Privacy Notice

1. Who this notice covers

This Privacy Notice explains how YOVER LLC, doing business as Pathros, handles personal information collected through pathros.cc, our public forms, scheduling flows, email communications, and early-access customer conversations.

Customer production data, read-only audit data, identity-graph exports, and design-partner materials are governed by the separate agreement signed with that customer. This public notice does not replace a data processing agreement, master services agreement, mutual NDA, or security addendum.

2. Information we collect

Information you choose to provide

• Name, work email, company, job title, and role.
• Form responses, messages, pilot requests, design-partner inquiries, and scheduling details.
• Information you send in email or during a sales, audit, or product conversation.

Technical and security information

• Basic request data such as IP address, browser type, device type, referring page, and timestamp.
• Security events needed to detect abuse, rate-limit forms, prevent spam, and investigate misuse.
• Cloudflare Turnstile verification data used to confirm that form submissions are legitimate.

Analytics information

We may use privacy-first site analytics to understand page performance, traffic patterns, and conversion paths. We do not use analytics to sell ads or retarget visitors.

Customer environment data

If you enter a design-partner pilot or read-only audit, Pathros may process identity and access metadata such as users, groups, roles, policies, permissions, trust relationships, CI/CD access paths, and evidence receipts. That data is handled under the written agreement for that engagement.

3. Information we do not intentionally collect

• We do not ask for personal payment card details on the public site.
• We do not ask you to paste secrets, API keys, passwords, private keys, or access tokens into public forms.
• We do not sell personal information.
• We do not use public-site forms to request production write access.
• We do not knowingly collect personal information from children.

4. How we use information

• To respond to your request, schedule a call, or evaluate design-partner fit.
• To provide a read-only audit, pilot, or related customer service when separately agreed.
• To secure the site, prevent form abuse, investigate suspicious activity, and maintain logs.
• To improve the website, product, documentation, and onboarding experience.
• To comply with legal, accounting, tax, contractual, and security obligations.

5. How we share information

We share personal information only when there is a reason to do so. Common recipients may include:

• Infrastructure and security providers, including Cloudflare.
• Email, CRM, scheduling, and customer-operations providers used to respond to your request.
• Professional advisors such as attorneys, accountants, auditors, and security reviewers.
• Authorities or counterparties where disclosure is required by law or needed to protect rights, security, or safety.
• Service providers used in a customer engagement, subject to the relevant contract.

We do not sell personal information. We do not provide visitor information to advertising networks for behavioral ad targeting.

6. Security

Pathros uses administrative, technical, and organizational safeguards designed to protect information against unauthorized access, disclosure, alteration, and loss. Public-site forms are protected with bot verification and server-side validation. Production customer access, when granted, is read-only by default and scoped to the agreed engagement.

No online service can promise perfect security. If you believe you have found a security issue, contact security@pathros.cc.

7. Retention

We keep personal information only as long as needed for the purpose it was collected, unless a longer period is required for legal, security, accounting, or contractual reasons.

• Contact and sales inquiries are kept while the relationship is active, then reviewed for deletion.
• Security logs are kept for a limited period needed to detect abuse and investigate incidents.
• Customer audit and pilot data is retained, returned, or deleted under the customer agreement.

8. Your choices and rights

Depending on where you live, you may have rights to request access, correction, deletion, portability, restriction, objection, or information about how your personal information is used. You may also have the right to opt out of certain types of sharing or sale. Pathros does not sell personal information.

To make a privacy request, email privacy@pathros.cc. We may need to verify your identity before acting on the request.

9. International visitors

Pathros is operated from the United States. If you access the site from outside the United States, your information may be processed in the United States or other jurisdictions where our service providers operate. When required, customer agreements may include additional data-transfer terms.

10. Changes to this notice

We may update this Privacy Notice as the product, site, vendors, or law changes. The updated date at the top of the page shows when the notice was last revised.