JETTSON_

Privacy Policy

Last Updated: April 14, 2026

RWX-TEK INC ("we", "us", "our") operates Jettson.ai ("Service"). This Privacy Policy explains how we collect, use, store, and protect your personal information.

By using Jettson, you consent to this Privacy Policy.

1. Information We Collect

1.1 Information You Provide

  • Account Information: Name, email address, password
  • Payment Information: Billing address, payment method details (processed by Stripe; we do not store full card numbers)
  • Profile Information: Optional profile details, company name, preferences
  • Content: MCP server code, chat messages, uploaded files, CRM contacts

1.2 Information We Collect Automatically

  • Usage Data: Pages visited, features used, time spent, click patterns
  • Device Information: Browser type, operating system, IP address, device identifiers
  • Cookies and Tracking: See Section 6 below
  • Log Data: Server logs, error reports, API calls

1.3 Information from Third Parties

  • Authentication Providers: Google, GitHub (if you use social login)
  • Payment Processors: Stripe transaction data
  • AI Providers: OpenAI, Anthropic (for AI features)
  • Data Providers: Apollo.io (for lead data in Studio)
  • Infrastructure: Fly.io (for MCP hosting)

2. How We Use Your Information

We use your information to:

  • Provide the Service: Deploy MCP servers, run AI models, store data
  • Process Payments: Manage subscriptions and billing via Stripe
  • Improve the Service: Analyze usage, fix bugs, develop features
  • Communicate: Send service updates, security alerts, marketing (opt-out available)
  • Support: Respond to inquiries and troubleshoot issues
  • Security: Detect fraud, abuse, and security threats
  • Legal Compliance: Comply with legal obligations, enforce Terms of Service

3. Legal Basis for Processing (GDPR)

If you are in the EU/EEA, we process your data under:

  • Contract Performance: To provide the Service you subscribed to
  • Consent: For marketing communications (you may withdraw consent)
  • Legitimate Interests: To improve the Service, prevent fraud, and ensure security
  • Legal Obligation: To comply with applicable laws

4. Data Sharing and Disclosure

4.1 Service Providers

We share data with third-party providers who help us operate Jettson:

  • Fly.io: Infrastructure for MCP server hosting
  • Stripe: Payment processing
  • Firebase: Data storage and authentication
  • OpenAI, Anthropic: AI model inference
  • Apollo.io: Lead data for Studio CRM
  • Sentry: Error monitoring

Service providers are contractually obligated to protect your data and use it only for our purposes.

4.2 Business Transfers

If RWX-TEK INC is acquired, merged, or sold, your data may be transferred to the new owner.

4.3 Legal Requirements

We may disclose data if required by law, subpoena, court order, or to:

  • Protect our rights, property, or safety
  • Enforce our Terms of Service
  • Prevent fraud or illegal activity
  • Respond to government requests

4.4 Aggregated Data

We may share anonymized, aggregated data (e.g., usage statistics) publicly or with partners.

4.5 With Your Consent

We may share data with third parties if you explicitly consent.

5. Data Retention

  • Account Data: Retained while your account is active
  • MCP Servers: Retained until you delete them or terminate your account
  • Chat Logs: Retained for up to 90 days (unless you delete earlier)
  • Payment Records: Retained for 7 years for tax and legal compliance
  • Backups: Data may persist in backups for up to 30 days after deletion

You may delete your account at any time. Upon deletion, we will remove your data within 30 days, except where required by law.

6. Cookies and Tracking Technologies

6.1 What We Use

  • Essential Cookies: Required for authentication, security, and core functionality
  • Analytics Cookies: Google Analytics, Sentry (usage patterns, error tracking)
  • Preference Cookies: Remember your settings and preferences

6.2 Third-Party Cookies

  • Stripe: Payment processing
  • Google Analytics: Website analytics (anonymized)
  • Firebase: Authentication and hosting

6.3 Your Choices

7. Your Rights

7.1 Access and Portability

  • You may access your data at any time via your account settings
  • You may export your data in machine-readable format (contact us for assistance)

7.2 Correction

  • You may update your account information at any time

7.3 Deletion

  • You may delete your account and request data deletion at any time
  • Some data may be retained for legal or security purposes

7.4 Restriction and Objection

  • You may object to processing for marketing purposes (opt-out links provided)
  • You may request restriction of processing in certain circumstances

7.5 Withdrawal of Consent

  • You may withdraw consent for marketing communications at any time
  • Withdrawal does not affect processing already completed

7.6 Lodge a Complaint

  • EU/EEA users: You may lodge a complaint with your local data protection authority
  • California users: See Section 9 for CCPA rights

To exercise your rights, contact us at customertek@rwxtek.com

8. Security

8.1 Measures We Take

  • Encryption in transit (HTTPS/TLS)
  • Encryption at rest for sensitive data
  • Access controls and authentication
  • Regular security audits and monitoring
  • Secure third-party service providers

8.2 No Guarantee

WE IMPLEMENT REASONABLE SECURITY MEASURES, BUT CANNOT GUARANTEE ABSOLUTE SECURITY. YOU USE THE SERVICE AT YOUR OWN RISK.

8.3 Your Responsibility

  • Keep your password secure
  • Enable two-factor authentication (if available)
  • Report security incidents immediately: customertek@rwxtek.com

9. California Privacy Rights (CCPA)

If you are a California resident, you have the following rights:

9.1 Right to Know

You may request disclosure of:

  • Categories of personal information collected
  • Sources of personal information
  • Purposes for collecting or selling personal information
  • Categories of third parties with whom we share data

9.2 Right to Delete

You may request deletion of your personal information (subject to legal exceptions).

9.3 Right to Opt-Out

We do not sell your personal information.

If we ever engage in data sales, we will provide an opt-out mechanism.

9.4 Right to Non-Discrimination

We will not discriminate against you for exercising your CCPA rights.

9.5 Shine the Light

California users may request information about data shared with third parties for direct marketing (we do not engage in such sharing).

To exercise your CCPA rights, contact us at customertek@rwxtek.com

We will verify your identity before processing requests.

10. Children's Privacy

Jettson is not intended for children under 18. We do not knowingly collect data from children.

If we discover we have collected data from a child, we will delete it immediately.

Parents: If you believe your child has provided us with data, contact customertek@rwxtek.com

11. International Data Transfers

11.1 Data Location

  • Your data is stored in the United States (Firebase, Fly.io)
  • MCP servers may be deployed in regions you select

11.2 EU/EEA Users

  • We rely on Standard Contractual Clauses (SCCs) for data transfers outside the EU/EEA
  • We comply with GDPR requirements for international transfers

12. Third-Party Links

Jettson may contain links to third-party websites or services. We are not responsible for their privacy practices.

Review third-party privacy policies before providing them with data.

13. Changes to This Policy

We may update this Privacy Policy at any time. We will notify you of material changes via:

  • Email to your registered address
  • Notice on the Service

Continued use after changes constitutes acceptance of the updated policy.

14. Contact Us

For questions, concerns, or requests regarding this Privacy Policy, contact us at:

RWX-TEK INC
Email: customertek@rwxtek.com
Website: jettson.ai
Address: 8605 Santa Monica Blvd #664055, West Hollywood, CA 90069

Data Protection Officer (DPO):
Email: bryanr2@rwxtek.com

15. Developer-Specific Privacy

15.1 MCP Server Code

  • Your MCP server code is private and encrypted
  • We may inspect code only for security, legal compliance, or abuse prevention
  • Code is not shared with third parties except infrastructure providers (Fly.io)

15.2 API Usage

  • API request logs are retained for up to 90 days
  • Logs may include timestamps, endpoints, request parameters, and response codes
  • Logs are used for debugging, billing, and security

16. Studio-Specific Privacy

16.1 AI Chat Data

  • Chat messages are sent to AI providers (OpenAI, Anthropic) for processing
  • AI providers may use data to improve models (subject to their privacy policies)
  • You can request deletion of chat history at any time

16.2 CRM Contacts

  • Contact data you upload is stored in Firebase
  • You are responsible for obtaining consent to store contact data
  • We do not use your CRM data for our marketing or other purposes

16.3 Lead Data

  • Lead data from Apollo.io is subject to Apollo's privacy policy
  • We do not control Apollo's data practices
  • You are responsible for complying with privacy laws when contacting leads

17. Data Processing Agreement (DPA)

If you are a business customer subject to GDPR or other data protection laws, we can provide a Data Processing Agreement (DPA) upon request.

Contact customertek@rwxtek.com for DPA inquiries.

BY USING JETTSON, YOU ACKNOWLEDGE THAT YOU HAVE READ AND UNDERSTOOD THIS PRIVACY POLICY.

RWX-TEK INC
Last Updated: April 14, 2026