Privacy Policy

Effective Date: October 20, 2025

1. Introduction

This Privacy Policy ("Policy") describes how Autopoiesis Sciences, Inc. ("Company," "we," "us," or "our") collects, uses, discloses, and protects information in connection with the Ari platform accessible at ari.com (the "Service"). This Policy is incorporated into and forms part of our Terms of Use.

BY ACCESSING OR USING THE SERVICE, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO BE BOUND BY THIS POLICY. IF YOU DO NOT AGREE WITH THIS POLICY, YOU MUST IMMEDIATELY CEASE ALL USE OF THE SERVICE.

We reserve the right to modify this Policy at any time in our sole discretion. Any modifications become effective immediately upon posting to the Service. Your continued use of the Service following such modifications constitutes your acceptance of the revised Policy. You are responsible for regularly reviewing this Policy to stay informed of updates.

2. Information We Collect

2.1 Publicly Available Information About Researchers

The Service is fundamentally a database of publicly available information about scientists and their research. We collect, aggregate, compile, and analyze information from publicly accessible sources, including but not limited to:

  • Published research papers, academic journals, and scientific literature
  • Institutional websites, faculty directories, and academic department pages
  • Research databases, publication repositories, and citation indexes
  • Government databases and grant registries
  • Conference proceedings and presentation records
  • Patent filings and intellectual property records
  • Publicly accessible professional networking profiles
  • News articles, press releases, and media coverage
  • Any other publicly available sources of information about researchers and their work

This publicly sourced information may include, without limitation:

  • Names, titles, and professional affiliations
  • Research interests, areas of expertise, and specializations
  • Publication records, citation metrics, and scholarly impact data
  • Educational background and career history
  • Research collaborations and co-authorship networks
  • Grant funding and awards
  • Contact information published in academic contexts
  • Biographical information made publicly available by researchers or their institutions

IMPORTANT: We do not require consent to collect, use, or display publicly available information. The information displayed on the Service about researchers is derived entirely from public sources and is not provided to us by the researchers themselves unless they choose to contact us directly.

2.2 User Information

When you access or use the Service, we collect information from and about you, including:

  • Account Information: If you create an account, we collect your name, email address, password, institutional affiliation (if provided), and any other information you choose to provide during registration.
  • Usage Information: We automatically collect information about your interactions with the Service, including pages viewed, links clicked, search queries, date and time stamps, features used, session duration, and frequency of visits.
  • Device and Technical Information: We automatically collect technical information from your device, including IP address, browser type, operating system, device identifiers, screen resolution, and network connection type.
  • Communications: If you contact us directly, we collect the contents of your communications, including emails, support requests, feedback, and any information you choose to provide.

2.3 Information from Third Parties

We may receive information about you from third parties, including analytics providers, security service providers, business partners, and publicly available sources that supplement the information we have collected.

2.4 Aggregated and De-identified Information

We may create aggregated, anonymized, or de-identified data from the information we collect. Once sufficiently anonymized or aggregated such that it cannot reasonably be used to identify you, such information is no longer considered personal information and may be used for any purpose.

3. How We Use Information

3.1 Use of Publicly Available Researcher Information

We use publicly available information about researchers to:

  • Create, maintain, and update researcher profiles on the Service
  • Analyze research trends, collaborations, and scientific networks
  • Provide search functionality and discovery tools
  • Generate insights about research areas and scientific communities
  • Train and improve our artificial intelligence and machine learning models
  • Develop new features and enhance Service functionality
  • Conduct data analysis and research about scientific collaboration patterns
  • Create derivative works, visualizations, and analyses

We make no representations regarding how long we retain publicly sourced information or whether we will update or remove such information in response to changes in public sources.

3.2 Use of User Information

We use information collected from and about users to:

  • Provide, operate, maintain, and improve the Service
  • Create and manage user accounts
  • Process and respond to inquiries and requests
  • Personalize user experience and deliver relevant content
  • Analyze usage patterns and optimize Service performance
  • Detect, prevent, and address technical issues, fraud, and security threats
  • Enforce our Terms of Use and protect our legal rights
  • Comply with legal obligations and respond to lawful requests
  • Conduct research and development to improve our technology
  • Communicate with you about the Service, including updates and administrative messages
  • Send marketing communications (with your consent where required)
  • Create aggregated, anonymized analytics and reports

3.3 Legal Bases for Processing (GDPR)

For users in the European Economic Area, United Kingdom, or Switzerland, our legal bases for processing personal information include:

  • Contractual necessity to provide the Service you have requested
  • Legitimate interests in operating, improving, and securing our Service
  • Compliance with legal obligations
  • Consent, where explicitly obtained

4. Cookies and Tracking Technologies

4.1 Types of Technologies Used

We use the following technologies:

  • Essential Cookies: Necessary for the Service to function properly, including authentication and security features. These cannot be disabled.
  • Analytics Cookies: Help us understand how users interact with the Service, including usage patterns, popular features, and performance metrics.
  • Functional Cookies: Enable enhanced functionality and personalization, such as remembering your preferences and settings.
  • Advertising Cookies: Used to deliver relevant advertisements and measure advertising campaign effectiveness (if applicable).
  • Web Beacons and Pixels: Small graphic images that track page views, email opens, and user behavior.
  • Local Storage: Browser-based storage for preferences and session data.

4.2 Third-Party Analytics and Advertising

We may use third-party service providers for analytics and advertising, including but not limited to Google Analytics, Mixpanel, Segment, and similar services. These providers may collect information about your online activities over time and across different websites.

4.3 Your Choices

Most browsers allow you to refuse cookies or alert you when cookies are being sent. However, disabling cookies may limit your ability to use certain features of the Service. You can learn more about cookies and how to manage them at www.allaboutcookies.org.

4.4 Do Not Track

We do not currently respond to "Do Not Track" signals or similar mechanisms. We may adopt a standard for responding to such signals in the future.

5. How We Share Information

5.1 Public Display of Researcher Information

Information about researchers derived from public sources is displayed on the Service and is accessible to all users. This is the core functionality of the Service. By using publicly available information, we assert the right to display such information without restriction.

5.2 Service Providers and Business Partners

We may share information with third-party service providers who perform services on our behalf, including cloud hosting, analytics, customer support, security services, and payment processors. These service providers are contractually obligated to use information only as necessary to provide their services to us.

5.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

5.4 Legal Requirements and Protection of Rights

We may disclose information when we believe in good faith that disclosure is necessary to comply with applicable law, regulation, legal process, or governmental request; enforce our Terms of Use; detect, prevent, or address fraud, security, or technical issues; or protect against harm to the rights, property, or safety of the Company, our users, or the public.

5.5 Aggregated and De-identified Information

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for any purpose, including research, marketing, analytics, and business development.

5.6 With Your Consent

We may share information for any other purpose disclosed to you with your consent.

6. Data Retention

6.1 Publicly Sourced Researcher Information

We retain publicly sourced information about researchers indefinitely unless we determine, in our sole discretion, that removal is appropriate. We have no obligation to update or remove information even if it becomes outdated or if the original public source is removed or modified.

6.2 User Information

We retain user information for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce our agreements. Retention periods vary based on the type of information and the purposes for which it is used. We may retain information in backup or archival systems beyond active use periods.

6.3 Deletion Requests

Users may request deletion of their account information by contacting us. We will respond to verified deletion requests in accordance with applicable law. However:

  • We may retain certain information as required by law or for legitimate business purposes
  • We may retain anonymized or aggregated information indefinitely
  • Deletion of your account does not affect publicly sourced researcher information displayed on the Service
  • Cached or archived copies may persist for a reasonable period

7. Data Security

7.1 Security Measures

We implement commercially reasonable technical, administrative, and physical security measures designed to protect information against unauthorized access, disclosure, alteration, and destruction. These measures include:

  • Encryption of data in transit and at rest
  • Access controls and authentication mechanisms
  • Regular security assessments and monitoring
  • Employee training on data protection practices
  • Incident response procedures

7.2 No Guarantee of Security

HOWEVER, NO SECURITY SYSTEM IS IMPENETRABLE. We cannot and do not guarantee the security of information. Unauthorized entry or use, hardware or software failure, and other factors may compromise the security of information at any time. You acknowledge and accept these risks when using the Service.

7.3 User Responsibility

You are responsible for maintaining the confidentiality of your account credentials and for all activities under your account. You must immediately notify us of any unauthorized access or security breach.

8. International Data Transfers

8.1 Processing Location

The Service is operated in the United States. Information collected through the Service may be stored and processed in the United States or any other country where we or our service providers maintain facilities.

8.2 Cross-Border Transfers

By using the Service, you consent to the transfer of your information to countries outside your country of residence, including the United States, which may have different data protection laws than your jurisdiction.

8.3 European Economic Area, United Kingdom, and Switzerland

For users in the EEA, UK, or Switzerland, we rely on appropriate transfer mechanisms, including Standard Contractual Clauses approved by the European Commission, adequacy decisions, or your explicit consent.

9. Your Rights and Choices

9.1 Access and Correction

You may access and update certain account information through your account settings. You may also request access to other information we hold about you by contacting us.

9.2 Marketing Communications

You may opt out of promotional emails by following the unsubscribe instructions in those messages or by contacting us. Note that we may still send you transactional or administrative messages.

9.3 Rights Under Applicable Privacy Laws

Depending on your jurisdiction, you may have rights including:

  • Right to Know: Request disclosure of the categories and specific pieces of information we have collected about you
  • Right to Delete: Request deletion of your personal information, subject to exceptions
  • Right to Correct: Request correction of inaccurate information
  • Right to Opt-Out: Opt out of certain processing activities, including sale of personal information (if applicable)
  • Right to Data Portability: Receive your information in a structured, commonly used format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Restrict Processing: Request limitation on how we process your information
  • Right to Withdraw Consent: Withdraw consent where processing is based on consent
  • Right to Lodge a Complaint: File a complaint with a supervisory authority

9.4 Exercising Your Rights

To exercise these rights, contact us using the information in Section 16. We will respond to verified requests in accordance with applicable law. We may request additional information to verify your identity before processing your request.

We reserve the right to:

  • Charge a reasonable fee for excessive or repetitive requests
  • Refuse requests that are manifestly unfounded, excessive, or unlawful
  • Require verification of identity before responding to requests
  • Take reasonable time to respond as permitted by law

9.5 Authorized Agents

You may designate an authorized agent to make requests on your behalf. We require written authorization signed by you and may require the agent to provide proof of authorization and verify your identity directly with us.

10. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information. If you believe we have collected information from a child under 18, please contact us immediately.

11. California Privacy Rights

11.1 CCPA Rights

California residents have specific rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), including:

  • Right to Know: You may request disclosure of categories of personal information collected, sources, business purposes, third parties, and specific pieces of information
  • Right to Delete: You may request deletion of personal information we have collected from you, subject to exceptions
  • Right to Correct: You may request correction of inaccurate personal information
  • Right to Opt-Out: You may opt out of the "sale" or "sharing" of personal information and processing for targeted advertising
  • Right to Limit Use of Sensitive Personal Information: You may limit our use of sensitive personal information (if applicable)
  • Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your CCPA rights

11.2 Categories of Personal Information Collected

In the preceding 12 months, we have collected the following categories of personal information:

  • Identifiers (name, email, IP address)
  • Commercial information (transaction history, if applicable)
  • Internet or network activity (browsing history, search history)
  • Geolocation data (general location from IP address)
  • Professional or employment information (if provided)
  • Inferences drawn from the above to create user profiles

11.3 Sale or Sharing of Personal Information

We do not "sell" personal information as traditionally understood. However, our use of certain analytics and advertising technologies may constitute "sale" or "sharing" under the CCPA's broad definitions. You may opt out by contacting us or using opt-out mechanisms described in Section 4.3.

11.4 Exercising California Rights

To exercise your California privacy rights, contact us at:

Email: [email protected]
Mail: 8 The Green Ste A, Dover, DE 19901

We will respond to verified requests within 45 days, with a possible 45-day extension if reasonably necessary.

12. Nevada Privacy Rights

Nevada residents have the right to opt out of the sale of certain covered information. We do not currently sell covered information as defined under Nevada law. If our practices change, we will update this Policy and provide Nevada residents with opt-out mechanisms as required.

13. European Privacy Rights

13.1 GDPR Compliance

For users in the European Economic Area, United Kingdom, or Switzerland, we comply with applicable data protection laws including the General Data Protection Regulation (GDPR).

13.2 Data Controller

Autopoiesis Sciences, Inc. is the data controller responsible for your personal information.

13.3 Legal Bases for Processing

We process personal information based on:

  • Performance of contract with you
  • Legitimate interests in operating and improving the Service
  • Compliance with legal obligations
  • Your consent, where obtained

13.4 Your Rights Under GDPR

You have the rights described in Section 9.3, which may be exercised by contacting us.

13.5 Supervisory Authority

You have the right to lodge a complaint with your local data protection authority if you believe we have violated your rights.

14. Other Jurisdictions

We make reasonable efforts to comply with applicable privacy laws in jurisdictions where we operate. If you are located outside the United States, EEA, UK, Switzerland, California, or Nevada, different privacy laws may apply. Contact us for information about your specific rights.

15. Changes to This Policy

We reserve the right to modify this Policy at any time. When we make changes, we will update the "Effective Date" at the top of this Policy. Material changes will be communicated through prominent notice on the Service or via email. Your continued use of the Service after changes constitutes acceptance of the revised Policy.

16. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, contact us at:

Autopoiesis Sciences, Inc.
8 The Green Ste A
Dover, DE 19901
Email: [email protected]

For California residents exercising CCPA rights, use the contact information above and specify "CCPA Request" in your communication.

For EEA, UK, or Swiss residents exercising GDPR rights, use the contact information above and specify "GDPR Request" in your communication.

17. Limitations of Liability and Disclaimers

17.1 Disclaimer of Warranties

TO THE FULLEST EXTENT PERMITTED BY LAW, WE DISCLAIM ALL WARRANTIES REGARDING THE SECURITY, ACCURACY, RELIABILITY, OR AVAILABILITY OF INFORMATION. WE DO NOT WARRANT THAT OUR SECURITY MEASURES WILL PREVENT UNAUTHORIZED ACCESS, LOSS, OR MISUSE OF INFORMATION.

17.2 Limitation of Liability

TO THE FULLEST EXTENT PERMITTED BY LAW, WE SHALL NOT BE LIABLE FOR ANY DAMAGES ARISING FROM UNAUTHORIZED ACCESS TO OR DISCLOSURE OF INFORMATION, DATA BREACHES OR SECURITY INCIDENTS, ERRORS OR INACCURACIES IN INFORMATION, LOSS OR CORRUPTION OF DATA, THIRD-PARTY ACTIONS OR FAILURES, OR YOUR RELIANCE ON INFORMATION OBTAINED THROUGH THE SERVICE.

IN NO EVENT SHALL OUR TOTAL LIABILITY EXCEED ONE HUNDRED DOLLARS ($100.00) OR THE AMOUNT YOU PAID TO ACCESS THE SERVICE, WHICHEVER IS LESS.

17.3 Indemnification

You agree to indemnify and hold us harmless from any claims, damages, or expenses arising from your violation of this Policy or your misuse of information obtained through the Service.

18. Interpretation and Severability

18.1 Interpretation

This Policy shall be interpreted in accordance with its plain meaning. Headings are for convenience only and do not affect interpretation.

18.2 Severability

If any provision of this Policy is found to be unenforceable, the remaining provisions shall remain in full force and effect. The unenforceable provision shall be modified to the minimum extent necessary to make it enforceable.

18.3 Integration with Terms of Use

This Policy is incorporated into our Terms of Use. In the event of any conflict between this Policy and the Terms of Use, the Terms of Use shall control to the extent of the conflict.

19. Survival

All provisions of this Policy that by their nature should survive termination of your use of the Service shall survive, including but not limited to provisions regarding data retention, disclaimers, limitations of liability, indemnification, and dispute resolution.

20. Governing Law

This Policy is governed by the laws of the State of Delaware, without regard to conflict of law principles. Any disputes arising under this Policy shall be resolved in accordance with the dispute resolution provisions in our Terms of Use.

BY USING THE SERVICE, YOU ACKNOWLEDGE THAT YOU HAVE READ THIS PRIVACY POLICY AND AGREE TO ITS TERMS.

NOTICE TO CALIFORNIA RESIDENTS: Under California Civil Code Section 1798.83, California residents are entitled to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. As stated in this Policy, we do not share personal information with third parties for their direct marketing purposes.

NOTICE TO EEA, UK, AND SWISS RESIDENTS: This Policy describes your rights under applicable data protection laws including the GDPR. You may exercise these rights by contacting us using the information provided in Section 16.