This Privacy Policy explains how Aquilae AI, Inc. (Aquilae AI, Sphere, we, us, or our) collects, uses, stores, and shares information when you access the Sphere website, marketplace, platform, or any related services (collectively, the Services).
By accessing or using the Services, you acknowledge that you have read and understood this Privacy Policy.
1. Information We Collect
We collect information in three primary ways: (1) information you provide, (2) information collected automatically, and (3) information provided by integrations or third-party services.
1.1 Information You Provide to Us
Account Information
When you create or manage an account, we collect:
- Name
- Email address
- Phone number
- Password or authentication credentials
- Organization or company information
- Role or rights-holder status (if applicable)
Marketplace Submissions (Rights Holders)
If you upload data, datasets, files, metadata, or other proprietary assets to the Sphere Marketplace (Marketplace Assets), we collect and store:
- Files and datasets you upload
- Metadata you provide (titles, descriptions, categories, tags)
- Ownership and rights declarations
- Licensing terms you select
- Provenance documentation you submit
- Any additional information required to verify ownership or eligibility
You retain ownership of all Marketplace Assets.
Communications
If you contact us, we collect:
- Name
- Message content
- Attachments you choose to send
Financial and Tax Information (Rights Holders)
If you receive payouts from Sphere, we collect:
- Payment account details
- Tax information (for example W-9, W-8BEN, EIN)
This information is stored securely and shared only with payment and tax processors.
1.2 Information We Collect Automatically
Device and Technical Data
- IP address
- Browser type and version
- Device identifiers
- Operating system
- Network information
Usage Data
- Pages viewed
- Marketplace searches
- Clickstream data
- Transaction activity
- API usage
- Interaction logs with Sphere AI features
Location Data
We infer approximate location from your IP address.
1.3 Information from Integrations (Google and Others)
When you explicitly connect a third-party integration (for example Gmail, Google Drive, Google Calendar, YouTube), we ingest only the specific data described below and store it in a secure integration record tied to your account.
Gmail Metadata (Up to 25 Most Recent Messages)
- Message ID
- Subject line
- Sender address
- Timestamp
- About 256-character snippet
We do not import: full message bodies, attachments, or inbox archives.
Google Drive Metadata (25 Most Recently Modified Files)
- File name
- MIME type
- Owner name and email
- Icon link
- Web view link
- Created and modified timestamps
- File size
We do not import: file contents.
Google Calendar Events (Next 30 Days, Up to 25 Events)
- Title
- Description
- Start and end times
- Meeting links
- Location
- Attendees
YouTube Channel Profile
- Channel title and description
- Thumbnails
- Subscriber count
- View count
- Video totals
- Playlist identifiers
AI Vendor Context Sharing
When you trigger an AI action, Sphere may send limited, structured context to trusted AI vendors solely to generate the response you requested.
Vendors are contractually prohibited from:
- Retaining your data
- Training on your data
- Reusing your data for any purpose beyond your prompt
Integration snapshots are deleted when you disconnect the integration or request removal.
2. How We Use Information
We use the information we collect to:
- Operate, maintain, and improve the Services
- Facilitate Marketplace transactions
- Verify rights-holder identity and ownership
- Provide AI-powered features and recommendations
- Detect fraud, abuse, or unauthorized use
- Process payments and payouts
- Communicate with you about updates, security, or support
- Comply with legal obligations
We may use automated systems (including AI) to classify Marketplace Assets, detect fraud, generate metadata, or improve discoverability.
3. How We Share Information
We share information only as described below.
3.1 Marketplace Transactions
When you list Marketplace Assets, certain information becomes visible to potential buyers:
- Asset metadata
- Previews or summaries
- Rights-holder display name (if applicable)
- Licensing terms
- Provenance indicators (for example verified, institution-verified)
When a buyer completes a purchase, we share with the buyer:
- The purchased Marketplace Asset
- Associated metadata
- Licensing documentation
- Provenance documentation (if applicable)
We do not share your personal contact information with buyers unless required by law or explicitly authorized by you.
3.2 Service Providers
We share information with vendors who help us operate the Services, including:
- Cloud hosting
- Payment processors
- Tax processors
- Security and fraud prevention tools
- AI technology providers (limited context only)
All vendors are contractually required to protect your data.
3.3 Affiliates
We may share information with our current or future affiliates for purposes consistent with this Privacy Policy.
3.4 Legal Requirements
We may access or disclose information if required to:
- Comply with law enforcement requests
- Respond to subpoenas or court orders
- Protect our legal rights
- Prevent fraud or security threats
4. Rights Holder Data and Ownership
You retain ownership of all Marketplace Assets you upload.
Sphere does not:
- Claim ownership
- Train models on your data
- Resell your data outside the Marketplace
- Grant licenses on your behalf beyond the terms you select
Sphere acts as a facilitator of licensing transactions between rights holders and buyers.
You may delete your Marketplace Assets at any time, except where:
- A buyer has already licensed the asset
- Deletion would violate legal retention requirements
5. Data Provenance and Verification
To maintain Marketplace integrity, Sphere may:
- Request documentation proving ownership
- Verify institutional affiliation
- Analyze metadata for authenticity
- Use automated tools to detect fraudulent submissions
If a dispute arises, Sphere may temporarily restrict access to the disputed asset while investigating.
6. Data Retention
We retain information as follows:
- Account data: retained until you delete your account
- Marketplace Assets: retained until you delete them or licensing obligations require retention
- Transaction records: retained for tax, audit, and compliance purposes
- Integration snapshots: deleted upon disconnection
- AI context: never stored beyond the duration of your prompt
7. Your Rights
Depending on your location, you may have rights to:
- Access your data
- Correct inaccurate data
- Request deletion
- Request a copy (portability)
- Opt out of promotional communications
You can exercise these rights by contacting contact@getsphere.xyz.
8. Do Not Track
We do not respond to Do Not Track signals because no standard exists.
9. Children's Privacy
Sphere is not intended for individuals under 18. We do not knowingly collect data from minors.
10. International Data Transfers
Sphere is hosted in the United States. If you access the Services from outside the U.S., your data will be transferred to and processed in the U.S.
11. Security
We use reasonable administrative, technical, and physical safeguards to protect your information. However, no method of transmission or storage is completely secure.
12. DMCA and IP Disputes
If you believe content on Sphere infringes your rights, you may submit a DMCA notice to contact@getsphere.xyz.
We follow the standard DMCA takedown and counter-notification process.
13. Changes to This Policy
We may update this Privacy Policy from time to time. We will post updates on this page and update the Last Updated date. Material changes may be communicated via email or in-product notifications.
14. Contact Us
For questions or concerns about this Privacy Policy or our data practices, contact:
Aquilae AI, Inc.
Email: contact@getsphere.xyz