and Using Personal Data

We process your personal data for the following purposes:

• Membership Registration and Management: to verify identity, authenticate users, maintain accounts, prevent unauthorized use, and send notifications.
• Provision of Services: to generate personalized birth chart readings, deliver AI-powered fortune analyses, process Report purchases, and facilitate payment and billing.
• Customer Support: to verify identity, address issues, and communicate regarding inquiries.
• Service Improvement and Development: to enhance existing Services, develop new features, improve AI model performance, and create customized offerings based on aggregated and anonymized usage data.
• Marketing and Communication: to deliver personalized content, provide event information and promotional materials (with your consent where required by law).

Disclosure of Personal Data

We will not sell your personal data to advertisers or other third parties. We may share your personal data as follows:

Disclosure to Third-Party Service Providers

We may engage certain third-party service providers (including payment processors, cloud hosting providers, AI model providers, and analytics services) to assist us in delivering and improving the Services. These service providers may process your personal data on our behalf, but only to the extent necessary for the fulfillment of business purposes and subject to strict contractual data protection obligations.

Required Disclosure

We may disclose your personal data to third parties if we reasonably determine that such disclosure is necessary to:

• Comply with any applicable law, regulation, legal process, or government request;
• Protect the safety or life of any individual;
• Prevent fraud or abuse of the Services or protect our users;
• Safeguard the rights, property, safety, or interests of the Company or our users; or
• Perform a task carried out in the public interest.

Measures to Protect Your Personal Data

Safeguarding your personal data is a top priority. We employ robust security measures including:

• Regular Internal Audits: To evaluate and strengthen our data protection practices.
• Minimization and Training: We restrict access to personal data to designated employees with regular training on data protection.
• Technical Safeguards: Security programs against hacking and malware, regularly updated and monitored.
• Access Restriction: Database permissions management with intrusion prevention systems.
• Encryption: Birth chart information and other sensitive personal data are encrypted in transit and at rest.
• Controlled Physical Access: Physical locations housing personal data are secured with entry control measures.

In the event of a suspected data breach, we have established procedures to promptly address and mitigate any risks. Where legally required, we will notify both you and the relevant regulatory authorities.

Data Retention

We will retain your personal data only for as long as is reasonably necessary to fulfill the purposes for which it was collected, including to comply with legal, regulatory, tax, accounting, or reporting obligations.

Subject to the foregoing, we will delete your personal data without delay when (i) the purpose of collection and use has been achieved; (ii) you withdraw your account from the Service; (iii) the legal or management needs have been achieved; or (iv) upon receipt of your request for deletion.

Your Responsibility for Securing Personal Data

You are responsible for ensuring the security of your personal data. This includes choosing a sufficiently strong password and keeping your credentials confidential at all times. You must not provide third-party personal information (such as another person's birth date or birth time) without their explicit consent.

We will not be liable for any loss, unauthorized access, or misuse of your personal data that results from your own actions. It is equally important that the personal data we hold about you is accurate and up to date. Please notify us promptly if any of your personal data changes.

Your Rights to Your Personal Data

You have control over your personal data. You may exercise the following rights:

• Right to access: You have the right to request access to the personal data we hold about you.
• Right to deletion: You may request the deletion of personal data from your account or our databases.
• Right to correction: You can manage your account, including editing your personal data at any time.
• Right to restrict processing and objection: You may object to the processing of your personal data or request a temporary suspension or restriction of data processing.
• Right to data portability: You may request the transfer of your personal data to another party.
• Right to avoid automated decision-making: You may request to stop automated processing of personal data.
• Right to withdraw consent: You may withdraw your consent at any time. Withdrawal will not affect the lawfulness of processing conducted prior to withdrawal, but may limit our ability to provide certain Services.
• Right to opt out: You may request that your personal data is not used in sales or profiling, and may opt out of targeted advertisement.

To exercise any of the above rights, please contact us at our Data Protection Department. We will take appropriate action without undue delay.

Protection of Personal Data of Children

The Services are intended for users who are at least 18 years old. We do not knowingly collect personal data from minors under the age of 18 or the equivalent minimum age as defined by the laws of relevant jurisdictions.

If we become aware that we have collected personal data from a minor without appropriate consent, we will take steps to delete such information promptly. If you believe we have inadvertently collected data from a minor, please contact us immediately.

International Data Transfers

The Services may operate from the United States and other regions. By using the Services, you consent to the transfer of your personal data to the United States and other jurisdictions that may have different data protection laws than your jurisdiction. We will take appropriate safeguards to ensure your personal data remains protected in accordance with this Policy.

Region-Specific Notices

Disclosures for Residents of California

If you are a resident of California, you have certain rights under the California Consumer Privacy Act and the California Privacy Rights Act (collectively, "CCPA"). These include:

• Right to know and access: You have the right to request information about the categories and specific pieces of personal data we have collected, the sources, the purposes, and the categories of third parties with whom we share it.
• Right to correct: You have the right to request correction of inaccurate personal data.
• Right to delete: You have the right to request deletion of your personal data.
• Right to opt-out of sale and sharing: You have the right to opt-out of the sale of your personal data. We do not sell personal data.
• Right to limit use of sensitive personal data: You have the right to restrict our use of sensitive personal data (including birth chart information) solely to what is essential for providing the Services.
• Right to non-discrimination: You have the right to not be discriminated against for exercising your privacy rights.
• Shine the Light: California residents with an established business relationship have the right to know how their personal data is disclosed to third parties for their direct marketing purposes, or to opt out of such practices.

Changes to the Privacy Policy

We reserve the right to revise this Policy from time to time. In the event of any changes, we will provide notice by posting the updated policy on our Services or through other appropriate means, such as email notifications.

Contact Information

If you have any questions about this Policy or our privacy practices, please contact our Data Protection Department:

Email: help@gigr.ai

If we cannot answer your question, you have the right to contact your local data protection supervisory authority.