This Privacy Policy explains how The Garden in the Machine, Inc. (“TGITM”, “we”, “us”, or “our”) collects, uses, discloses, and safeguards information when you interact with the emergentic.ai website, platform, hosted APIs, mobile or desktop applications, communities, and related online services (collectively, the “Services”). It covers personal data handling for individuals located worldwide, including residents of the European Economic Area (EEA), United Kingdom, Switzerland, Canada, Brazil, Australia, and the United States (with additional disclosures for California residents).
Last updated: February 14, 2025
TGITM acts as the controller of personal data collected through the Services. When we process data on behalf of enterprise customers, we do so under a Data Processing Addendum (“DPA”) and act as a processor. Capitalized terms that are not defined in this Privacy Policy have the meanings provided in our Terms of Service.
We collect information in the following ways. Examples are illustrative and may vary depending on how you use the Services.
For individuals in the EEA, UK, or Switzerland, we rely on the following legal bases: (a) performance of a contract; (b) legitimate interests (e.g., securing and improving the Services); (c) compliance with legal obligations; and (d) consent where required (such as for certain marketing or cookies). You may withdraw consent at any time without affecting earlier processing.
We do not sell personal data. We may disclose information with:
We may disclose de-identified or aggregated data that no longer reasonably identifies you.
TGITM is headquartered in the United States. When transferring personal data from the EEA, UK, or Switzerland to countries without an adequacy decision, we rely on appropriate safeguards such as Standard Contractual Clauses, the UK International Data Transfer Addendum, or other legally recognized transfer mechanisms. We implement technical and organizational measures to protect data regardless of where it is processed.
We maintain administrative, technical, and physical safeguards (including encryption in transit and at rest, access controls, logging, and regular testing) designed to protect personal data. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security. We retain personal data for as long as needed to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, enforce agreements, or as required under enterprise contracts. When data is no longer required, we delete or de-identify it consistent with applicable law and internal policies.
If we become aware of unauthorized access to personal data, we will notify affected individuals and regulators as required by law and in accordance with our incident response procedures.
Depending on your location, you may have the right to access, correct, delete, restrict, object to, or port personal data, withdraw consent, and lodge a complaint with your supervisory authority. Use your account settings or the emergentic.ai Help Center to exercise these rights. We may verify your identity before responding and may deny requests as permitted by law.
You have the rights listed above under GDPR and UK GDPR. You may lodge complaints with your local supervisory authority (for example, the Irish Data Protection Commission or the UK Information Commissioner’s Office) if you believe our processing violates applicable law. We will respond within one month, or notify you if additional time is needed.
Under the California Consumer Privacy Act (CCPA/CPRA), you have rights to know, access, correct, delete, and restrict the sale or sharing of personal information, and to limit the use of sensitive personal information. We do not knowingly sell personal data, but we may share identifiers (such as IP addresses) with analytics or advertising partners, which you can opt out of via the “Do Not Sell or Share” link in the cookie banner or by submitting a request through the emergentic.ai Help Center. You may designate an authorized agent to submit a request on your behalf. We will not discriminate against you for exercising your rights. Additional details appear in our dedicated CCPA Notice at Collection.
Where available, you can disable data sharing for model improvement within your workspace settings or by contacting us. Marketing emails include an unsubscribe link, and you may also adjust notification preferences in your account.
We use cookies, pixels, SDKs, and local storage to enable essential functionality (authentication, fraud prevention, security), understand how the Services are used, remember preferences, and deliver relevant content. Where required, we request consent before placing non-essential cookies. You can manage cookies through the banner, browser settings, or device controls. Disabling cookies may limit certain features. For more details, please review the cookie settings available within the product footer.
The Services are intended for users aged 18 and older. We do not knowingly collect personal data from anyone under 16 (or older where required by local law). If you believe a minor has provided us information, please contact us so we can delete the data. Educators or researchers who need access for younger audiences must have a separate written agreement with TGITM that includes appropriate safeguards.
We may update this Privacy Policy to reflect operational, legal, or regulatory changes. When we make material updates, we will notify you via email, in-product notice, or other reasonable means and update the “Last updated” date. Continued use of the Services after the effective date constitutes acceptance of the revised policy.
For questions, requests, or complaints about this Privacy Policy or our data practices, contact:
Please submit any privacy-related questions or requests through the emergentic.ai Help Center or in-product support workflows.