Privacy policy
Your information and data while using Neto
Privacy policy
Your information and data while using Neto
Privacy policy
Your information and data while using Neto
Privacy Policy
Techneto Corp, a Nevada corporation doing business as Neto (referred to as “Neto,” “we,” “us,” or “our”), respects your privacy and is committed to protecting your personal data. This Privacy Policy describes how we collect, use, disclose, and protect personal information when you use our software-as-a-service platform that enables companies to deploy agentic AI engagement agents (the “Service”). It also explains your rights under applicable privacy laws and how you can exercise them. We have drafted this Policy to comply with the California Privacy Rights Act (CPRA) and the European Union/United Kingdom General Data Protection Regulation (GDPR), among other laws. Please read it carefully to understand our practices.
Scope of this Privacy Policy
This Privacy Policy applies to personal information that Neto collects and processes in the course of operating our Service and website. It covers data from our business customers, their end-users who interact with the AI agents, and visitors or users of our websites and platform. In many cases, Neto acts as a service provider or processor for our business customers, which is explained below. By using our Service or providing us with personal information, you acknowledge that your information will be handled as described in this Policy.
Information We Collect
We only collect personal information that is necessary for providing and improving our Service. We do not collect any payment information or sensitive personal data (such as government IDs, financial account numbers, or special categories of data like health, racial or ethnic origin, etc.). The personal information we collect includes:
Contact and Account Information: This includes identifiers such as your name, email address, phone number, and any similar contact details. For example, if you register for a Neto account or are designated as a contact person by one of our customers, we will collect your name and contact information. We may also collect account login credentials (like username and password) for those using our platform (passwords are stored in an encrypted form).
Chat Transcripts and Content: When end-users interact with an AI engagement agent powered by our Service (for instance, in a chat conversation), we collect the content of those communications. Chat transcripts may include any personal information that users choose to share during the chat. We process these transcripts on behalf of our customers to enable the AI agent’s functionality. We advise users not to provide sensitive information in chats, and our platform is not intended to handle sensitive data.
Usage Data: We automatically collect certain technical information when you use our website or Service. This may include your Internet Protocol (IP) address, browser type, device type, operating system, referring URLs, and timestamps of interactions. We also log usage data such as actions you take in the platform (e.g., when you log in, configurations made) and performance data about the AI agent interactions. This information helps us operate and secure our Service, and to understand and improve how users interact with it.
Cookies and Similar Technologies: Neto may use cookies or similar tracking technologies on our websites to provide and personalize the Service, for example to keep you logged in, remember your preferences, and gather analytics about usage. These cookies do not collect sensitive personal data and are not used for third-party advertising purposes. You can control cookies through your browser settings, but note that disabling certain cookies may affect functionality of the Service. (For more details, you may refer to a Cookie Notice if available.)
Aggregated and De-Identified Data: We may also derive information by aggregating or de-identifying personal data. For example, we might compile statistical information about how often certain help topics are requested or how the AI agents are used. Such aggregated data does not identify any individual and is not considered personal information. We use this to understand trends and improve our Service. This policy does not restrict our use or disclosure of non-identifiable aggregated data.
How We Use Personal Information
Neto uses the personal information we collect only for the following purposes (and in accordance with applicable law): To Provide and Operate the Service: We process personal data to run our platform and deliver services to our customers. This includes using contact information to set up or manage accounts, and using chat transcript data to generate responses and outcomes via the AI engagement agents. In doing so, we act on behalf of our customers for the data they entrust to us. We also use personal data to provide customer support, troubleshoot issues, and ensure the Service functions as intended.
To Communicate with You: We use contact information (such as email and phone number) to send service-related communications. These may include confirmations, invoices, technical notices, updates, security alerts, and administrative messages. If you contact us with questions or for support, we will use your information to respond. We do not use your personal information to send marketing emails or promotional communications unrelated to the Service unless you have explicitly opted in to such communications.
To Improve and Develop our Platform: Neto is continually improving its AI engagement platform. We may use usage data, feedback, and aggregated/de-identified data (including patterns from chat transcripts) to analyze and enhance our algorithms, features, and user experience. For example, we might analyze how users are interacting with agents to refine response accuracy or UI design. Any personal data used for development or research is either aggregated or de-identified so that individuals are not identified, or it is used in a manner consistent with our role as a processor (with appropriate contractual safeguards when derived from customer data).
To Ensure Security and Prevent Fraud/Misuse: We process certain data to maintain the security of our Service, our customers, and users. This includes using log and device information to monitor for suspicious activity, debug and fix errors, protect against malicious, fraudulent, or illegal behavior (such as detecting bots or preventing unauthorized access), and enforcing our terms of service. These activities are essential to protect the integrity of our platform and our users’ accounts.
To Comply with Legal Obligations: We may process and retain personal information as required to comply with applicable laws, regulations, legal processes, or enforceable governmental requests. For example, we might retain certain records to meet tax, auditing, or financial reporting requirements, or use contact information to send legally required notices. If we are legally compelled to disclose personal data (e.g., in response to a subpoena or court order), we will only do so after verifying the request’s validity and, when possible, providing notice to the affected parties. We will not use personal information for purposes that are incompatible with those above without obtaining your consent or unless permitted by law. If we ever need to process your personal data for a new purpose, we will update this Privacy Policy and notify you as required.
Our Role as a Service Provider / Processor
Neto primarily provides a business-to-business (B2B) service. In many cases, we act as a “service provider” (under California law) or “data processor” (under GDPR) for the personal data that our customers input into our platform or that is generated through the use of our Service:
Customer as Data Controller: When a business (our customer) uses Neto to deploy an AI agent that engages with individuals (end-users), that business is generally the entity that determines why and how any personal data from those interactions is processed. For example, our customer might collect their end-users’ names or contact info and chat history through our Service. In this scenario, the customer is the data controller (or “business” under CPRA) with respect to the end-user’s personal information, and Neto is their contracted processor/service provider.
Neto as Data Processor: As a processor/service provider, we process personal data from our customers only on their behalf and according to their instructions and our contractual agreements. This means we do not use or disclose that data for our own purposes (outside of the limited purposes permitted, such as to maintain or improve the service, or as required by law). We will not “sell” or “share” such customer-provided personal information with third parties except as allowed by our contract and described in this Policy. Any aggregate insights we derive to improve our platform are done in a privacy-conscious way (e.g., using de-identified data as noted above, or as authorized by the customer).
End-Users of Our Customers: If you are an individual interacting with a company’s AI agent powered by Neto (for example, you are chatting with a support agent on a company’s website that uses Neto), please refer to that company’s privacy policy. Our customers are responsible for providing you (the end-user) with any required privacy notice and for handling your requests regarding your personal information. Neto will assist our customers in fulfilling those obligations as needed. While this Privacy Policy gives an overview of how we handle all personal data, it is not meant to override the specific privacy disclosures of our customers who use our Service.
Neto as Data Controller: In some cases, Neto does act as a data controller/business - for example, for the information we collect about our direct customers (account administrators, billing contacts) and website visitors, or any data we collect for our own marketing or operational purposes. For such data, Neto determines the purposes and means of processing, and this Privacy Policy describes how we handle it. In these cases, we take on the responsibilities of a data controller under GDPR/CPRA. The rights and choices outlined in this Policy (in the section “Your Privacy Rights”) apply to that data.
In summary, when we process personal data on behalf of a customer, we do so in accordance with that customer’s direction and applicable data protection laws, and we treat the data with care and security. We also ensure that our agreements with customers contain the necessary data protection terms (such as GDPR-required processor terms or CPRA service provider provisions) to safeguard the information.
Disclosure of Personal Information
We do not sell your personal information to anyone, and we do not share your personal information with third parties for their own advertising or marketing purposes. We only disclose personal data in the following circumstances:
Trusted Service Providers (Subprocessors): We share personal information with a limited number of trusted third-party companies who process it on our behalf to support our operations. These service providers (subprocessors) help us to provide the Service and are bound by contracts to protect the data and use it only for the purposes we specify.
Key subprocessors we use include: Cloud Hosting Providers: We use reputable cloud infrastructure platforms in the United States such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform to host our application and databases. Personal data is stored and processed on their servers, but they cannot access or use it except as needed to maintain our services.
AI Processing Services: We may use artificial intelligence or machine learning services like OpenAI to process chat content and generate responses. If chat transcripts or related data are sent to such a service, it is only to provide the requested functionality (e.g., generating a conversational reply). We ensure any such provider does not use your data for their own purposes (for example, OpenAI API services do not use submitted data to train their models, unless explicitly agreed otherwise).
Communication Services: If our Service involves sending messages (e.g., SMS texts or phone calls) to users or customers, we use providers like Twilio to handle those communications. For instance, if you receive a text from one of our customers’ AI agents, your phone number and the message content pass through Twilio’s system to be delivered to you. Twilio is contractually obligated to keep that information confidential and secure.
Analytics and Utility Providers: We might use tools from companies like Google or Microsoft for analytics, error tracking, or other support services (for example, to monitor the performance of our application or to facilitate customer support chat). These providers may incidentally process some personal data (like IP address or user ID) in the course of providing their services to us. We do not allow our analytics providers to use data for independent profiling or advertising. Where feasible, we use settings that enhance privacy (such as IP anonymization in analytics). A full list of our current subprocessors is available upon request. We conduct due diligence on our service providers and require each to implement adequate data protection measures.
Within Our Corporate Group: (If applicable) We may share personal information between Techneto Corp and any affiliates or subsidiaries (for example, if we establish an EU-based subsidiary or other related entity) as needed to operate and provide the Service. Any such entities will only use the information as described in this Policy and are bound by appropriate confidentiality and data protection obligations.
Business Transfers: If Neto (Techneto Corp) is involved in a merger, acquisition, bankruptcy, reorganization, or sale of all or some of our assets, personal information may be transferred to the successor or affiliate as part of that transaction. We would ensure that any such entity honors the protections required by this Privacy Policy or obtains your consent where required. You would be notified via a prominent notice on our website or by email of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information in such an event.
Legal Compliance and Protection: We may disclose personal information to third parties (such as courts, law enforcement authorities, regulators, or others) when we believe in good faith that such disclosure is necessary to: Comply with a law, regulation, legal process, or lawful government request (for example, to respond to a subpoena or court order). Enforce our Terms of Service or other agreements, and investigate potential violations thereof. Detect, prevent, or address fraud, security, or technical issues. Protect the rights, property, or safety of Neto, our customers, users, or the public, as required or permitted by law. When possible and lawful, we will attempt to notify you if we must disclose your information as part of a legal process.
With Your Consent: Apart from the cases listed above, we will share your personal data with others only if you direct us to or with your explicit consent. For example, if you request that we send your data to a third-party or integrate our Service with another application that requires sharing information, we will do so at your direction.
No Selling or Sharing of Personal Information: Neto does not sell personal information to third parties for monetary value. We also do not “share” personal information for cross-context behavioral advertising (as those terms are defined under the CPRA). In the past 12 months, we have not sold or shared personal information of our users or customers. If this ever changes, we will update this Privacy Policy and provide appropriate notices and opt-out mechanisms as required by law.
International Data Transfers
Neto is based in the United States and all personal data we collect is processed and stored on servers located in the U.S. (for example, in data centers managed by AWS, Azure, or GCP as noted). If you are using our Service from outside the U.S., be aware that your personal information will be transferred to and stored in the United States, which may have data protection laws that differ from those in your country.
For individuals in the European Economic Area (EEA), United Kingdom (UK), or other regions with data transfer restrictions, we take steps to ensure that your personal data receives an adequate level of protection when transferred to the U.S. Specifically, when we handle EEA/UK personal data, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission (and by the UK Information Commissioner’s Office, as applicable) as the legal mechanism for such transfers, or other legally approved transfer frameworks. These SCCs are incorporated into our data processing agreements with customers and vendors, contractually requiring that your data is protected according to EU/UK standards even while stored or processed in the U.S.
We also implement additional safeguards as appropriate, such as encryption in transit and at rest, and policies to handle any government data access requests in compliance with EU/UK law. By using our Service or providing us with information, you understand that your personal data may be transferred to our facilities in the U.S. and to those third parties with whom we share it as described in this Policy, and that we will protect it as described. If you have questions about international transfers or need a copy of the relevant SCCs, you can contact us using the details at the end of this Policy.
Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or to comply with legal or contractual requirements. Retention periods vary depending on the type of data and the purposes of processing. Below are our standard retention practices:
Chat Transcripts: We retain chat transcript data (the content of AI agent conversations and related logs) for one (1) year from the date of the conversation. After one year, chat transcripts are automatically deleted or irreversibly anonymized, unless we are required by law to retain them longer or our customer requests a different retention period under their contract. We retain transcripts for this period to allow our customers to review past interactions and to improve the Service (within the limits described above). After deletion, only aggregated data or insights (which contain no personal information) may be kept.
Account and Contact Information: We retain account-related personal information (such as your name, email, phone, company name, and other profile information) for as long as your or your company’s account is active and for up to 3 years after an account is closed or our business relationship has ended. We keep this information post-termination in case you or the company return to use our Service, to manage any pending transactions or disputes, to enforce our agreements, and to comply with any record-keeping requirements. After 3 years following termination, we will delete or anonymize this data from our active systems, except where we need to retain it to comply with legal obligations (for example, certain financial records may be kept for a longer period under tax laws) or to resolve disputes.
Usage Data: Server logs and technical records are generally retained for a shorter period (typically a few months up to a year) for troubleshooting and security analysis, unless a longer retention is required (such as logs relevant to security incidents may be kept until resolved). Aggregated analytics data that does not identify individuals may be retained longer for historical analysis.
Email and Communications: If you contact us via email or support ticket, we may retain those communications and our responses for our records for up to 3 years or longer if needed for legal/audit purposes.
Once the retention period expires or the data is no longer needed, we will securely delete or anonymize your personal information. If deletion or anonymization is not immediately possible (for example, because the data is stored in backups), we will ensure that it is isolated and protected until deletion is possible. We also periodically review our data holdings to ensure we are not retaining personal data longer than necessary.
If you request deletion of your data (see Your Privacy Rights below), we will delete your personal information from our active systems and inform our service providers to do the same, except to the extent we are permitted or required to retain certain information as explained above.
Security Measures
We take the security of personal information very seriously and implement industry-standard security measures to protect your data from unauthorized access, alteration, disclosure, or destruction. These measures include, but are not limited to, the following:
Encryption: All personal data is encrypted at rest (when stored in our databases or file systems) and in transit (when transmitted between your device and our servers, and between our internal services). We use strong encryption protocols such as TLS (Transport Layer Security) for data in transit and AES-256 or equivalent encryption for data at rest.
Access Controls (RBAC): We employ Role-Based Access Control, meaning that internal access to personal information is restricted on a need-to-know basis. Only authorized personnel with specific roles (e.g., a support engineer addressing a customer issue) can access personal data relevant to their job duties. Access to sensitive systems and data is limited and reviewed regularly. Each employee or contractor at Neto is bound by confidentiality obligations.
Authentication and Account Security: We require strong authentication measures for accessing systems that contain personal data. This includes Multi-Factor Authentication (MFA) for our administrators and employees when logging into sensitive systems, to add an extra layer of security beyond just a password. We also encourage (and may enforce) two-factor authentication for our customer accounts on the platform to help prevent unauthorized access to your account.
Network and System Security: Our systems are protected by firewalls and network security monitoring to guard against external attacks. We regularly update our software and systems to address security vulnerabilities. We use intrusion detection and prevention systems to alert us of suspicious activities. Additionally, we limit and secure any integrations with third-party systems following best practices.
Penetration Testing and Audits: We engage independent security experts to perform annual penetration tests and security assessments of our platform. These controlled tests help identify and fix potential weaknesses. We also perform routine internal security audits and risk assessments. Any critical findings are remediated as a top priority.
Training and Policies: Neto maintains comprehensive security and privacy policies, and we train our staff regularly on data protection best practices, including how to identify and prevent social engineering or phishing attacks and how to safely handle personal data.
Data Breach Response: Despite all measures, no system can be guaranteed 100% secure. We have a detailed incident response plan in place to handle any data security breach. In the unlikely event of a security breach that results in unauthorized access to personal information, we will promptly contain the issue, notify affected customers/users without undue delay (as required by law), and provide information on steps we are taking and recommendations for further precautions.
We continuously work to improve our security practices to keep pace with evolving threats. If you have questions about the security of your personal data, or if you suspect any unauthorized activity or security issue related to Neto, please contact us immediately at our support email below.
Your Privacy Rights
Depending on your location and applicable law, you have certain rights regarding your personal information. Neto is committed to honoring your rights and providing you control over your data. The following sections describe specific rights available to individuals in California and in the European Economic Area (EEA)/United Kingdom, and how you can exercise them. Even if you are not in one of these regions, we will make reasonable efforts to accommodate privacy requests regarding your data, in line with applicable laws.
Rights of California Residents (CPRA)
If you are a resident of California, you are protected by the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA). Under the CPRA, California residents have the following rights with respect to their personal information:
Right to Notice: You have the right to be informed, at or before the point of collection, about the categories of personal information we collect and the purposes for which we use them. This Privacy Policy serves as that notice by detailing what information we collect and why (see Information We Collect and How We Use Personal Information above). We will not collect new categories of personal information or use your collected information for materially different purposes without providing you a new notice.
Right to Know / Access: You have the right to request that we disclose the personal information we have collected about you in the 12-month period preceding your request. Once we receive and verify your verifiable consumer request (explained below), we will provide you with: (1) the categories of personal information we collected about you; (2) the categories of sources from which we collected it; (3) the business or commercial purposes for collecting (or, if applicable, selling/sharing) your personal information; (4) the categories of third parties to whom we disclosed your personal information; and (5) the specific pieces of personal information we collected about you. If we disclosed any personal information for a business purpose, we will also tell you the categories of information and recipients for each category. (As noted, we do not sell personal information, so disclosures are only for business purposes.)
Right to Delete: You have the right to request that we delete personal information that we have collected from you and retained, subject to certain exceptions. Once we receive and verify your deletion request, we will delete (and direct our service providers/contractors to delete) your personal information from our records, unless an exception applies. Exceptions: We may deny a deletion request (in whole or part) if retaining the information is necessary for us or our service providers to, for example: complete a transaction or provide a service you requested; detect and protect against security incidents or illegal activity; debug and fix errors; exercise or ensure the right of another to free speech or other legal rights; comply with a legal obligation; or use the information internally in lawful ways that are compatible with the context in which you provided it. If we must retain certain data for a legitimate reason, we will inform you of that in our response.
Right to Correct: You have the right to request that we correct inaccurate personal information that we maintain about you. Upon verifying the validity of a correction request, we will correct the information (taking into account the nature of the information and purpose for maintaining it). You can also correct or update some of your account information directly by logging into your account settings (if you have an account on our platform).
Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale of your personal information, or the sharing of your personal information for cross-context behavioral advertising purposes. However, as stated above, Neto does not sell or share your personal information in the manner defined by California law. We do not disclose personal data to third parties for monetary consideration, nor do we share it for targeted advertising. Because we do not engage in sales or sharing of personal data, we do not offer a “Do Not Sell or Share My Personal Information” link at this time. If this policy changes in the future, we will provide a clear mechanism for you to opt out. Nevertheless, we will honor and treat Global Privacy Control (GPC) signals (or any other legally recognized opt-out preference signals) from your browser as a valid opt-out request. In practice, since we don’t sell/share data, the GPC signal will be noted, and we will ensure no future change in practices affects your data unless you later opt in.
Right to Limit Use of Sensitive Personal Information: The CPRA gives consumers the right to limit a business’s use or disclosure of Sensitive Personal Information (SPI) if SPI is used for purposes beyond what is necessary to provide the goods or services. Examples of SPI include social security number, financial account information, precise geolocation, genetic data, etc. As noted, Neto does not collect or process sensitive personal information as defined under CPRA, except potentially some limited contact or account information (such as a login password or account credentials) which is only used for providing the service. We do not use any information about you in a way that would trigger the right to limit (for instance, we do not profile you based on sensitive info or use sensitive info for any secondary purposes). Therefore, this right is generally not applicable in our case. If we ever were to collect new types of sensitive information, we will provide appropriate notices and options at that time.
Right of Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights. This means if you make a request or exercise your rights under the CPRA, we will not deny you our services, charge you different prices, or provide a different quality of services just because you exercised your rights. (However, please note that deletion of certain data may affect our ability to provide you the Service; for example, if you ask us to delete your account data, you will no longer be able to use the platform, but that is a logical consequence of the request, not discrimination.)
Exercising Your California Privacy Rights: If you are a California resident and wish to exercise any of the rights described above, you or your authorized agent can submit a verifiable consumer request to us by either:
Sending an email to support@neto.ci or hello@neto.ci with the subject line “California Privacy Rights Request” and detailing your request (e.g., specifying whether you seek access, deletion, correction, etc.).
(If available) Using our self-service Privacy Center or account settings on the Neto platform to submit requests (for example, tools to download your data or delete your account). We will provide self-service options where feasible for faster processing.
Verification: For your protection, we will need to verify your identity (and/or the identity and authority of an authorized agent making the request on your behalf) before fulfilling a rights request. We may do this by asking you to provide information that matches our records (such as confirming certain contact details or recent interactions with the Service) or using other verification procedures. If an authorized agent submits a request on your behalf, we may require proof of their authorization (for example, a written permission from you or evidence of power of attorney) and we will still verify your identity directly as the consumer (unless the agent has a power of attorney under California law).
Once your request is verified, we will respond within the timeframe required by law (generally within 45 days, with the possibility of an additional 45-day extension in certain cases, in which case we will let you know). Access requests will cover at most the 12-month period preceding our receipt of the request, as required by the CPRA. If we deny or partially deny a request due to an exemption, we will explain the reason in our response.
Shine the Light: California’s “Shine the Light” law (Civil Code § 1798.83) allows California residents to request certain information regarding disclosure of personal information to third parties for their direct marketing purposes. Neto does not disclose personal information to third parties for their own direct marketing purposes. Therefore, we do not maintain such information and are exempt from this requirement.
If you have any questions about your rights or how to exercise them, you can always contact us at the email addresses provided in the Contact Us section below.
Rights of Individuals in the EEA and UK (GDPR)
f you are located in the European Economic Area (EEA) or Switzerland, or in the United Kingdom, you are entitled to certain rights under the GDPR (and UK GDPR/Data Protection Act 2018). Neto is committed to facilitating the exercise of these rights for individuals whose personal data we hold as a data controller. These rights (subject to certain legal limitations) include:
Right of Access: You have the right to request confirmation of whether we are processing personal data about you, and if so, to request a copy of the personal data we hold about you. We will also provide supplementary information about the processing (similar to what is provided in this Privacy Policy) such as the purposes, categories of data, categories of recipients, retention periods, and safeguards for data transfers. The first copy will be provided free of charge, but we may charge a reasonable fee for additional copies or repetitive requests.
Right to Rectification: If any of your personal data that we have is inaccurate or incomplete, you have the right to request that we correct or update it. Upon your request, we will rectify any incorrect or outdated personal information we hold about you. You can also correct basic account information yourself by logging into your Neto account, if you have one.
Right to Erasure (Right to be “Forgotten”): You have the right to request that we delete your personal data, and we will do so if there is no lawful reason for us to continue processing it. This right is not absolute – for example, it does not apply if we still need the information to comply with a legal obligation, to establish or defend legal claims, or if the processing is necessary for one of the other limited reasons permitted by law. In practice, if you are a Neto customer or user and you request deletion, we will remove your personal data that we control (such as account information) from our systems and inform any processors or service providers to do the same, unless an exemption applies. (If we process your data on behalf of a customer, we may need to forward your request to that customer data controller, as noted earlier.)
Right to Restrict Processing: In certain situations, you have the right to restrict or “pause” the processing of your personal data. For example, you can request restriction if you contest the accuracy of your data (while we verify it), or if you object to our processing based on legitimate interests (while we consider your objection), or if you believe processing is unlawful but you prefer restriction over deletion. When processing is restricted, we will continue to store your information but will not use it until the restriction is lifted (unless for legal reasons such as protecting the rights of others, or with your consent).
Right to Data Portability: You have the right to obtain the personal data that you have directly provided to us in a structured, commonly used, and machine-readable format (to the extent technically feasible), and you have the right to transmit that data to another data controller without hindrance from us. This right applies when the processing is based on your consent or a contract with you and is carried out by automated means. Where technically possible, you may also request that we send this data directly to another service provider, if you prefer.
Right to Object: You have the right to object to our processing of your personal data in certain circumstances. In particular, you may object to processing that is based on our legitimate interests (including profiling based on those interests) on grounds relating to your specific situation. We will then re-evaluate our reasons for processing your data. We will stop processing unless we demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if we need to continue processing for the establishment, exercise, or defense of legal claims. Importantly, you also have an unconditional right to object to any processing of your personal data for direct marketing purposes. Note, however, that Neto does not use your personal data for unsolicited direct marketing to individuals (we do not send marketing emails without consent), but if we ever were to, you could opt out at any time.
Right to Withdraw Consent: In the limited cases where we are processing your personal information based on your consent, you have the right to withdraw that consent at any time. For example, if you consented to receive a newsletter or to a specific optional data processing, you can change your mind and opt out. Withdrawing consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, and it won’t affect processing that is not based on consent (for instance, processing under a different legal basis like contract or legitimate interests). If you withdraw consent for a service that requires it, we may not be able to provide that service to you.
Automated Decision-Making: You have the right not to be subject to a decision based solely on automated processing — including profiling — if that decision produces legal effects concerning you or similarly significantly affects you, unless it is (a) necessary for entering into or performing a contract between you and us, (b) authorized by law, or (c) based on your explicit consent. Neto’s Service does involve automated processing (AI agents generating responses), but this does not typically produce decisions with legal or similarly significant effects on individuals without human involvement. We do not make solely automated decisions about things like creditworthiness, hiring, etc., through our Service. If you believe an automated process is impacting you in a significant way, please inform us and we will review it, including providing human intervention or an explanation as applicable.
Right to Complain to a Supervisory Authority: If you believe we have infringed your data protection rights or processed your personal data in violation of the law, you have the right to lodge a complaint with a supervisory authority. If you are in the EEA, you can contact the data protection authority in the country where you reside, where you work, or where the alleged infringement occurred. If you are in the UK, you can contact the Information Commissioner’s Office (ICO). We would, however, appreciate the chance to address your concerns before you do this – so we encourage you to contact us first, and we will do our best to resolve the issue.
Exercising Your EU/UK Privacy Rights: To exercise any of these rights, you may contact us at support@neto.ci or hello@neto.ci and specify the nature of your request. You can simply state, for example, “I would like to access my data” or “I want to delete my information,” etc. You do not have to cite a specific law. We may need to ask you to provide certain information to verify your identity and ensure the security of personal data (similar to the verification described for California requests). Once verified, we will respond to your request as soon as possible, and in any event within the one-month period required by GDPR (which can be extended by an additional two months if necessary, in which case we will inform you of the extension and the reason).
Please note that if your personal data was provided to us by a business customer (for example, your employer or a company whose AI agent you interacted with), and we are processing it as a processor on their behalf, we may advise you to direct your request to that company. We can assist our customer in responding to your request, but for certain data it may be faster for you to contact the company with whom you directly interacted. In any case, we will do our best to help you exercise your rights and will not refuse a request without justification. No matter what, you will not be charged for making a request (unless it is manifestly unfounded or excessive, in which case a reasonable fee may be imposed or the request refused, as permitted by law).
Children’s Privacy
Our Service is not intended for children under 18 years of age, and we do not knowingly collect personal information from anyone under 18. Neto is a business-oriented platform, and users of our Service are expected to be adults (or acting under the supervision of a consenting adult or guardian, if applicable). We do not direct any content or services at minors, and we request that individuals under 18 do not use or provide any personal information to us.
If you are a parent or guardian and believe that a minor under 18 may have provided personal data to Neto (for example, by interacting with our Service or through our website), please contact us immediately. We will take steps to promptly delete the information from our records. In the case of minors under 13, we comply with the U.S. Children’s Online Privacy Protection Act (COPPA) which prohibits collecting personal data from children under 13 without verifiable parental consent. Although our platform is not intended for any minors, we treat any inadvertent collection from a child as outlined above.
Changes to this Privacy Policy
We may update or modify this Privacy Policy from time to time to reflect changes in our data practices, technologies, legal requirements, or for other operational reasons. When we make changes, we will post the updated Policy on our website and update the “Last Updated” date at the top. If changes are significant, we will provide a more prominent notice (such as by email to account holders or a notification in the Service). We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.
Your continued use of our Service after any update to this Policy will constitute your acknowledgment of the changes and agreement to the new terms, to the extent permitted by law. If you do not agree with the changes, you should discontinue use of the Service and contact us regarding deletion of your data.
Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us. We are here to help and will respond as promptly as possible.
Email: You can reach our team at support@neto.ci or hello@neto.ci for any privacy-related inquiries or requests. (Please include in your email the nature of your question or request, and if you are exercising a legal right, the details of what you need, so we can address it efficiently.)
Mailing Address: Lemon, Mesa, AZ 85205 – Techneto Corp, Neto, (Nevada, USA). (Note: We do not list a full public address here. If you need to send us physical correspondence regarding privacy, please email us for the appropriate mailing address.)
We value your privacy and trust. Thank you for reviewing our Privacy Policy. If you have any questions or need further clarification, do not hesitate to contact us.
Privacy Policy
Techneto Corp, a Nevada corporation doing business as Neto (referred to as “Neto,” “we,” “us,” or “our”), respects your privacy and is committed to protecting your personal data. This Privacy Policy describes how we collect, use, disclose, and protect personal information when you use our software-as-a-service platform that enables companies to deploy agentic AI engagement agents (the “Service”). It also explains your rights under applicable privacy laws and how you can exercise them. We have drafted this Policy to comply with the California Privacy Rights Act (CPRA) and the European Union/United Kingdom General Data Protection Regulation (GDPR), among other laws. Please read it carefully to understand our practices.
Scope of this Privacy Policy
This Privacy Policy applies to personal information that Neto collects and processes in the course of operating our Service and website. It covers data from our business customers, their end-users who interact with the AI agents, and visitors or users of our websites and platform. In many cases, Neto acts as a service provider or processor for our business customers, which is explained below. By using our Service or providing us with personal information, you acknowledge that your information will be handled as described in this Policy.
Information We Collect
We only collect personal information that is necessary for providing and improving our Service. We do not collect any payment information or sensitive personal data (such as government IDs, financial account numbers, or special categories of data like health, racial or ethnic origin, etc.). The personal information we collect includes:
Contact and Account Information: This includes identifiers such as your name, email address, phone number, and any similar contact details. For example, if you register for a Neto account or are designated as a contact person by one of our customers, we will collect your name and contact information. We may also collect account login credentials (like username and password) for those using our platform (passwords are stored in an encrypted form).
Chat Transcripts and Content: When end-users interact with an AI engagement agent powered by our Service (for instance, in a chat conversation), we collect the content of those communications. Chat transcripts may include any personal information that users choose to share during the chat. We process these transcripts on behalf of our customers to enable the AI agent’s functionality. We advise users not to provide sensitive information in chats, and our platform is not intended to handle sensitive data.
Usage Data: We automatically collect certain technical information when you use our website or Service. This may include your Internet Protocol (IP) address, browser type, device type, operating system, referring URLs, and timestamps of interactions. We also log usage data such as actions you take in the platform (e.g., when you log in, configurations made) and performance data about the AI agent interactions. This information helps us operate and secure our Service, and to understand and improve how users interact with it.
Cookies and Similar Technologies: Neto may use cookies or similar tracking technologies on our websites to provide and personalize the Service, for example to keep you logged in, remember your preferences, and gather analytics about usage. These cookies do not collect sensitive personal data and are not used for third-party advertising purposes. You can control cookies through your browser settings, but note that disabling certain cookies may affect functionality of the Service. (For more details, you may refer to a Cookie Notice if available.)
Aggregated and De-Identified Data: We may also derive information by aggregating or de-identifying personal data. For example, we might compile statistical information about how often certain help topics are requested or how the AI agents are used. Such aggregated data does not identify any individual and is not considered personal information. We use this to understand trends and improve our Service. This policy does not restrict our use or disclosure of non-identifiable aggregated data.
How We Use Personal Information
Neto uses the personal information we collect only for the following purposes (and in accordance with applicable law): To Provide and Operate the Service: We process personal data to run our platform and deliver services to our customers. This includes using contact information to set up or manage accounts, and using chat transcript data to generate responses and outcomes via the AI engagement agents. In doing so, we act on behalf of our customers for the data they entrust to us. We also use personal data to provide customer support, troubleshoot issues, and ensure the Service functions as intended.
To Communicate with You: We use contact information (such as email and phone number) to send service-related communications. These may include confirmations, invoices, technical notices, updates, security alerts, and administrative messages. If you contact us with questions or for support, we will use your information to respond. We do not use your personal information to send marketing emails or promotional communications unrelated to the Service unless you have explicitly opted in to such communications.
To Improve and Develop our Platform: Neto is continually improving its AI engagement platform. We may use usage data, feedback, and aggregated/de-identified data (including patterns from chat transcripts) to analyze and enhance our algorithms, features, and user experience. For example, we might analyze how users are interacting with agents to refine response accuracy or UI design. Any personal data used for development or research is either aggregated or de-identified so that individuals are not identified, or it is used in a manner consistent with our role as a processor (with appropriate contractual safeguards when derived from customer data).
To Ensure Security and Prevent Fraud/Misuse: We process certain data to maintain the security of our Service, our customers, and users. This includes using log and device information to monitor for suspicious activity, debug and fix errors, protect against malicious, fraudulent, or illegal behavior (such as detecting bots or preventing unauthorized access), and enforcing our terms of service. These activities are essential to protect the integrity of our platform and our users’ accounts.
To Comply with Legal Obligations: We may process and retain personal information as required to comply with applicable laws, regulations, legal processes, or enforceable governmental requests. For example, we might retain certain records to meet tax, auditing, or financial reporting requirements, or use contact information to send legally required notices. If we are legally compelled to disclose personal data (e.g., in response to a subpoena or court order), we will only do so after verifying the request’s validity and, when possible, providing notice to the affected parties. We will not use personal information for purposes that are incompatible with those above without obtaining your consent or unless permitted by law. If we ever need to process your personal data for a new purpose, we will update this Privacy Policy and notify you as required.
Our Role as a Service Provider / Processor
Neto primarily provides a business-to-business (B2B) service. In many cases, we act as a “service provider” (under California law) or “data processor” (under GDPR) for the personal data that our customers input into our platform or that is generated through the use of our Service:
Customer as Data Controller: When a business (our customer) uses Neto to deploy an AI agent that engages with individuals (end-users), that business is generally the entity that determines why and how any personal data from those interactions is processed. For example, our customer might collect their end-users’ names or contact info and chat history through our Service. In this scenario, the customer is the data controller (or “business” under CPRA) with respect to the end-user’s personal information, and Neto is their contracted processor/service provider.
Neto as Data Processor: As a processor/service provider, we process personal data from our customers only on their behalf and according to their instructions and our contractual agreements. This means we do not use or disclose that data for our own purposes (outside of the limited purposes permitted, such as to maintain or improve the service, or as required by law). We will not “sell” or “share” such customer-provided personal information with third parties except as allowed by our contract and described in this Policy. Any aggregate insights we derive to improve our platform are done in a privacy-conscious way (e.g., using de-identified data as noted above, or as authorized by the customer).
End-Users of Our Customers: If you are an individual interacting with a company’s AI agent powered by Neto (for example, you are chatting with a support agent on a company’s website that uses Neto), please refer to that company’s privacy policy. Our customers are responsible for providing you (the end-user) with any required privacy notice and for handling your requests regarding your personal information. Neto will assist our customers in fulfilling those obligations as needed. While this Privacy Policy gives an overview of how we handle all personal data, it is not meant to override the specific privacy disclosures of our customers who use our Service.
Neto as Data Controller: In some cases, Neto does act as a data controller/business - for example, for the information we collect about our direct customers (account administrators, billing contacts) and website visitors, or any data we collect for our own marketing or operational purposes. For such data, Neto determines the purposes and means of processing, and this Privacy Policy describes how we handle it. In these cases, we take on the responsibilities of a data controller under GDPR/CPRA. The rights and choices outlined in this Policy (in the section “Your Privacy Rights”) apply to that data.
In summary, when we process personal data on behalf of a customer, we do so in accordance with that customer’s direction and applicable data protection laws, and we treat the data with care and security. We also ensure that our agreements with customers contain the necessary data protection terms (such as GDPR-required processor terms or CPRA service provider provisions) to safeguard the information.
Disclosure of Personal Information
We do not sell your personal information to anyone, and we do not share your personal information with third parties for their own advertising or marketing purposes. We only disclose personal data in the following circumstances:
Trusted Service Providers (Subprocessors): We share personal information with a limited number of trusted third-party companies who process it on our behalf to support our operations. These service providers (subprocessors) help us to provide the Service and are bound by contracts to protect the data and use it only for the purposes we specify.
Key subprocessors we use include: Cloud Hosting Providers: We use reputable cloud infrastructure platforms in the United States such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform to host our application and databases. Personal data is stored and processed on their servers, but they cannot access or use it except as needed to maintain our services.
AI Processing Services: We may use artificial intelligence or machine learning services like OpenAI to process chat content and generate responses. If chat transcripts or related data are sent to such a service, it is only to provide the requested functionality (e.g., generating a conversational reply). We ensure any such provider does not use your data for their own purposes (for example, OpenAI API services do not use submitted data to train their models, unless explicitly agreed otherwise).
Communication Services: If our Service involves sending messages (e.g., SMS texts or phone calls) to users or customers, we use providers like Twilio to handle those communications. For instance, if you receive a text from one of our customers’ AI agents, your phone number and the message content pass through Twilio’s system to be delivered to you. Twilio is contractually obligated to keep that information confidential and secure.
Analytics and Utility Providers: We might use tools from companies like Google or Microsoft for analytics, error tracking, or other support services (for example, to monitor the performance of our application or to facilitate customer support chat). These providers may incidentally process some personal data (like IP address or user ID) in the course of providing their services to us. We do not allow our analytics providers to use data for independent profiling or advertising. Where feasible, we use settings that enhance privacy (such as IP anonymization in analytics). A full list of our current subprocessors is available upon request. We conduct due diligence on our service providers and require each to implement adequate data protection measures.
Within Our Corporate Group: (If applicable) We may share personal information between Techneto Corp and any affiliates or subsidiaries (for example, if we establish an EU-based subsidiary or other related entity) as needed to operate and provide the Service. Any such entities will only use the information as described in this Policy and are bound by appropriate confidentiality and data protection obligations.
Business Transfers: If Neto (Techneto Corp) is involved in a merger, acquisition, bankruptcy, reorganization, or sale of all or some of our assets, personal information may be transferred to the successor or affiliate as part of that transaction. We would ensure that any such entity honors the protections required by this Privacy Policy or obtains your consent where required. You would be notified via a prominent notice on our website or by email of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information in such an event.
Legal Compliance and Protection: We may disclose personal information to third parties (such as courts, law enforcement authorities, regulators, or others) when we believe in good faith that such disclosure is necessary to: Comply with a law, regulation, legal process, or lawful government request (for example, to respond to a subpoena or court order). Enforce our Terms of Service or other agreements, and investigate potential violations thereof. Detect, prevent, or address fraud, security, or technical issues. Protect the rights, property, or safety of Neto, our customers, users, or the public, as required or permitted by law. When possible and lawful, we will attempt to notify you if we must disclose your information as part of a legal process.
With Your Consent: Apart from the cases listed above, we will share your personal data with others only if you direct us to or with your explicit consent. For example, if you request that we send your data to a third-party or integrate our Service with another application that requires sharing information, we will do so at your direction.
No Selling or Sharing of Personal Information: Neto does not sell personal information to third parties for monetary value. We also do not “share” personal information for cross-context behavioral advertising (as those terms are defined under the CPRA). In the past 12 months, we have not sold or shared personal information of our users or customers. If this ever changes, we will update this Privacy Policy and provide appropriate notices and opt-out mechanisms as required by law.
International Data Transfers
Neto is based in the United States and all personal data we collect is processed and stored on servers located in the U.S. (for example, in data centers managed by AWS, Azure, or GCP as noted). If you are using our Service from outside the U.S., be aware that your personal information will be transferred to and stored in the United States, which may have data protection laws that differ from those in your country.
For individuals in the European Economic Area (EEA), United Kingdom (UK), or other regions with data transfer restrictions, we take steps to ensure that your personal data receives an adequate level of protection when transferred to the U.S. Specifically, when we handle EEA/UK personal data, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission (and by the UK Information Commissioner’s Office, as applicable) as the legal mechanism for such transfers, or other legally approved transfer frameworks. These SCCs are incorporated into our data processing agreements with customers and vendors, contractually requiring that your data is protected according to EU/UK standards even while stored or processed in the U.S.
We also implement additional safeguards as appropriate, such as encryption in transit and at rest, and policies to handle any government data access requests in compliance with EU/UK law. By using our Service or providing us with information, you understand that your personal data may be transferred to our facilities in the U.S. and to those third parties with whom we share it as described in this Policy, and that we will protect it as described. If you have questions about international transfers or need a copy of the relevant SCCs, you can contact us using the details at the end of this Policy.
Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or to comply with legal or contractual requirements. Retention periods vary depending on the type of data and the purposes of processing. Below are our standard retention practices:
Chat Transcripts: We retain chat transcript data (the content of AI agent conversations and related logs) for one (1) year from the date of the conversation. After one year, chat transcripts are automatically deleted or irreversibly anonymized, unless we are required by law to retain them longer or our customer requests a different retention period under their contract. We retain transcripts for this period to allow our customers to review past interactions and to improve the Service (within the limits described above). After deletion, only aggregated data or insights (which contain no personal information) may be kept.
Account and Contact Information: We retain account-related personal information (such as your name, email, phone, company name, and other profile information) for as long as your or your company’s account is active and for up to 3 years after an account is closed or our business relationship has ended. We keep this information post-termination in case you or the company return to use our Service, to manage any pending transactions or disputes, to enforce our agreements, and to comply with any record-keeping requirements. After 3 years following termination, we will delete or anonymize this data from our active systems, except where we need to retain it to comply with legal obligations (for example, certain financial records may be kept for a longer period under tax laws) or to resolve disputes.
Usage Data: Server logs and technical records are generally retained for a shorter period (typically a few months up to a year) for troubleshooting and security analysis, unless a longer retention is required (such as logs relevant to security incidents may be kept until resolved). Aggregated analytics data that does not identify individuals may be retained longer for historical analysis.
Email and Communications: If you contact us via email or support ticket, we may retain those communications and our responses for our records for up to 3 years or longer if needed for legal/audit purposes.
Once the retention period expires or the data is no longer needed, we will securely delete or anonymize your personal information. If deletion or anonymization is not immediately possible (for example, because the data is stored in backups), we will ensure that it is isolated and protected until deletion is possible. We also periodically review our data holdings to ensure we are not retaining personal data longer than necessary.
If you request deletion of your data (see Your Privacy Rights below), we will delete your personal information from our active systems and inform our service providers to do the same, except to the extent we are permitted or required to retain certain information as explained above.
Security Measures
We take the security of personal information very seriously and implement industry-standard security measures to protect your data from unauthorized access, alteration, disclosure, or destruction. These measures include, but are not limited to, the following:
Encryption: All personal data is encrypted at rest (when stored in our databases or file systems) and in transit (when transmitted between your device and our servers, and between our internal services). We use strong encryption protocols such as TLS (Transport Layer Security) for data in transit and AES-256 or equivalent encryption for data at rest.
Access Controls (RBAC): We employ Role-Based Access Control, meaning that internal access to personal information is restricted on a need-to-know basis. Only authorized personnel with specific roles (e.g., a support engineer addressing a customer issue) can access personal data relevant to their job duties. Access to sensitive systems and data is limited and reviewed regularly. Each employee or contractor at Neto is bound by confidentiality obligations.
Authentication and Account Security: We require strong authentication measures for accessing systems that contain personal data. This includes Multi-Factor Authentication (MFA) for our administrators and employees when logging into sensitive systems, to add an extra layer of security beyond just a password. We also encourage (and may enforce) two-factor authentication for our customer accounts on the platform to help prevent unauthorized access to your account.
Network and System Security: Our systems are protected by firewalls and network security monitoring to guard against external attacks. We regularly update our software and systems to address security vulnerabilities. We use intrusion detection and prevention systems to alert us of suspicious activities. Additionally, we limit and secure any integrations with third-party systems following best practices.
Penetration Testing and Audits: We engage independent security experts to perform annual penetration tests and security assessments of our platform. These controlled tests help identify and fix potential weaknesses. We also perform routine internal security audits and risk assessments. Any critical findings are remediated as a top priority.
Training and Policies: Neto maintains comprehensive security and privacy policies, and we train our staff regularly on data protection best practices, including how to identify and prevent social engineering or phishing attacks and how to safely handle personal data.
Data Breach Response: Despite all measures, no system can be guaranteed 100% secure. We have a detailed incident response plan in place to handle any data security breach. In the unlikely event of a security breach that results in unauthorized access to personal information, we will promptly contain the issue, notify affected customers/users without undue delay (as required by law), and provide information on steps we are taking and recommendations for further precautions.
We continuously work to improve our security practices to keep pace with evolving threats. If you have questions about the security of your personal data, or if you suspect any unauthorized activity or security issue related to Neto, please contact us immediately at our support email below.
Your Privacy Rights
Depending on your location and applicable law, you have certain rights regarding your personal information. Neto is committed to honoring your rights and providing you control over your data. The following sections describe specific rights available to individuals in California and in the European Economic Area (EEA)/United Kingdom, and how you can exercise them. Even if you are not in one of these regions, we will make reasonable efforts to accommodate privacy requests regarding your data, in line with applicable laws.
Rights of California Residents (CPRA)
If you are a resident of California, you are protected by the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA). Under the CPRA, California residents have the following rights with respect to their personal information:
Right to Notice: You have the right to be informed, at or before the point of collection, about the categories of personal information we collect and the purposes for which we use them. This Privacy Policy serves as that notice by detailing what information we collect and why (see Information We Collect and How We Use Personal Information above). We will not collect new categories of personal information or use your collected information for materially different purposes without providing you a new notice.
Right to Know / Access: You have the right to request that we disclose the personal information we have collected about you in the 12-month period preceding your request. Once we receive and verify your verifiable consumer request (explained below), we will provide you with: (1) the categories of personal information we collected about you; (2) the categories of sources from which we collected it; (3) the business or commercial purposes for collecting (or, if applicable, selling/sharing) your personal information; (4) the categories of third parties to whom we disclosed your personal information; and (5) the specific pieces of personal information we collected about you. If we disclosed any personal information for a business purpose, we will also tell you the categories of information and recipients for each category. (As noted, we do not sell personal information, so disclosures are only for business purposes.)
Right to Delete: You have the right to request that we delete personal information that we have collected from you and retained, subject to certain exceptions. Once we receive and verify your deletion request, we will delete (and direct our service providers/contractors to delete) your personal information from our records, unless an exception applies. Exceptions: We may deny a deletion request (in whole or part) if retaining the information is necessary for us or our service providers to, for example: complete a transaction or provide a service you requested; detect and protect against security incidents or illegal activity; debug and fix errors; exercise or ensure the right of another to free speech or other legal rights; comply with a legal obligation; or use the information internally in lawful ways that are compatible with the context in which you provided it. If we must retain certain data for a legitimate reason, we will inform you of that in our response.
Right to Correct: You have the right to request that we correct inaccurate personal information that we maintain about you. Upon verifying the validity of a correction request, we will correct the information (taking into account the nature of the information and purpose for maintaining it). You can also correct or update some of your account information directly by logging into your account settings (if you have an account on our platform).
Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale of your personal information, or the sharing of your personal information for cross-context behavioral advertising purposes. However, as stated above, Neto does not sell or share your personal information in the manner defined by California law. We do not disclose personal data to third parties for monetary consideration, nor do we share it for targeted advertising. Because we do not engage in sales or sharing of personal data, we do not offer a “Do Not Sell or Share My Personal Information” link at this time. If this policy changes in the future, we will provide a clear mechanism for you to opt out. Nevertheless, we will honor and treat Global Privacy Control (GPC) signals (or any other legally recognized opt-out preference signals) from your browser as a valid opt-out request. In practice, since we don’t sell/share data, the GPC signal will be noted, and we will ensure no future change in practices affects your data unless you later opt in.
Right to Limit Use of Sensitive Personal Information: The CPRA gives consumers the right to limit a business’s use or disclosure of Sensitive Personal Information (SPI) if SPI is used for purposes beyond what is necessary to provide the goods or services. Examples of SPI include social security number, financial account information, precise geolocation, genetic data, etc. As noted, Neto does not collect or process sensitive personal information as defined under CPRA, except potentially some limited contact or account information (such as a login password or account credentials) which is only used for providing the service. We do not use any information about you in a way that would trigger the right to limit (for instance, we do not profile you based on sensitive info or use sensitive info for any secondary purposes). Therefore, this right is generally not applicable in our case. If we ever were to collect new types of sensitive information, we will provide appropriate notices and options at that time.
Right of Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights. This means if you make a request or exercise your rights under the CPRA, we will not deny you our services, charge you different prices, or provide a different quality of services just because you exercised your rights. (However, please note that deletion of certain data may affect our ability to provide you the Service; for example, if you ask us to delete your account data, you will no longer be able to use the platform, but that is a logical consequence of the request, not discrimination.)
Exercising Your California Privacy Rights: If you are a California resident and wish to exercise any of the rights described above, you or your authorized agent can submit a verifiable consumer request to us by either:
Sending an email to support@neto.ci or hello@neto.ci with the subject line “California Privacy Rights Request” and detailing your request (e.g., specifying whether you seek access, deletion, correction, etc.).
(If available) Using our self-service Privacy Center or account settings on the Neto platform to submit requests (for example, tools to download your data or delete your account). We will provide self-service options where feasible for faster processing.
Verification: For your protection, we will need to verify your identity (and/or the identity and authority of an authorized agent making the request on your behalf) before fulfilling a rights request. We may do this by asking you to provide information that matches our records (such as confirming certain contact details or recent interactions with the Service) or using other verification procedures. If an authorized agent submits a request on your behalf, we may require proof of their authorization (for example, a written permission from you or evidence of power of attorney) and we will still verify your identity directly as the consumer (unless the agent has a power of attorney under California law).
Once your request is verified, we will respond within the timeframe required by law (generally within 45 days, with the possibility of an additional 45-day extension in certain cases, in which case we will let you know). Access requests will cover at most the 12-month period preceding our receipt of the request, as required by the CPRA. If we deny or partially deny a request due to an exemption, we will explain the reason in our response.
Shine the Light: California’s “Shine the Light” law (Civil Code § 1798.83) allows California residents to request certain information regarding disclosure of personal information to third parties for their direct marketing purposes. Neto does not disclose personal information to third parties for their own direct marketing purposes. Therefore, we do not maintain such information and are exempt from this requirement.
If you have any questions about your rights or how to exercise them, you can always contact us at the email addresses provided in the Contact Us section below.
Rights of Individuals in the EEA and UK (GDPR)
f you are located in the European Economic Area (EEA) or Switzerland, or in the United Kingdom, you are entitled to certain rights under the GDPR (and UK GDPR/Data Protection Act 2018). Neto is committed to facilitating the exercise of these rights for individuals whose personal data we hold as a data controller. These rights (subject to certain legal limitations) include:
Right of Access: You have the right to request confirmation of whether we are processing personal data about you, and if so, to request a copy of the personal data we hold about you. We will also provide supplementary information about the processing (similar to what is provided in this Privacy Policy) such as the purposes, categories of data, categories of recipients, retention periods, and safeguards for data transfers. The first copy will be provided free of charge, but we may charge a reasonable fee for additional copies or repetitive requests.
Right to Rectification: If any of your personal data that we have is inaccurate or incomplete, you have the right to request that we correct or update it. Upon your request, we will rectify any incorrect or outdated personal information we hold about you. You can also correct basic account information yourself by logging into your Neto account, if you have one.
Right to Erasure (Right to be “Forgotten”): You have the right to request that we delete your personal data, and we will do so if there is no lawful reason for us to continue processing it. This right is not absolute – for example, it does not apply if we still need the information to comply with a legal obligation, to establish or defend legal claims, or if the processing is necessary for one of the other limited reasons permitted by law. In practice, if you are a Neto customer or user and you request deletion, we will remove your personal data that we control (such as account information) from our systems and inform any processors or service providers to do the same, unless an exemption applies. (If we process your data on behalf of a customer, we may need to forward your request to that customer data controller, as noted earlier.)
Right to Restrict Processing: In certain situations, you have the right to restrict or “pause” the processing of your personal data. For example, you can request restriction if you contest the accuracy of your data (while we verify it), or if you object to our processing based on legitimate interests (while we consider your objection), or if you believe processing is unlawful but you prefer restriction over deletion. When processing is restricted, we will continue to store your information but will not use it until the restriction is lifted (unless for legal reasons such as protecting the rights of others, or with your consent).
Right to Data Portability: You have the right to obtain the personal data that you have directly provided to us in a structured, commonly used, and machine-readable format (to the extent technically feasible), and you have the right to transmit that data to another data controller without hindrance from us. This right applies when the processing is based on your consent or a contract with you and is carried out by automated means. Where technically possible, you may also request that we send this data directly to another service provider, if you prefer.
Right to Object: You have the right to object to our processing of your personal data in certain circumstances. In particular, you may object to processing that is based on our legitimate interests (including profiling based on those interests) on grounds relating to your specific situation. We will then re-evaluate our reasons for processing your data. We will stop processing unless we demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if we need to continue processing for the establishment, exercise, or defense of legal claims. Importantly, you also have an unconditional right to object to any processing of your personal data for direct marketing purposes. Note, however, that Neto does not use your personal data for unsolicited direct marketing to individuals (we do not send marketing emails without consent), but if we ever were to, you could opt out at any time.
Right to Withdraw Consent: In the limited cases where we are processing your personal information based on your consent, you have the right to withdraw that consent at any time. For example, if you consented to receive a newsletter or to a specific optional data processing, you can change your mind and opt out. Withdrawing consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, and it won’t affect processing that is not based on consent (for instance, processing under a different legal basis like contract or legitimate interests). If you withdraw consent for a service that requires it, we may not be able to provide that service to you.
Automated Decision-Making: You have the right not to be subject to a decision based solely on automated processing — including profiling — if that decision produces legal effects concerning you or similarly significantly affects you, unless it is (a) necessary for entering into or performing a contract between you and us, (b) authorized by law, or (c) based on your explicit consent. Neto’s Service does involve automated processing (AI agents generating responses), but this does not typically produce decisions with legal or similarly significant effects on individuals without human involvement. We do not make solely automated decisions about things like creditworthiness, hiring, etc., through our Service. If you believe an automated process is impacting you in a significant way, please inform us and we will review it, including providing human intervention or an explanation as applicable.
Right to Complain to a Supervisory Authority: If you believe we have infringed your data protection rights or processed your personal data in violation of the law, you have the right to lodge a complaint with a supervisory authority. If you are in the EEA, you can contact the data protection authority in the country where you reside, where you work, or where the alleged infringement occurred. If you are in the UK, you can contact the Information Commissioner’s Office (ICO). We would, however, appreciate the chance to address your concerns before you do this – so we encourage you to contact us first, and we will do our best to resolve the issue.
Exercising Your EU/UK Privacy Rights: To exercise any of these rights, you may contact us at support@neto.ci or hello@neto.ci and specify the nature of your request. You can simply state, for example, “I would like to access my data” or “I want to delete my information,” etc. You do not have to cite a specific law. We may need to ask you to provide certain information to verify your identity and ensure the security of personal data (similar to the verification described for California requests). Once verified, we will respond to your request as soon as possible, and in any event within the one-month period required by GDPR (which can be extended by an additional two months if necessary, in which case we will inform you of the extension and the reason).
Please note that if your personal data was provided to us by a business customer (for example, your employer or a company whose AI agent you interacted with), and we are processing it as a processor on their behalf, we may advise you to direct your request to that company. We can assist our customer in responding to your request, but for certain data it may be faster for you to contact the company with whom you directly interacted. In any case, we will do our best to help you exercise your rights and will not refuse a request without justification. No matter what, you will not be charged for making a request (unless it is manifestly unfounded or excessive, in which case a reasonable fee may be imposed or the request refused, as permitted by law).
Children’s Privacy
Our Service is not intended for children under 18 years of age, and we do not knowingly collect personal information from anyone under 18. Neto is a business-oriented platform, and users of our Service are expected to be adults (or acting under the supervision of a consenting adult or guardian, if applicable). We do not direct any content or services at minors, and we request that individuals under 18 do not use or provide any personal information to us.
If you are a parent or guardian and believe that a minor under 18 may have provided personal data to Neto (for example, by interacting with our Service or through our website), please contact us immediately. We will take steps to promptly delete the information from our records. In the case of minors under 13, we comply with the U.S. Children’s Online Privacy Protection Act (COPPA) which prohibits collecting personal data from children under 13 without verifiable parental consent. Although our platform is not intended for any minors, we treat any inadvertent collection from a child as outlined above.
Changes to this Privacy Policy
We may update or modify this Privacy Policy from time to time to reflect changes in our data practices, technologies, legal requirements, or for other operational reasons. When we make changes, we will post the updated Policy on our website and update the “Last Updated” date at the top. If changes are significant, we will provide a more prominent notice (such as by email to account holders or a notification in the Service). We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.
Your continued use of our Service after any update to this Policy will constitute your acknowledgment of the changes and agreement to the new terms, to the extent permitted by law. If you do not agree with the changes, you should discontinue use of the Service and contact us regarding deletion of your data.
Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us. We are here to help and will respond as promptly as possible.
Email: You can reach our team at support@neto.ci or hello@neto.ci for any privacy-related inquiries or requests. (Please include in your email the nature of your question or request, and if you are exercising a legal right, the details of what you need, so we can address it efficiently.)
Mailing Address: Lemon, Mesa, AZ 85205 – Techneto Corp, Neto, (Nevada, USA). (Note: We do not list a full public address here. If you need to send us physical correspondence regarding privacy, please email us for the appropriate mailing address.)
We value your privacy and trust. Thank you for reviewing our Privacy Policy. If you have any questions or need further clarification, do not hesitate to contact us.
Start today
Change the trajectory of your entire business with a single click
Start today
Change the trajectory of your entire business with a single click
Start today