← Back to Home

Privacy Policy

Orca AI, LLC® ("Orca," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your personal information when you use our deep web intelligence search service (the "Service"). We aim to be transparent and give you control over your data.

This policy applies to all users of the Service. If you have questions, contact us at privacy@orcaai.io or our Data Protection Officer at dpo@orcaai.io.

Effective Date: December 15, 2023
Last Updated: October 01, 2025

Definitions

  • Personal Information: Any information relating to an identified or identifiable individual, including IP addresses, device identifiers, or data that can identify you when combined with other information.
  • Sensitive Personal Information: Data revealing racial or ethnic origin, political opinions, religious beliefs, health, criminal records, or similar sensitive categories (relevant to some public datasets we link to, though we do not collect this directly).
  • Cookies: Small data files stored on your device to remember preferences.
  • Third Parties: External providers, such as analytics or advertising partners, who may process data.
  • Data Processing: Any operation on personal data, including collection, storage, use, or sharing, which may involve our AI algorithms for search functionality.

Collection of Information

We collect minimal information to provide and improve the Service. We do not collect sensitive personal information unless you voluntarily provide it (e.g., in support queries). Categories include:

  • Usage Data: IP addresses, device and browser details (e.g., app version, OS), timestamps, referring pages, and search queries.
  • Account Data: If you subscribe, we collect email, payment details (processed by third-party providers), and business verification info.
  • Cookies and Similar Technologies: See the "Cookies" section below.

We collect this for routine administration, security, maintenance, and product improvement. For example, IP addresses help detect abuse but are anonymized (e.g., hashed) where possible. We do not use your data for AI training without explicit consent.

Cookies

We use cookies to enhance your experience, such as remembering preferences or analyzing usage. Categories include:

Cookie TypePurposeDurationThird-Party?
EssentialCore functionality (e.g., session management)SessionNo
AnalyticsTrack usage for improvements (e.g., via Google Analytics)Up to 1 yearYes (e.g., Google)
PreferencesRemember settingsUp to 1 yearNo

You can manage cookies through your browser settings or our consent banner on first visit. Essential cookies don't require consent; others do. Withdraw consent anytime via privacy@orcaai.io— it won't affect core Service access.

Legal Bases for Processing

We process data only when we have a valid legal basis:

  • Consent: For non-essential cookies or optional features (e.g., personalized analytics).
  • Legitimate Interests: For IP logging and usage tracking to maintain security and improve the Service (we balance this against your privacy through data minimization and assessments).
  • Contractual Necessity: To fulfill subscriptions, provide access, or respond to your queries.
  • Legal Obligation: To comply with laws, such as retaining logs for audits.

We conduct Legitimate Interest Assessments to ensure processing respects your rights.

Sharing with Third Parties

We share limited data with trusted third parties for specific purposes. We do not sell your personal information as defined by laws like CCPA.

  • Service Providers: Analytics (e.g., Google Analytics) and hosting (e.g., AWS). They are bound by contracts to protect your data.
  • Legal Requirements: If required by law, such as subpoenas.
  • Business Transfers: In mergers or acquisitions, with notice to you.

Opt out of sharing for analytics or ads via privacy@orcaai.io or tools like Google's opt-out. Full list of third parties available on request.

User Rights

You have control over your data. Rights include:

  • Access: See what data we hold.
  • Correction: Fix inaccuracies.
  • Deletion: Erase your data (subject to legal retention).
  • Objection/Restriction: Stop or limit processing.
  • Portability: Get your data in a machine-readable format.
  • Withdraw Consent: For consent-based processing.
  • Opt-Out of Profiling: For any automated decisions (we don't use AI for high-risk profiling).

To exercise rights, email privacy@orcaai.io with your request. We'll verify your identity and respond within 30 days (45 for complex CCPA requests). No fees for standard requests. If unsatisfied, complain to your local supervisory authority (e.g., FTC in the US or a DPA in the EU).

Links to Third-Party Websites

The Service provides links to public sources. We flag high-risk links (e.g., sensitive datasets) and recommend using a VPN or segregated system. We aren't responsible for third-party privacy practices—review their policies.

Data Retention

We keep data only as needed:

  • Usage logs (e.g., IPs): 6 months for security.
  • Account data: During subscription + 1 year post-cancellation for billing.
  • Cookies: As listed above or until consent withdrawal.

Data is securely deleted afterward, unless legally required (e.g., tax records for 7 years).

Security

We prioritize security but note no system is 100% secure. Measures include:

  • Encryption (e.g., TLS for transmission, at-rest encryption).
  • Access controls, firewalls, and regular audits.
  • Employee training and vendor vetting.

Report vulnerabilities to security@orcaai.io. If a breach occurs affecting your data, we'll notify you within 72 hours (per GDPR) and take remedial steps.

Changes to This Privacy Policy

We may update this policy for legal or operational reasons. For material changes (e.g., new data uses), we'll notify you via email, account rep, or app notice at least 30 days in advance. Check periodically. Changes are tracked in a version history below:

  • Version 1.0 December 15, 2023 - Initial draft
  • Version 1.1: October 01, 2025 – Update with enhanced details.

International Transfers

Your data may be processed in the US or other countries. For transfers from the EU/UK, we use safeguards like EU Standard Contractual Clauses and conduct Transfer Impact Assessments to protect your rights.

Minors

The Service is for professionals and not directed to minors. We don't knowingly collect data from under 13 (per COPPA) or under 16 in the EU (without parental consent). If we discover such data, we'll delete it promptly.

Contact Us

For questions, contact:

  • Privacy Team: privacy@orcaai.io
  • Data Protection Officer: dpo@orcaai.io
  • Mailing Address: Orca AI, LLC®, 720 Seneca Street, Suite 107 #291, Seattle WA 98101

We comply with global laws like GDPR, CCPA, and emerging 2025 state regulations (e.g., in Texas, Montana). This policy is the full agreement on privacy—thank you for trusting Orca AI!