Legal · Document VLT-LEGAL-001

Privacy Policy

Last updated
2026-05-23
Status
Interim launch draft
Contact
hello@vault.ai

This Privacy Policy describes how Vault AI Systems (“Vault,” “we,” “us,” or “our”) may collect, use, disclose, and retain personal information through the Vault website, Alpha Cube reservation pages, Stripe Checkout flow, reservation confirmation page, customer communications, and related launch operations.

This policy is an interim launch draft and may be updated before final checkout launch.

01Information we collect

What Vault collects from visitors and customers

Website and device information

When someone visits the Vault site, Vault may collect technical information such as IP address, browser type, device type, operating system, referring URL, pages viewed, timestamps, approximate location derived from IP address, and interactions with site features.

Reservation and checkout information

When someone starts or completes a reservation, Vault may collect:

  1. Selected Alpha Cube and Alpha Cube Pro quantities.
  2. Deposit amount, hardware total, and remaining balance estimate.
  3. Customer email address.
  4. Company or organization.
  5. Deployment country.
  6. Stripe Checkout Session ID, Payment Intent ID, Stripe Customer ID, payment status, and amount paid.
  7. Reservation metadata needed to confirm paid model quantities and deposit assumptions.
  8. Attribution fields such as UTM source, medium, campaign, term, content, and referrer when present.
Note

Vault uses Stripe to process payments. Stripe collects payment-card and payment-method information directly. Vault does not receive full card numbers.

Operational follow-up information

After a reservation, Vault may collect information needed to confirm configuration, production allocation, deployment destination, shipping plan, billing, tax handling, onboarding, warranty, and support.

Communications

If a visitor contacts Vault by email or another channel, Vault may collect the visitor’s name, email address, company, role, message content, attachments, and related correspondence.

Cookies and similar technologies

Vault may use cookies, logs, local browser storage, analytics, and similar technologies to operate the site, understand traffic, preserve checkout state, improve the reservation flow, and measure conversion activity.

02How we use information

Purposes for which Vault processes data

Vault may use information to:

  1. Operate the website and reservation flow.
  2. Create and manage Stripe Checkout sessions.
  3. Confirm paid reservations.
  4. Record paid reservations in an operational queue.
  5. Send internal reservation alerts.
  6. Contact customers about configuration, production allocation, invoices, delivery, onboarding, support, and service.
  7. Preserve attribution and conversion information for launch operations.
  8. Prevent fraud, abuse, duplicate processing, unauthorized checkout attempts, and technical failures.
  9. Comply with legal, tax, accounting, security, and payment obligations.
  10. Improve the site, checkout flow, product pages, documentation, and customer experience.
03How we share information

Service providers and disclosure

Vault may share information with service providers that help operate the website, checkout flow, reservation operations, communications, hosting, security, analytics, payments, accounting, legal review, and support. Current service categories include:

  • Stripe
    Payment processing and Checkout sessions.
    External
  • Cloudflare Pages & Functions
    Hosting and reservation endpoints.
    External
  • Google Sheets
    First operational reservation queue.
    External
  • Google service-account infrastructure
    Appending queue rows.
    External
  • Resend (or alternative email provider)
    Internal reservation alerts and customer communications.
    External
  • Analytics & logging providers
    Site and checkout performance measurement.
    External

Vault may also disclose information if required by law, subpoena, court order, government request, tax requirement, payment dispute, chargeback process, merger, acquisition, financing, sale of assets, or to protect rights, safety, and security.

04Payment processor handling

How Stripe handles payment information

Payments are handled by Stripe. Stripe may collect, use, retain, and disclose payment and fraud-prevention information under its own legal terms and privacy policy. Customers should review Stripe’s policies before paying.

Vault receives payment-related records from Stripe, including transaction identifiers, payment status, amount, customer email, and metadata needed to confirm the reservation.

05Analytics & conversion events

Events Vault may collect

Vault may collect reservation conversion events, including checkout requested, checkout created, checkout failed, and paid completed. Vault may also collect page views, CTA clicks, cart changes, calculator interactions, FAQ opens, scroll depth, email submissions, and server-side paid conversion events.

06Email and communications

How Vault uses email

Vault may use email to respond to inquiries, send reservation or payment follow-up, provide operational updates, coordinate configuration, send invoices, support onboarding, and communicate service or warranty information.

Vault should not send marketing email unless it has the required legal basis and unsubscribe process for the applicable recipient and jurisdiction.

07Data retention

How long Vault keeps information

Vault retains personal information as long as needed for the purposes described in this policy, including reservation operations, customer support, accounting, tax, warranty, fraud prevention, legal compliance, dispute handling, and business records.

08Security

Protective measures and limits

Vault uses service providers and technical measures intended to protect information from unauthorized access, disclosure, alteration, and loss. No website, checkout flow, cloud service, email system, spreadsheet, or transmission method is completely secure.

Vault limits access to reservation data to personnel and service providers with a business need and avoids storing full payment card numbers.

09Customer rights and choices

Requests you can make

Depending on location, individuals may have rights to request access, correction, deletion, portability, restriction, objection, or opt out of certain processing or sharing. Vault will respond to valid requests as required by applicable law.

Requests can be sent to hello@vault.ai.

10International visitors

Where information may be processed

The first self-serve deposit checkout is designed for United States deployment. Visitors outside the United States may still access the website unless blocked by separate controls.

Information may be processed in the United States or other countries where Vault or its service providers operate.

11Children’s privacy

Audience for Vault’s products

Vault products and reservation flows are intended for business and professional customers, not children. Vault does not knowingly collect personal information from children.

12Changes to this policy

Updates and versioning

Vault may update this Privacy Policy from time to time. The updated policy will show the latest effective date.

13Contact

Send privacy requests to a single inbox

Privacy questions or requests: hello@vault.ai.

Customer questions: hello@vault.ai.