Privacy Policy

This Privacy Policy explains how Spectrace collects, uses, discloses, and safeguards personal information when you use Spectrace's products, websites, APIs, and related services (collectively, the "Services").

We may collect the following categories of information:

• Account data: name, email address, organization details, and account preferences.
• Workspace data: requirements, test cases, linked files, comments, activity logs, and project metadata.
• Integration data: metadata from connected systems such as source control or issue trackers, subject to permissions you grant.
• Usage data: device/browser information, IP address, diagnostics, events, and performance telemetry.

We use information to:

• Provide, operate, and secure the Services.
• Authenticate users and enforce workspace permissions.
• Generate and improve product features, including AI-assisted features.
• Respond to support requests, incident reports, and legal obligations.
• Communicate updates, service notices, and account information.

Some features process workspace content to generate summaries, tests, and suggestions. Automated outputs are probabilistic and should be reviewed by users before operational or compliance decisions.

We aim to use data minimization and access controls for AI processing and related infrastructure.

Depending on your jurisdiction, we process personal information based on one or more of the following: performance of a contract, legitimate interests, compliance with legal obligations, and consent where required.

We may share information with:

• Service providers hosting infrastructure, authentication, analytics, and email.
• Integration partners you explicitly connect to your workspace.
• Legal authorities when required by law or to protect rights and safety.
• Successors in the event of merger, acquisition, or asset transfer.

We do not sell personal information for monetary consideration.

We retain personal information for as long as necessary to provide the Services, maintain security and records, resolve disputes, and satisfy legal obligations.

We implement administrative, technical, and organizational safeguards designed to protect data. No security controls are perfect, and no transmission or storage system is guaranteed to be fully secure.

Your information may be processed in countries other than where you reside. Where required, we use appropriate safeguards for cross-border transfers.

Depending on your jurisdiction, you may have rights to access, correct, delete, export, restrict, or object to processing of your personal information. To make a request, contact us at privacy@spectrace.io.

The Services are not directed to children and are not intended for users under the age required by applicable law to consent to data processing.

We may update this Privacy Policy from time to time. Material updates will be announced through the Services or another reasonable channel.

For privacy questions or requests, contact privacy@spectrace.io.

This policy is a general template and should be reviewed by qualified legal counsel for your jurisdictional and regulatory requirements.