Privacy Policy

Effective Date: February 13, 2026
Last Updated: February 13, 2026

1. INTRODUCTION

SD Consulting LLC ("Company," "we," "us," or "our") operates the Asqend service ("Service"), an AI-powered task management and productivity assistant platform available at asqend.com and app.asqend.com. This Privacy Policy describes how we collect, use, process, and protect your personal information when you use our Service.

2. INFORMATION WE COLLECT

2.1 Account Information

When you create an account, we collect:

• Name and email address
• Password (encrypted and hashed)
• Profile information you choose to provide
• Account preferences and settings
• Subscription and billing information (when payment features are implemented)

2.2 Connected Service Data

With your explicit permission, we access and collect data from your connected services:

Email Data:

• Email messages, headers, and metadata
• Sender and recipient information
• Email attachments and content
• Folder organization and labels
• Read/unread status and timestamps

Calendar Data:

• Event titles, descriptions, and locations
• Attendee information
• Meeting times and schedules
• Calendar metadata and settings
• Recurring event patterns

Contact Information:

• Names, email addresses, and phone numbers
• Contact photos and profile information
• Relationship and organization data
• Contact interaction history
• Notes and custom fields

Task and Productivity Data:

• Task lists, titles, and descriptions
• Due dates, priorities, and completion status
• Project information and categorization
• Notes and comments
• File attachments and links

Financial Transaction Data:

• Transaction descriptions and amounts
• Merchant information and categories
• Account balances and transaction history
• Budget and spending categorizations
• Bank and credit card metadata (not account credentials)

2.3 AI Conversation Data

We collect and store:

• All messages and prompts you send to our AI assistant
• AI-generated responses and recommendations
• Conversation context and history
• User feedback on AI responses
• Usage patterns and interaction metrics

2.4 Usage Analytics

We automatically collect:

• Device information (type, operating system, browser)
• IP addresses and general location data
• Service usage patterns and feature interactions
• Performance metrics and error logs
• Referral sources and marketing attribution
• Session duration and frequency of use

2.5 Cookies and Similar Technologies

We use cookies, web beacons, and similar tracking technologies to:

• Maintain user sessions and authentication
• Remember user preferences and settings
• Analyze usage patterns and improve our Service
• Provide personalized content and recommendations
• Measure marketing effectiveness

See Section 10 for detailed cookie information.

3. HOW WE USE YOUR INFORMATION

3.1 Service Operation

We use your information to:

• Provide, maintain, and improve the Asqend Service
• Process and respond to your requests and communications
• Authenticate your identity and manage your account
• Enable AI-powered features and recommendations
• Sync data across your connected services
• Provide customer support and technical assistance

3.2 AI Processing and Enhancement

We use your data to:

• Process your inputs through AI providers solely to generate responses and perform requested tasks
• Generate personalized recommendations and insights
• Analyze usage patterns to improve Service features and user experience (without training AI models on your data)
• Develop new AI-powered features and capabilities

3.3 Communication

We may use your contact information to:

• Send service-related notifications and updates
• Respond to your inquiries and support requests
• Provide important security and privacy notices
• Share product updates and new feature announcements
• Send marketing communications (with your consent)

3.4 Legal and Safety Purposes

We may process your information to:

• Comply with applicable laws, regulations, and legal processes
• Protect our rights, property, and the safety of our users
• Prevent fraud, abuse, and security threats
• Enforce our Terms of Service and other policies
• Respond to legal requests from authorities

4. HOW WE SHARE YOUR INFORMATION

4.1 Third-Party AI Providers

We share your data with our AI service providers:

OpenAI:

• Conversation data and prompts for AI processing
• Context information needed for accurate responses
• Usage patterns for model improvement (if not opted out)
• Data is processed according to OpenAI's privacy policies

Anthropic:

• Similar data sharing as described for OpenAI
• Processing occurs under Anthropic's data handling terms
• May include conversation history for context

4.2 Infrastructure and Service Providers

We share data with trusted service providers:

Vercel (Hosting and Deployment):

• Application data and user interactions
• Performance metrics and error logs
• Geographic usage patterns

Supabase (Database and Authentication):

• Account information and user data
• Database queries and transaction logs
• Authentication and session management

Cloudflare (Security and CDN):

• IP addresses and request data
• Security threat intelligence
• Performance optimization data

Google APIs (Service Integration):

• Data necessary for calendar, email, and contact synchronization
• OAuth tokens and authentication data
• Service usage metrics

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred to the acquiring party. We will notify you of any such transfer and any changes to this Privacy Policy.

4.4 Legal Requirements

We may disclose your information when required by law or when we believe disclosure is necessary to:

• Comply with legal obligations, court orders, or government requests
• Protect and defend our rights and property
• Prevent or investigate fraud, security breaches, or illegal activities
• Protect the personal safety of users or the public

4.5 What We Do NOT Do

• Sell your personal information to third parties
• Share your data for marketing purposes without consent
• Provide your information to data brokers
• Use your personal data to train third-party AI models
• Use your data for purposes unrelated to the Service

5. DATA RETENTION

5.1 Active Account Data

We retain your personal information for as long as your account is active or as needed to provide the Service, typically including:

• Account information: Retained while account is active
• Connected service data: Retained with periodic refresh cycles
• AI conversation history: Retained to maintain context and improve responses
• Usage analytics: Retained for up to 2 years for service improvement

5.2 Deleted Account Data

When you delete your account:

• Personal identifying information is deleted within 30 days
• Anonymized usage data may be retained for analytics
• Some data may be retained longer for legal compliance
• Cached data in third-party services may persist according to their retention policies

5.3 Legal and Safety Data

We may retain certain information longer when required for:

• Legal compliance and regulatory requirements
• Fraud prevention and security investigations
• Resolving disputes and enforcing agreements
• Protecting the safety and security of our users

6. DATA SECURITY

6.1 Security Measures

We implement comprehensive security measures including:

Encryption:

• Data encrypted in transit using TLS 1.3
• Data encrypted at rest using AES-256
• Database encryption for sensitive information
• Secure key management practices

Access Controls:

• Multi-factor authentication for internal systems
• Role-based access controls and least privilege principles
• Regular access reviews and deprovisioning procedures
• Secure development and deployment practices

Infrastructure Security:

• Security monitoring and incident response procedures
• Regular security assessments and penetration testing
• Vulnerability management and patch procedures
• Secure cloud infrastructure with reputable providers

6.2 Third-Party Security

Our service providers are required to maintain appropriate security measures and are contractually obligated to protect your data according to industry standards.

6.3 Security Limitations

7. YOUR PRIVACY RIGHTS

7.1 General Rights

Depending on your location, you may have the following rights:

• Access: Request information about what personal data we have about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal limitations)
• Portability: Request a copy of your data in a machine-readable format
• Objection: Object to certain types of data processing
• Restriction: Request limitation of data processing in certain circumstances

7.2 California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

• Right to Know: You can request information about the categories and specific pieces of personal information we collect, use, disclose, and sell
• Right to Delete: You can request deletion of your personal information (subject to exceptions)
• Right to Opt-Out: You can opt-out of the "sale" of personal information (we do not sell personal information)
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

Categories of Personal Information We Collect:

• Identifiers (name, email, IP address)
• Commercial information (transaction data, usage patterns)
• Internet activity (browsing behavior, interactions)
• Professional information (work-related data from connected services)
• Inferences (preferences, characteristics derived from data analysis)

7.3 Exercising Your Rights

To exercise your privacy rights:

• Email us at hello@asqend.com
• Include your full name and email address
• Specify which rights you wish to exercise
• Provide sufficient detail for us to locate your information
• We will respond within 30 days (or as required by applicable law)

8. INTERNATIONAL DATA TRANSFERS

Our Service is operated from the United States, and your information may be transferred to, stored, and processed in the United States and other countries where our service providers operate. These countries may have different data protection laws than your country of residence.

When we transfer personal information internationally, we implement appropriate safeguards such as:

• Standard contractual clauses
• Adequacy decisions by relevant authorities
• Other legally recognized transfer mechanisms

8.1 Geographic Scope

9. CHILDREN'S PRIVACY

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information promptly.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at hello@asqend.com.

10. COOKIES AND TRACKING TECHNOLOGIES

10.1 Types of Cookies We Use

Essential Cookies:

• Authentication and session management
• Security and fraud prevention
• Basic website functionality

These cannot be disabled without affecting Service functionality

Analytics Cookies:

• Usage statistics and performance monitoring
• Feature usage and user behavior analysis
• Error tracking and debugging

You can opt-out of these in your account settings

Preference Cookies:

• User interface preferences and settings
• Language and accessibility options
• Personalization features

You can manage these in your account settings

10.2 Third-Party Cookies

We may allow certain third-party services to place cookies:

• Google Analytics (if implemented)
• AI provider analytics and optimization
• Infrastructure monitoring and performance

10.3 Managing Cookies

You can control cookies through:

• Your browser settings and preferences
• Account settings within our Service
• Third-party opt-out mechanisms where applicable

Note that disabling certain cookies may limit Service functionality.

11. DATA BREACH NOTIFICATION

11.1 Our Commitment

We take data security seriously and have implemented incident response procedures to address potential data breaches promptly and effectively.

11.2 Notification Procedures

In the event of a data breach that poses a risk to your personal information:

• We will investigate and contain the breach
• We will assess the risk to affected individuals
• We will notify relevant authorities as required by law
• We will notify affected users via email without unreasonable delay, and in any event within the timeframes required by applicable law
• We will provide information about what happened and what we're doing about it

11.3 Your Response

If you believe your account has been compromised:

• Change your password immediately
• Review your account activity for suspicious behavior
• Contact us at hello@asqend.com
• Monitor your connected services for unauthorized access

12. UPDATES TO THIS PRIVACY POLICY

12.1 Policy Changes

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will provide notice of material changes by:

• Posting the updated policy on our website
• Sending email notification to your registered email address
• Displaying prominent notice within the Service
• For material changes, providing at least 30 days advance notice

12.2 Continued Use

Your continued use of the Service after the effective date of any changes constitutes acceptance of the revised Privacy Policy. If you do not agree with the changes, you should stop using the Service and may delete your account.

13. CONTACT INFORMATION

13.1 Privacy Questions

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Privacy Contact:
SD Consulting LLC
Longmont, CO 80504
Email: hello@asqend.com
Subject Line: Privacy Policy Inquiry

13.2 Response Time

We will respond to privacy-related inquiries within 30 days, or sooner as required by applicable law. For urgent security concerns, please mark your email as "URGENT - SECURITY."

14. ADDITIONAL STATE-SPECIFIC PRIVACY RIGHTS

14.1 Nevada Residents

Nevada residents may request that we do not sell their personal information. We do not sell personal information, but you can still make this request by emailing hello@asqend.com.

14.2 Virginia Residents (VCDPA)

Virginia residents have rights similar to California residents, including the right to access, correct, delete, and obtain a copy of personal information, as well as opt-out of targeted advertising and profiling.

14.3 Other States

As additional state privacy laws take effect, we will update this policy to ensure compliance and inform residents of their rights.

15. BUSINESS CONTEXT AND DATA CONTROLLER INFORMATION

15.1 Data Controller

SD Consulting LLC acts as the data controller for personal information collected through the Asqend Service. We determine the purposes and means of processing your personal information.

15.2 Service Providers vs. Controllers

Our third-party service providers (OpenAI, Anthropic, Vercel, Supabase, Cloudflare) act as data processors when processing your information on our behalf. However, they may also act as independent data controllers under their own privacy policies for certain data processing activities.

15.3 Joint Processing

In some cases, we may engage in joint processing activities with third parties. When this occurs, we will inform you of the arrangement and how it affects your privacy rights.

---

This Privacy Policy is effective as of the date listed above and applies to all information collected by SD Consulting LLC through the Asqend Service.

By using our Service, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your personal information as described herein.