Privacy Policy

Last updated: 12/1/2020

This Privacy Policy describes the types of information gathered by Palapa, Inc. (“Palapa,” “us” or “we”) in the process of providing this website (the “Site”), computing application (the “App”), and the associated data, services, information, tools, functionality, updates and similar materials (collectively, the “Service”), how we use it, with whom the information may be shared, what choices are available to you regarding collection, use and distribution of information and our efforts to protect the information you provide to us through the Service.

By accessing or using the Service, you hereby consent to allow us to process information in accordance with this Privacy Policy. Please also refer to our Terms of Service at, which are incorporated as if fully recited herein (“Terms of Service”). Terms defined in the Terms of Service that are not defined herein shall have the same definition as in the Terms of Service.

We may revise or update this Privacy Policy by posting an amended version through the Service and making you aware of the revisions, which may be through posting to the Service or otherwise. Your continued access to or use of the Service following our notice of changes to this Privacy Policy (or other acceptance method) means you accept such changes. Please refer to the “Last updated” date above to see when this Privacy Policy was last updated.

This Privacy Policy is subject to the provisions of the General Data Protection Regulation ("GDPR"), the California Consumer Privacy Act of 2018, as amended (“CCPA”), and other applicable data protection and privacy law. For purposes of the GDPR, Palapa is a data “Controller” and you, if you are a resident of the United Kingdom, Northern Ireland, the European Union, or Switzerland (collectively, the “EEA”), are a “Data Subject” with certain protected privacy rights concerning your “Personal Data.” Similarly, under the CCPA, we are a “Business,” and you, if you are an individual residing in California, are a “Consumer” with certain protected privacy rights concerning your “Personal Information.” We will take commercially reasonable steps to comply with GDPR and CCPA requirements. Your Personal Data, Personal Information, and any other information collected that can identify you as a person is referred to as “Personally Identifiable Information” or “PII.”

  1. Who Collects Your Information On Our Service?

We do. Under the CCPA we are a “Business” and pursuant to the GDPR, Palapa is the “Controller” of the PII that you provide to us. We collect information from you on the Service, and we are responsible for protection of your information.

  1. What Information Do We Collect?
  1. Requested Information. On various pages on the Site, we may request specific PII about you in order to register you for an account to use the Service, add you to our email list, facilitate your payments for the Service, or fulfill your requests for information. You may choose not to provide your PII, but then you might not be able to take advantage of some of the features of our Site and Service. We collect basic personal data about you as well as certain biometric information as described herein, but no other special types of information (e.g., health-related) as defined in the GDPR. The types of PII we may collect and save include:
  1. Aggregate Information. We may also collect anonymous, non-identifying and aggregate information such as the type of browser you are using, device type, the operating system you are using, and the domain name of your Internet service provider.
  2. Service Content. As part of the functionality of the Service, the Service may record photos, audio, video, accelerometer, gyroscope, pedometer, magnetometer, barometer, or any other sensor information if you permit such access in order to use certain features of the Service, such as the image recognition feature. The Service may also request permission and access to your photo gallery, camera roll or other device storage area holding your images, audio, videos, accelerometer, gyroscope, pedometer, magnetometer, barometer, or any other sensor information in order for you to upload and transmit them through the Service. Information collected in this manner is referred to as “Service Content.”
  3. Data Set Information. As part of the functionality of the Service, users may upload data sets for automatic processing by the Service. As such, the Service may collect PII if such PII is included in by users in such data sets to the Service (“Data Set Information”).
  4. Biometric Information. The Service is not designed to create, collect, capture, store or analyze biometric information. However, the Service automatically processes data sets uploaded by users, and as such, the Service may collect, capture, store or analyze biometric information, specifically fingerprint information, voiceprints, or hand or facial geometry information if certain data sets are uploaded by users to the Service (“Biometric Information”).
  5. Financial Information. We do not collect financial information from you on the Service. However, we use third party service providers to process payments for the Service and they do collect financial information, such as banking information or credit card number, name, CVV code or date of expiration, from you on the Service.
  6. Google Information. Notwithstanding anything else in this Privacy Policy, we may also ask you to provide Palapa with access to some of your Google user data. Our use of this Google data will be subject to the following additional restrictions:
  1. Why Is My Information Being Collected?

We need to collect your PII so that we can respond to your requests for information and demonstrations or to be added to our emailing lists, to integrate with social media platforms, and to process your requests for access to and payment for our Service. We also collect aggregate information to help us better design the Site and Service. We collect log information for monitoring purposes to help us to diagnose problems with our servers, administer the Site and Service, calculate usage levels, and otherwise provide services to you.

Service Content is collected for purposes of providing certain functionalities of the Service.

Data Set Information and Biometric Information is collected for purposes of training the Service’s artificial intelligence recognition functionality and for producing and refining the Service’s neural network matrices.

  1. How Do We Use the Information We Collect?
  1. We use the PII you provide for the purposes for which you have submitted it including:
  1. We may use anonymous information that we collect to improve the design and content of our Service, and to enable us to personalize your Internet experience. We also may use this information in the aggregate to analyze how the Service is used, analyze industry trends, as well as to offer you programs or services.
  2. Service Content. We may use your Service Content to provide certain functionalities of the Service, as directed by you, including the image recognition features of the App.
  3. Data Set Processing. We may use certain PII – Data Set information and Biometric Information – to train the Service’s artificial intelligence recognition functionality and for producing and refining the Service’s neural network matrices.
  1. Do We Share Your Personal Information?

In general, we will not share your PII except: (a) for the purposes for which you provided it; (b) with your consent, or as you direct; (c) as may be required by law or as we think necessary to protect our organization or others from injury (e.g., in response to a court order or subpoena, in response to a law enforcement agency request, or when we believe that someone is causing, or is about to cause, injury to or interference with the rights or property of another); (d) with other Users, including administrators, of your corporate account, if applicable; or (e) on a confidential basis with persons or organizations with whom we contract to carry out internal site operations, which may include for example, analytical services, or as necessary to render the Service. With your knowledge and consent, we may share your personal information with our business partners, such as our marketing partners and event co-hosts. We may also share aggregate information with others, including affiliated and non-affiliated organizations. Finally, we may transfer your personal information to our successor-in-interest in the event of an acquisition, sale, merger or bankruptcy.

Your payment information may be shared with a third party service provider for purposes of payment processing.

Biometric Information shall not be disclosed to third parties. Biometric Information will be transmitted solely for the purposes described herein, which shall include transmissions for electronic storage purposes.

  1. Are There Other Ways My Personal Data Could Be Shared?

You may elect to share certain personal information with individuals, with the public, or, at your direction, with other entities with whom you have a service account via your use of the Site, App, or Service. In this case, you will control such sharing via settings that we provide. For example, the Service may make it possible for you to publicly share information via social media such as Facebook or Twitter. Be aware that when you choose to share information with friends, public officials, or with the public at large, you may be disclosing sensitive information, or information from which sensitive information can be inferred. Always use caution when sharing information through the Service. You understand and agree that Palapa is not responsible for any consequences of your sharing of information through and beyond the Service.

  1. How Can You Access and Control Your Information?

After registering for an account on the Site, you may log-in to the account and edit your PII in your profile. For instructions on how you can further access your PII that we have collected, or how to correct errors in such information, please contact us at We will also promptly stop using your information and remove it from our servers and database at any time upon your e-mail request. To protect your privacy and security, we will take reasonable steps to help verify your identity before granting access, making corrections or removing your information.

  1. How Do We Store and Protect Your Information?
  1. After receiving your PII, we will store it on our Service systems for future use. We have physical, electronic, and managerial procedures in place to safeguard and help prevent unauthorized access, maintain data security, and correctly use the information we collect. Unfortunately, no data transmission over the internet or data storage solution can ever be completely secure. As a result, although we take industry-standard steps to protect your information (e.g., strong encryption), we cannot ensure or warrant the security of any information you transmit to or receive from us or that we store on our or our service providers’ systems.
  2. If you are accessing the Service from outside of the USA, you understand that your connection will be through and to servers located in the USA, and the information you provide will be securely stored in our web servers and internal systems located within the USA.
  3. We store your PII until you request us to remove it from our servers. We store our logs and other technical records indefinitely.
  4. Biometric Information. Biometric Information will be retained solely to facilitate the purposes described herein, and will be deleted upon the earliest of (i) immediately after the purpose for capturing the Biometric Information has expired; and (ii) three (3) years from the date of the last interaction the individual who is the subject of such Biometric Information, or his or her legal representative, has with us.
  1. How Do We Use Cookies And Other Network Technologies?
  1. To enhance your online experience with us, our web pages may presently or in the future use “cookies.” Cookies are text files that our web server may place on your hard disk to store your preferences. We may use session, persistent, first-party and third-party cookies. Cookies, by themselves, do not tell us your e-mail address or other PII unless you choose to provide this information to us. Once you choose to provide PII, however, this information may be linked to the data stored in the cookie.
  2. Our Service uses Google Analytics, provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 (“Google”). Google Analytics uses cookies and similar technologies to collect and analyze information about use of the Service and report on activities and trends. This service may collect information regarding the use of other websites, apps and online resources. For more information on how Google uses data when you use our Site or Service, please follow this link: You may be able to opt-out of some or all of Google Analytics features by downloading the Google Analytics opt-out browser add-on, available at, For more information about interest-based ads, or to opt out of having your web browsing information used for behavioral advertising purposes, please visit
  3. We or our service providers may also use “pixel tags,” “web beacons,” “clear GIFs” embedded links, and other commonly used information-gathering tools in connection with some Site pages and HTML-formatted email messages for such purposes as compiling aggregate statistics about Site usage and response rates. A pixel tag is an electronic image (often a single pixel), that is ordinarily not visible to website visitors, and may be associated with cookies on visitors’ hard drives. Pixel tags allow us and our service providers to count users who have visited certain pages of the Site, to deliver customized services, and to help determine the effectiveness of our Site and Service. When used in HTML-formatted email messages, pixel tags can inform the sender of the email whether and when the email has been opened.
  4. As you use the Internet, you leave a trail of electronic information at each website you visit. This information, which is sometimes referred to as “clickstream data”, can be collected and stored by a website’s server. Clickstream data can reveal the type of computer and browsing software you use and the address of the website from which you linked to the Site. We may use clickstream data as a form of non-personally identifiable information to determine how much time visitors spend on each page of our Site, how visitors navigate through the Site, and how we may tailor our web pages to better meet the needs of visitors. We will only use this information to improve our Service.
  1. Collection of Information by Others

Our Terms and Conditions document identifies certain third party websites to which we may provide links that you may click on our Site. Please check the privacy policies of these other websites to learn how they collect, use, store and share information that you may submit to them or that they collect.

  1. Biometric Information 

If you are a user who has uploaded data sets containing or consisting of Biometric Information, you consent to our collection, capture, storage, transmission and analysis of Biometric Information as described herein, and release us from any claims that may arise regarding the use of such Biometric Information. In addition, if such data sets include data from which the Biometric Information of other individuals, you represent and warrant that you are the duly authorized legal representative of such individuals, and with respect to the Biometric Information of such individuals, you consent to our collection, capture, storage, transmission and analysis of Biometric Information as described herein, and release us from any claims that may arise regarding the use of such Biometric Information You agree to not include data in the data sets that you upload to the Service containing or consisting of the Biometric Information of individuals for which you are not the legal representative.

  1. ‘EEA’ Privacy Rights
  1. If you currently reside in the EEA, the GDPR applies to your Personal Data and you are a Data Subject. The GDPR requires that we, as a Controller, have a legal basis to process your Personal Data.
  2. We process your Personal Data under one or more of the following legal bases:
  1. Under the GDPR, as a Data Subject you have certain rights. They are:
  1. You can find instructions for enforcing some of these rights elsewhere in this Privacy Policy. Otherwise, if you wish to find out more about these rights, please contact us at
  1. California Privacy Rights
  1. The CCPA applies to our practices with respect to Personal Information of California residents. Under the CCPA, Consumers have certain rights regarding their Personal Information.
  2. California Consumers have the right to request that we disclose Personal Information we have collected about them in the previous 12 months including, but not limited to, the categories of information collected by us, the source(s) of such information by category, and the purpose for collecting such information. This right may not be exercised more than twice in a 12 month period.

In the previous 12 months, we have collected the following categories of Personal Information about Consumers:

We collect the Personal Information from our User and/or automatic means. Such Personal Information is collected in order to provide the Service, to comply with applicable law, and as otherwise described above in this Privacy Policy.

  1. As a California Consumer, you also have the right to request that we tell you which of your Personal Information we have disclosed for a business purpose, or sold, in the previous 12 months, if any. In the past 12 months, we have disclosed Personal Information falling under the following categories of personal information: Identifiers and Internet/Network Activity.

We disclose Personal Information in the preceding categories to our Users, the Consumers themselves, to third parties as the Consumer may direct, our service providers, and/or government/law enforcement agencies pursuant to the following business purposes, the provision of Service (the purpose that you provided it for), in response to a User or Consumer’s specific request, to comply with applicable law, our legitimate internal business operations, and as otherwise described above in this Privacy Policy.


  1. You also have the right to request the deletion of Personal Information that we have collected from you at any time. However, we may not be required to comply such request under several circumstances including, but not limited to, when the data is necessary for the underlying transaction, to comply with applicable law, to detect security incidents, to debug glitches, and for our internal purposes.
  2. In the event that you exercise one of your rights under the CCPA, you will not be discriminated against by Palapa in any way, whether it is through the denial of goods/services, providing you a different level of goods/services, or charging (or suggesting that we will charge) you different prices for the goods/services unless such change in price is reasonably related to the value you receive from your Personal Information.
  3. How do you exercise your rights under the CCPA?

Because we offer the Service exclusively online, you may submit requests to exercise your rights under the CCPA by contacting us at, please include “Request for Privacy Information” in the subject line. You can also submit requests by calling us toll-free at [201-691-7223].

We will acknowledge receipt of your request within 10 days of receiving it, and use best efforts to respond within 45 days of receipt of your request, but in no event will our response come more than 90 days after your request. If we are unable to provide our response within the first 45 days following your request, we shall notify you as soon as we become aware of the possible delay and provide an explanation of why additional time is needed to respond.

Before we respond to any CCPA based requests relating to your personal information, we may take steps to reasonably verify the identity of the person making the request to make sure it’s you, or your authorized agent (in either case, the “Requestor”). We do this to this avoid disclosing your information to third parties and bad actors, not to inconvenience you in any way. For purposes of verifying identity, we will ask the Requestor to confirm at least two pieces of information that we have in our files. If an agent is acting on behalf of the Consumer, we will also need to verify the agent’s identity and their authority to act on the Consumer’s behalf. As the sensitivity of the information being requested increases, we will ask the Requestor to provide more information to verify their identity and/or authority to make the request. If the identity of the Requestor cannot be reasonably verified, either as the Consumer or their agent, then in order to protect that Consumer, we may not disclose or delete the personal information that is the subject of the request.

  1. Children and Privacy

We do not knowingly permit users to register for our Service if they are under 13 years old, and therefore do not request Personal Information from anyone under the age of 13. If we become aware that a customer is under the age of 13 and has registered without prior verifiable parental consent, we will remove his or her personally identifiable registration information from our files. If you are the parent or guardian of a person under the age of 13 who has provided Personal Information to us without your approval, please inform us by contacting us at the e-mail address below and we will remove such information from our database.

  1. Contact Information

If you have any questions or suggestions regarding our Privacy Policy, please contact us at

ME1 33767006v.5