Legal

Vectros Privacy Policy

Last Updated: June 21, 2026

This Privacy Policy describes how Halespring Public Benefit Corporation d/b/a Vectros (“Vectros”, “we”, “us”) collects, uses, and discloses information about you when you engage with the Vectros Developer Portal and marketing websites (collectively, the “Services”).

IMPORTANT SCOPE LIMITATION: This Privacy Policy applies ONLY to the information we collect about developers, visitors, and customers who use our website, developer portal, and billing systems (e.g., your name, email, IP address, and payment information).

It DOES NOT apply to the structured records, documents, or protected health information (PHI) that you programmatically ingest into the Vectros API. The processing, security, and tenant-isolation of your API data is strictly governed by our Terms of Service and our Business Associate Agreement (BAA). We do not view, mine, or train generalized AI models on your tenant data.

Information We Collect

We collect information you provide directly to us when you create an API account, generate API keys, request customer support, or communicate with us.

  • Identifiers: Name, email address, online identifiers, and IP address. Authentication is provided through Amazon Cognito; we collect the email address and name associated with your developer account.
  • Commercial Information: Subscription tier, credit usage, and payment history. Payment information is processed by Stripe, Inc., our third-party payment processor; we do not store full payment-card numbers.
  • Internet/Network Activity: Activity on our developer portal, API request volumes, error rates, and first-party session cookies used for authentication and portal session management.

How We Use Your Information

We use the developer and billing information we collect to:

  • Provide, maintain, and secure the Vectros API and Developer Portal.
  • Process payments and issue billing usage alerts.
  • Send you technical notices, security alerts, and administrative messages.
  • Monitor API abuse, rate limiting, and fraudulent activity.
  • Debug errors in the platform.

Note: We do not sell any personal information to third parties.

Service Providers and Sub-Processors

We share the limited developer and billing information described above with a small number of service providers who process it on our behalf, under contract and only as needed to operate the Services:

  • Amazon Web Services (AWS) — cloud hosting and infrastructure, and transactional email (via Amazon SES) for account, security, and billing notices.
  • Stripe, Inc. — payment processing and billing. Stripe stores customer and invoice records as required to process payments.
  • Cloudflare, Inc. — bot-protection (CAPTCHA) on our account-registration and access-request pages. When you visit those pages, Cloudflare receives your IP address and browser/device signals to distinguish humans from automated abuse, and may set its own client-side cookie or storage strictly for that security purpose (see “Analytics and Cookies” below).

Stripe and Cloudflare receive only the developer, billing, and visitor information described in this Policy; they do not receive or process the structured records, documents, or Protected Health Information (PHI) you ingest into the Vectros API. The sub-processors that handle that tenant data — including any PHI — are governed separately by your Terms of Service and Business Associate Agreement (and its sub-processor exhibit), not by this Policy.

Analytics and Cookies

We do not use third-party analytics or advertising cookies, and we do not track you across other websites. We set first-party cookies strictly to secure your Developer Portal session and keep you signed in. Our account-registration and access-request pages use Cloudflare Turnstile, a bot-protection challenge that may set its own client-side cookie or storage strictly to detect automated abuse; this is a security control, not analytics or cross-site advertising tracking. To understand aggregate traffic — which pages are visited and how often — we rely on standard server access logs (such as IP address, browser type, and the pages requested), not analytics cookies or third-party trackers. You can adjust your browser settings to reject cookies, though doing so may break authentication flows in the Developer Portal.

Your Choices & Account Information

You may update your developer account information at any time by logging into the Vectros Developer Portal. If you wish to deactivate your account and delete your tenant, please use the destructive actions provided in your Organization settings, or contact support@vectros.ai. When you delete your account, your account information is removed from live systems and a residual copy may persist in access-controlled backups for a limited period before expiring; billing and payment records are retained as required for tax, accounting, and dispute-resolution purposes.

Contact Us

For questions about this Privacy Policy, or to exercise your privacy rights under applicable state laws, please contact us at security@vectros.ai.