Policy center

Privacy Policy

This privacy policy explains how Pawlyzer AI (“we”, “our”, or “us”) collects, uses, shares, and protects your information when you interact with our mobile applications, websites, and support channels. We follow global standards such as the GDPR and CCPA and apply privacy-by-design across every feature.

Last updated: May 28, 2025

1. Overview

Pawlyzer AI transforms pet lineage data into wellness intelligence. To do so responsibly, we only collect the data we need, give you clear controls, and secure it with industry-grade safeguards. This policy applies to all products under the OtterSpark Labs brand.

Controller: OtterSpark Labs, San Francisco, CA, USA
Applicable products: Pawlyzer AI mobile apps, dashboard, embedded help center
Audience: Pet parents, veterinary partners, and beta testers

2. Data we collect

We collect information directly from you, automatically through the app, and from authorized third parties. Exact fields vary by feature, but fall into the categories listed below.

Account & identity

Full name, email, and optional phone number
Authentication identifiers (token IDs, refresh tokens)
App preferences, notification settings, and language

Pet profiles

Pet name, breed lineage, birthdate, gender, weight range
Behavior notes, medical history uploads, and dietary logs
Genetic kit IDs and partner clinic associations

Usage & diagnostics

Device type, OS version, crash logs, and session metadata
Feature engagement analytics (aggregated and anonymized)
Support interactions, satisfaction scores, and survey responses

Financial data

Subscription status, plan tier, renewal windows
Transaction IDs processed by PCI-certified providers
No raw payment card numbers are stored on Pawlyzer servers

3. How we use data

We process your information only when we have a valid legal basis (consent, contract performance, or legitimate interest). Typical purposes include:

Generating trait briefings, health nudges, and custom wellness plans
Improving accuracy of AI models through anonymized training data
Providing customer support, diagnostics, and fraud mitigation
Sending service communications, account alerts, and opt-in marketing

5. Retention & security

Data is stored only for as long as necessary to deliver the service, comply with legal obligations, or resolve disputes. Automated retention policies purge dormant diagnostic logs after 24 months and inactive accounts after 36 months.

Encryption in transit (TLS 1.2+) and at rest (AES-256)
Role-based access control with hardware security keys
Annual penetration testing, SOC 2 Type II audits in progress
Responsible disclosure program for security researchers

6. Your rights & choices

Depending on your location, you may have rights to access, correct, delete, or port your information, and to object to certain processing or marketing. We respond to verified requests within 30 days.

Access or download your data from the in-app privacy dashboard.
Edit or delete pet profiles at any time.
Export session logs and health summaries in machine-readable formats.
Opt out of marketing via the unsubscribe link or in-app toggle.

7. Children & sensitive information

Pawlyzer AI is designed for adults. We do not knowingly collect information from children under 16, and pet genetic data is treated as sensitive. If we learn that we processed child data without consent, we will delete it immediately.

8. Policy changes

We may update this policy to reflect feature changes or regulatory guidance. Material updates will be announced in-app and via email at least 14 days before they take effect. Archived versions remain available upon request.

9. Contact

Questions, requests, or concerns can be emailed to [email protected]. This inbox is monitored daily for privacy escalations.