Privacy Policy

1. Introduction

PulseSpark.ai LLC ("PulseSpark AI," "we," "us," or "our") values your privacy. This Privacy Policy details important information regarding the collection, use, and disclosure of your information when you visit www.pulsesparkai.com (the "Site"), use our services, or otherwise interact with us. This Privacy Policy is incorporated into and is subject to our Terms of Service. Your use of the Site and any personal information you provide on or through the Site remains subject to this Privacy Policy and our Terms of Service.

Special Note to International Users. The Site is hosted in the United States and is intended for users in the United States. If you are accessing the Site from the European Union, United Kingdom, Canada, or any other region with laws governing personal data collection, use, and disclosure that differ from United States laws, please be advised that through your continued use of the Site, you are transferring your personal information to the United States and you consent to that transfer. We will, however, honor applicable data protection rights as described in Section 9 below.

2. Information We Receive from You

You provide certain personally identifiable information to PulseSpark AI when you submit a contact form, request an AI assessment, engage our consulting services, or correspond with us. This information may include:

• Name (first and last)
• Email address
• Phone number
• Company name and job title
• Website URL
• Service interest and budget range
• Message content describing your project or inquiry
• ChatGPT Business funnel details such as company size, role/title, industry, AI usage status, primary goal, and whether implementation support is requested
• Assessment responses and derived segment results (for example: strong fit, fit with implementation help, or not yet ready)
• Marketing attribution metadata: the page you submitted from, the referring URL, and any UTM campaign tags present in the URL

If you engage our paid services, we may request additional information such as billing address and payment details. Payment processing is handled by third-party payment processors; we do not store credit card numbers on our servers.

3. Information We Collect Automatically

Cookies

When you visit the Site, we may send one or more cookies — small text files containing a string of alphanumeric characters — to your device that uniquely identifies your browser. We use both session cookies (which expire when you close your browser) and persistent cookies (which remain until deleted or expired). You can configure your browser to refuse all cookies or to indicate when a cookie is being sent. However, some features of the Site may not function properly if cookies are disabled.

Log File Information

When you use the Site, our servers automatically record certain information that your browser sends whenever you visit any website. These server logs may include your IP address, browser type and version, referring and exit pages, pages viewed and the order of those pages, the amount of time spent on particular pages, device type (desktop, mobile, or tablet), operating system, and the date and time of your request.

Your IP address is processed in transient server memory only — for the purpose of applying anti-abuse rate limits to form submissions and analytics endpoints — and is not stored in our database or shared with analytics tools in raw form.

AI Search Traffic Detection

We analyze referrer URLs, UTM parameters, and browser metadata to detect whether visitors arrive from AI-powered search engines and assistants (such as ChatGPT, Perplexity AI, Claude, Google Gemini, Google AI Overviews, and Microsoft Copilot). This data helps us understand how AI search engines drive traffic to our Site and improve our Answer Engine Optimization (AEO) services. This tracking is anonymized and does not personally identify you unless you also submit a contact form.

Analytics

We use two analytics systems and both are gated by your cookie consent — neither runs until you have actively accepted analytics cookies through our cookie banner:

• Google Analytics 4, configured with Google Consent Mode v2 set to default-deny. Until you grant analytics consent, no analytics signals are sent. When consent is granted, GA4 collects standard metrics: page path, anonymized IP, browser and device type, screen resolution, and aggregate session data.
• First-party page analytics, written to our own database only after consent is granted. We record: page path, referrer URL, user agent (truncated), device type, UTM parameters, and a derived flag indicating whether you arrived from an AI search engine. We do not store IP addresses, user IDs, or any personally identifying field in this table.
• Funnel event analytics, written to our own database for conversion and operations tracking (for example CTA clicks, form starts/submissions, assessment starts/completions/segments, and follow-up/internal email trigger events).

4. How We Use Your Information

Respond to Inquiries

We use your personally identifiable information to respond to your inquiries, provide requested services, send confirmation emails, and follow up on potential consulting engagements. We do not use your email address or other personally identifiable information to send commercial or marketing messages without your consent.

For the ChatGPT Business funnel, this includes sending practical next-step emails, which may include a referral path to OpenAI for customers who choose to purchase ChatGPT Business directly from OpenAI.

We may also send internal notification emails to PulseSpark AI team recipients when you submit forms or assessments so we can review your request and respond.

Improve the Site and Services

We use both personally identifiable information and non-personally-identifiable information (such as anonymous usage data, cookies, IP addresses, browser type, clickstream data) to improve the quality and design of the Site and to create new features, services, and functionality by analyzing user preferences and trends. We use cookies, log file information, and analytics data to: (a) remember information so that you will not have to re-enter it during your visit or on subsequent visits; (b) monitor the effectiveness of our marketing and AEO efforts; and (c) monitor aggregate metrics such as total number of visitors and pages viewed.

What We Do Not Do

We do not sell your personal information to third parties. We do not use your data to train AI models. We do not share your personally identifiable information (such as name or email address) with third-party companies for their commercial or marketing use without your consent.

5. When We Disclose Information

Service Providers (Subprocessors)

We rely on the following third-party processors to operate the Site. Each is a United States company and each is bound by their own published privacy commitments. We do not transfer your data outside of these processors:

• Vercel Inc. (United States) — website hosting, edge caching, and ephemeral request logs. Vercel Privacy Policy
• Supabase Inc. (United States) — managed Postgres database that stores lead form submissions, lead activity history, outbound email logs, blog content, and (with your consent) page analytics rows. Supabase Privacy Policy
• Resend (Resend Inc.) (United States) — transactional email delivery. Receives the recipient email address, subject, and rendered HTML/text body of auto-reply messages we send to you and admin-notification emails sent to our team. Resend Privacy Policy
• OpenAI (United States) — we may provide outbound links to OpenAI product pages for customers to purchase ChatGPT Business directly. We do not process OpenAI account registration in our systems. OpenAI Privacy Policy
• Google LLC — Google Analytics 4 (United States) — pageview and event analytics. Only loads when you grant analytics consent. Google Privacy Policy

We do not use any other third-party tracking pixels, advertising networks, session replay tools, customer data platforms, chat widgets, or A/B testing services on the Site.

Non-Personally-Identifiable Information

We may share non-personally-identifiable information (such as anonymous usage data, referring pages, platform types, number of clicks) with interested third parties to assist them in understanding usage patterns for certain content, services, or functionality on the Site.

Legal Requirements

We may release personally identifiable information if required to do so by law, or in good-faith belief that such action is necessary to comply with state and federal laws, respond to a court order, subpoena, or search warrant, or to protect the security or integrity of the Site. We also reserve the right to disclose information that we believe is appropriate or necessary to enforce our Terms of Service, take precautions against liability, investigate and defend against third-party claims or allegations, or assist government enforcement agencies.

Business Transfers

In the event that PulseSpark AI is acquired by or merged with a third-party entity, we reserve the right to transfer or assign the information we have collected from users as part of such merger, acquisition, sale, or other change of control.

6. Cookies and Tracking Technologies

Necessary Cookies

Required for the Site to function. These cannot be disabled. They include session cookies and security tokens for authenticated areas of the Site.

Analytics Cookies

Used to understand how visitors interact with the Site. Analytics cookies collect anonymized data about page views, session duration, and traffic sources. These are only activated with your consent.

Marketing Cookies

If enabled, marketing cookies help us measure the effectiveness of advertising campaigns and deliver relevant content. These are only activated with your consent.

Functional Cookies

These cookies enable enhanced features such as accessibility preferences. They are only set with your consent.

You can manage your cookie preferences at any time by clicking “Manage cookies” in the footer of any page on the Site, or by adjusting your browser settings. Withdrawing consent is just as easy as granting it: your previous selection is stored only in your own browser's local storage and can be cleared by you at any time.

7. Data Retention

We retain different categories of data for different periods:

• Lead form submissions, assessment submissions, and client correspondence — retained for as long as necessary to provide our services and maintain our business relationship, and in any case no longer than three (3) years after the last contact, after which they are deleted on request or anonymized.
• Email logs (auto-replies and admin notifications we sent on your behalf) — retained for two (2) years for support and audit purposes.
• First-party page analytics (only collected after analytics consent) — retained for fourteen (14) months, after which rows are eligible for deletion.
• Google Analytics 4 data — retained according to our GA4 retention setting of fourteen (14) months at Google.
• Cookie consent preferences — stored only in your own browser's local storage. We never receive a copy.

You may request deletion of any data we hold about you at any time by emailing hello@pulsespark.ai. We will respond within thirty (30) days.

8. Data Security

PulseSpark AI uses commercially reasonable physical, managerial, and technical safeguards to preserve the integrity and security of your personal information. These measures include encryption in transit (HTTPS/TLS), secure database access controls with row-level security policies, rate limiting on form submissions, and regular security reviews of our systems and configurations.

We cannot, however, ensure or warrant the security of any information you transmit to us, and you do so at your own risk. Once we receive your information, we make commercially reasonable efforts to ensure its security. If we learn of a security breach, we will attempt to notify affected users electronically so that appropriate protective steps can be taken.

9. Your Rights

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Object to processing of your data
• Request data portability
• Withdraw consent at any time

For California Residents (CCPA)

Under the California Consumer Privacy Act, you have the right to know what personal information we collect, request its deletion, and opt out of the sale of personal information. We do not sell personal information. To exercise your rights, contact us using the information below.

For EU/EEA Residents (GDPR)

We process your data based on legitimate interest (analytics and service improvement), consent (marketing cookies), and contract performance (responding to service inquiries and fulfilling consulting engagements). You have all rights under GDPR including the right to lodge a complaint with a supervisory authority. If you wish to exercise any of these rights, please contact us using the information below.

10. Children's Privacy

Our Site and services are not intended for children under 16. We do not knowingly collect personal information from children under 16. If you believe we have inadvertently collected such information, please contact us immediately and we will take steps to delete it.

11. Third-Party Links

The Site may contain links to third-party websites. We are not responsible for the privacy practices of any third-party sites. We encourage you to review the privacy policies of any third-party websites you visit. This Privacy Policy applies solely to information collected by the Site.

12. Changes to This Privacy Policy

This Privacy Policy may be revised periodically and this will be reflected by the "Last updated" date above. Please revisit this page to stay aware of any changes. In general, we only use your personal information in the manner described in the Privacy Policy in effect when we received the information you provided. Your continued use of the Site constitutes your agreement to this Privacy Policy and any future revisions.

For revisions that may be materially less restrictive on our use or disclosure of personal information you have already provided, we will attempt to obtain your consent before implementing such revisions with respect to that information.

13. Contact Us

If you have any questions about this Privacy Policy, wish to exercise your data rights, or need to report a security concern, please contact us:

PulseSpark.ai LLC
6425 Living Place, Suite 200
Pittsburgh, PA 15206
Email: hello@pulsespark.ai
Web: www.pulsesparkai.com/contact

Effective Date: May 5, 2026