Atomify Privacy Policy

1. Introduction

Atomify LLC ("Atomify," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, retain, and secure your information when you use our browser extension, CRM application, and related integrations and tools (collectively, the "Services").

By using our Services, you consent to the practices described here.

2. Information We Collect

2.1 Through the Browser Extension

Data Category	Description
Registration	Name, email, team name, office information, role and team membership, integration info, and other information you choose to provide.
Technical & Logging	Unique identifiers associated with your extension installation, extension version, URLs you visit on supported domains, browser and device information, and connection data (including IP address, timestamps, cookies, and request headers).
Integration Tokens	API tokens, credentials, or authentication keys for third-party services that you choose to connect.
Additional Technical	Debugging information, performance metrics, error logs, and other operational data necessary to provide, secure, and improve the Services.

2.2 Through the CRM Application

Data Category	Description
Account	Name, email address, password (hashed with bcrypt), team and role info, office location, and other data you provide at signup.
Lead Information	Names, emails, phone numbers, addresses, zip codes, states, notes, status and group assignments, contact history, appointment details, and other lead data you choose to store.
Performance Metrics	Daily productivity (dials, appointments), session activity (including login/logout times and active usage periods), time-logged data, sales figures, and related analytics metrics.
Attendance & Communication Data	With your organization's authorization, we may collect activity and attendance data from integrated communication and collaboration platforms (such as Slack or Discord), including session times, streaming activity, participation metrics, and interaction data between team members for team management and performance tracking purposes.

Future data collection: As we develop new features, we may collect additional data categories consistent with our purpose of providing, securing, and improving the Services.

3. How We Use Your Information

We use collected data to provide, operate, secure, and improve the Services, including:

Authenticating and authorizing you
Personalizing and automating your workflows
Monitoring for fraud or misuse
Delivering scripts and features in the extension
Powering real-time updates and team-based functionality in the CRM
Troubleshooting, debugging, and resolving technical issues
Analyzing usage patterns to improve user experience and feature offerings
Aggregating anonymized metrics to understand system performance
Tracking attendance and session activity for team management purposes
Providing customer support and notifications about important changes
Any other purposes disclosed to you at the time of collection or with your consent

4. Information Sharing & Disclosure

We may update who we share with as our Services evolve:

4.0 Evolution of Recipients

As our Services evolve, we may need to share information with additional categories of recipients. We will only share your information with new categories where necessary to provide the Services or as otherwise permitted by this Privacy Policy.

4.1 Third-Party Integrations

At your request, we may share data with third-party platforms and services you choose to integrate (such as dialers, CRMs, messaging tools, and other workflow applications) to enable cross-service functionality.

4.2 Service Providers

We engage third-party providers to host, log, and store data on our behalf, including:

Hosting & Logs: Our serverless endpoint (hosted on Vercel and Render) logs API requests—including payloads and headers (Origin, User-Agent, IP address, cookies)—generally retained for up to 30 days, though some logs may be retained longer for security, compliance, or dispute resolution.
Database: A third-party database provider stores your CRM and extension data.

We may engage additional service providers or change existing ones as needed; all are bound by confidentiality and data security obligations.

4.3 Team Members & Administrators

Within your organization, your leaders and administrators (including Atomify admins) may view, edit, or delete data—both user profiles and lead records—based on role-based permissions.

4.4 Legal Requirements

We may disclose your data if required by law or valid legal process (e.g. a court order or government request).

5. Data Retention

Account & lead data: Stored until you, your leaders, or admins delete it, or until it is no longer needed for the purposes collected.
Performance metrics: Retained for historical reporting and analysis purposes.
API & system logs: Generally retained for up to 30 days, though some logs may be retained longer for security, troubleshooting, or compliance purposes.

We may retain certain information longer if required for legitimate business purposes, legal compliance, or to resolve disputes.

6. Data Security

We apply industry-standard measures to protect your data, including:

Passwords hashed using bcrypt
HTTPS for all data in transit
Secure, HTTP-only cookies or JWTs for sessions
Role-based access controls in the CRM

Our security measures may change over time as we implement new technologies and methods. We regularly review and update our security practices to maintain appropriate protection levels.

7. Your Rights

You may request access, correction, deletion, restriction of processing, or data portability. To exercise these rights, or to manage API keys, contact us at privacy@atomify.app.

8. Cookies, Local Storage & Tracking

CRM cookies: HTTP-only cookies maintain authentication and cannot be disabled.
Extension storage: Uses Chrome's storage API for UUIDs, config data, encoded manifest info, and integration tokens.
Tracking: We may use analytics tools to understand usage patterns and improve the Services. We do not sell your data or use it for third-party advertising.

9. Children's Privacy

Our Services are not for users under 18. We do not knowingly collect data from minors. If you believe we have, contact us.

10. Changes to This Privacy Policy

We may update this policy to reflect changes in our practices, technologies, legal requirements, or business operations. Material changes will be posted here with a new "Last Updated" date.

For significant changes that affect your rights or how we use your data, we may provide additional notice through the Services. Your continued use of the Services after any changes indicates your acceptance of the updated policy.

We encourage you to review this policy periodically.

11. International Data Transfers

Your data may be transferred to and processed in the U.S., where our providers and servers are located. By using the Services, you consent to these transfers.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

privacy@atomify.app

https://atomify.app