Privacy Policy

Pursuut Technologies, Inc. — Privacy Policy

‍Effective Date: August 17, 2025

Pursuut Technologies, Inc. (“Pursuut,” “we,” “us,” or “our”) provides a technology platform that enables individuals and businesses (“Users”) to discover, communicate with, and retain independent, third-party licensed private investigators (“PIs”). This Privacy Policy explains how we collect, use, disclose, and protect information in connection with our websites, mobile apps, and related services (collectively, the “Service”).

The Service is intended for use in the United States and by individuals 18 years or older. By using the Service, you agree to the practices described here. If you do not agree, please do not use the Service.

1) Information We Collect

We collect information in two primary ways: (A) directly from you and (B) from our service providers as needed to run the Service. We do not currently collect usage analytics or set non-essential cookies.

‍A. Information you provide directly

‍Account & Profile Data. Name, email, phone, password, organization, role, photo, and preferences. For PIs: license number(s), issuing jurisdiction(s), and related credentials.

‍Client Materials. Case details, documents, images, audio/video, notes, contact information, and other content you choose to provide to request or receive PI services.

‍Communications. Messages you send to PIs or to us (support inquiries, reviews/ratings, feedback).

‍Payment & Billing Data. We use Stripe to process payments. We do not store full card numbers. Stripe collects payment instrument details directly; we may receive limited details (e.g., last four digits, card brand/expiry, transaction IDs) for records, fraud prevention, refunds, and compliance.

B. Information from service providers / necessary logs

‍Basic Security & Transaction Logs. As part of operating a secure Service, our systems and vendors (e.g., Google Firebase and Stripe) may generate minimal logs (such as timestamped requests and IP addresses) for security, abuse prevention, and payment processing. We do not use these logs to build behavior profiles or for advertising.

2) How We Use InformationWe use information to:

‍Provide the Service. Create/manage accounts, authenticate users, enable User–PI messaging, host and transmit Client Materials, process payments/payouts, and provide support.

‍Safety & Compliance. Detect and prevent fraud, abuse, and security incidents; protect accounts; and comply with law.

‍Improve Reliability. Maintain and improve core functionality and availability (e.g., diagnosing uptime issues) without tracking individual browsing behavior for analytics or advertising.

‍Communicate. Send transactional messages (receipts, notices, updates) and respond to inquiries. We send marketing emails only if you opt in or as allowed by law.(EEA/UK visitors: our legal bases, if applicable, are performance of a contract, legitimate interests (e.g., security), consent (where required), and legal obligations.)

‍3) How We Share InformationWe do not sell personal information and we do not share it for cross-context behavioral advertising.

We share information only as described below:

‍With PIs (at your direction). We share Client Materials and contact details with the PI you select so they can provide services. PIs are independent businesses with their own legal obligations and may maintain their own privacy notices.

‍With Users (for PIs). PIs share information with Users to deliver Work Product and communications.

‍Service Providers. With trusted providers that host or process data for us (e.g., Stripe for payments; Google Firebase for authentication, database, and file storage; email/support tools). They act under our instructions and appropriate safeguards.

‍Safety, Legal, and Compliance. To comply with law or legal process; to respond to lawful requests; to protect rights, safety, and property; and to enforce our Terms.

‍Business Transfers. In connection with a merger, acquisition, financing, reorganization, or sale of assets.

‍With Consent. Where you direct us to share.

4) Cookies, Local Storage & Tracking

‍Strictly Necessary Only. We use essential technologies (for example, Firebase Authentication tokens in local storage or cookies) to keep you signed in and to secure your account.

‍No Analytics/Ads Cookies. We do not currently use analytics cookies, advertising pixels, or cross-site tracking technologies.

‍Your Controls. You can block cookies in your browser; essential features (e.g., sign-in) may stop working if you do.

5) Data Storage, Security & Location

‍Hosting & Storage. We use Google Firebase (e.g., Authentication, Firestore/Realtime Database, Cloud Storage) to store account data, messages, and Client Materials; and Stripe to process payments.

‍Safeguards. Encryption in transit, access controls, role-based permissions, least-privilege access, and audit logging.

‍No absolute security. No system is 100% secure; we cannot guarantee prevention of all unauthorized access.

‍Location. Data we control is generally processed in the United States. If you access from outside the U.S., your information may be transferred to and processed in the U.S.

6) Data Retention

We retain information only as long as needed to:provide the Service while your account is active;meet legal, accounting, or reporting requirements (e.g., transaction records); resolve disputes and enforce agreements.

‍Client Materials. Upon case completion or your request, we may delete or archive Client Materials, subject to (i) legal holds, (ii) security or fraud-prevention needs, and (iii) backup integrity. PIs may retain copies as required by their professional, legal, or insurance obligations.

7) Your Choices & Rights

‍Access, Correction, Deletion. Request access to, correction of, or deletion of your personal information, subject to legal exceptions.

‍Marketing Opt-Out. Unsubscribe via the email link or email. Transactional emails will still be sent.

‍California (CPRA). California residents may request: access/know, correction, and deletion. We do not sell or “share” personal information as defined by CPRA, and we do not use or disclose sensitive personal information for purposes beyond those permitted by CPRA. Submit requests to; we will verify your identity.

‍EEA/UK (if applicable). You may have rights to access, rectify, erase, restrict or object, and data portability. You may withdraw consent where processing relies on consent and may lodge a complaint with your supervisory authority.

8) Children’s Privacy

The Service is not directed to individuals under 18. We do not knowingly collect personal information from children under 18. If you believe a child provided personal information, contact us to request deletion.

9) Roles & Responsibilities (Users, PIs, and Pursuut)

‍Pursuut as Controller. For account, platform, and billing records, Pursuut is a “controller” (or “business” under CPRA).

‍Pursuut as Processor/Service Provider. For Client Materials that we host/transmit to the PI at the User’s direction, we act as a “processor/service provider,” using such materials only to operate, secure, and provide the Service.

‍PIs as Independent Controllers. PIs independently determine how to use Client Materials and other information they obtain from you and are responsible for their own legal compliance.

10) Third-Party Links & Services

The Service may link to or integrate with third-party services (e.g., payment, communications, storage). Their privacy practices are governed by their own policies. We encourage you to review the privacy policies of Stripe and Google.

11) Do Not Track

Because there is no industry standard for Do Not Track (DNT), we do not respond to DNT signals. We do not engage in cross-site targeted advertising.

12) Changes to This Policy

We may update this Privacy Policy to reflect changes to our practices or legal requirements. If we make material changes, we will provide reasonable notice (e.g., by email or in-Service notice). The updated policy is effective when posted unless otherwise stated.

13) Contact Us

Questions, requests, or complaints: information@pursuut.com
‍
14) U.S. “Notice at Collection” (California)

‍Categories collected: Identifiers (e.g., name, email, phone), professional/license info (for PIs), commercial information (transactions), and content you provide (Client Materials); basic security logs (e.g., IP address) generated by our systems and service providers solely for security/operational purposes.
‍
Sources: You, PIs/Users, service providers (e.g., Stripe, Firebase).
‍
Purposes: Provide and secure the Service; process payments/payouts; customer support; detect/prevent fraud; comply with law; improve reliability.
‍
Disclosures: To PIs at your direction; to service providers as described above; for legal compliance; for business transfers.
‍
Retention: For the duration of your account and as described in Section 6.
‍
Sale/Share: We do not sell or “share” personal information (no cross-context behavioral advertising).
‍
Sensitive PI: We do not use or disclose sensitive personal information for purposes beyond those permitted by CPRA.