Privacy Policy
Including SMS/Text Messaging Policy (TCPA/FCC Compliant)
Effective Date: May 25, 2026 | Last Updated: May 25, 2026
LEGAL DISCLAIMER: This Privacy Policy has been drafted based on research of current U.S. federal and California state privacy laws (CCPA/CPRA effective January 1, 2026), TCPA/FCC SMS regulations (2025-2026 updates), and best practices drawn from leading AI safety organizations. You should have a licensed attorney review this document before publishing it on your website. Nothing in this document constitutes legal advice.
PART I: MAIN PRIVACY POLICY
Section 1 — Introduction and Scope
Audacion AI Labs, a Public Benefit Corporation ("we," "us," or "our"), operates audacionailabs.com (the "Website") as an independent AI safety research lab and citizen science platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our Website, create an account, submit observations, subscribe to our newsletter, participate in the PRISM Research Fellowship, or communicate with us.
This Privacy Policy applies to all users of the Website, including visitors, registered users, contributors, researchers, students, professionals, and members of the public. It covers personal data collected online through the Website and through any associated communication channels, including SMS/text messaging services.
This Privacy Policy does not apply to:
-
Third-party websites linked from our Website (including the websites of AI safety organizations referenced in our research)
-
Data processed by third-party AI systems that you observe and report on through our platform (each AI provider maintains their own privacy practices)
-
Services governed by separate data processing agreements (when available)
By using the Website, you acknowledge that you have read and understood this Privacy Policy and consent to the practices described herein.
Section 2 — Information We Collect
2.1 Information You Provide Directly
Identifiers: Name, email address, phone number (optional), display name, country, state/province (optional)
Account Credentials: Email (as username), password, security questions (if applicable)
Professional Information: Industry, AI experience level, organization (optional)
Communications: Messages submitted via contact forms, emails, survey responses
Consent Records: SMS opt-in records, newsletter signup timestamps, marketing consent selections, Terms of Service acceptance records
Observation Data: Behavioral observations of AI systems submitted through the observation tool, including the AI platform observed, the behavior category, description, date, and any supporting context you provide
Application Data: Research program applications, fellowship interest forms, partnership inquiries, employment applications, speaker submissions
Payment Information: If applicable for future paid services, billing address and payment method (processed by third-party payment processors; we do not store full payment card numbers)
2.2 Information Collected Automatically
Device and Browser Data: IP address, browser type and version, operating system, device type, screen resolution
Usage Data: Pages visited, time spent on pages, links clicked, referring URLs, search queries on our Website, observation submission patterns (aggregated)
Geolocation Data: Approximate location based on IP address (not precise GPS location unless explicitly permitted)
Cookies and Tracking Technologies: Session cookies, persistent cookies, web beacons, pixel tags, and similar technologies (see Section 6 for full Cookie Policy)
Log Files: Server logs recording access times, error reports, and system activity
2.3 Information from Third Parties
We may receive information about you from:
-
Social media platforms (if you connect your account via OAuth login)
-
Analytics providers (such as Google Analytics)
-
Email marketing platforms (for newsletter distribution)
-
Event registration platforms (for PEAQ Summit or similar events)
Section 3 — How We Use Your Information
We use the personal information we collect for the following business and operational purposes:
Providing and Improving the Website: To operate, maintain, troubleshoot, and enhance the functionality and content of the Website and observation platform
Account Management: To create and manage your account, authenticate your identity, and process your preferences
Research and Science: To compile, analyze, and publish anonymized, de-identified research datasets from aggregated observation submissions. No individual is identifiable in published research outputs.
PRISM Research Fellowship: To track your observation submissions, assign fellowship tier designations, display your progress on your dashboard and the community leaderboard, and issue digital credentials
Communications: To respond to your inquiries, questions, comments, and feedback
Newsletters and Updates: To send you updates about AI safety research, new findings, community milestones, events, and resources you have subscribed to receive
SMS/Text Messaging: To send you text messages you have specifically opted into (see Part II of this Policy for full SMS terms)
Analytics: To understand how users interact with our Website, identify trends, and improve user experience
Safety and Security: To detect, prevent, and respond to fraud, abuse, data manipulation, security incidents, and violations of our Terms of Service
Legal Compliance: To comply with applicable laws, regulations, court orders, and legal processes
Marketing and Promotions: To send promotional materials about our services and research, subject to your opt-out rights
We will not use your personal information for purposes materially different from those listed above without your explicit consent or as otherwise required by law.
Section 4 — Legal Bases for Processing (GDPR / UK GDPR)
For users located in the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on the following legal bases for processing personal data:
Performance of a Contract: Providing requested services, account creation, observation platform access
Consent: Sending newsletters (opt-in), SMS messaging (opt-in), marketing communications (opt-in), non-essential cookies
Legitimate Interests: Fraud prevention, security, analytics and service improvement, research data integrity monitoring
Legal Obligation: Compliance with legal obligations, responding to lawful requests
Where we rely on legitimate interests, we have assessed that our interests do not override your rights and freedoms as a data subject. You may object to processing based on legitimate interests at any time by contacting [email protected].
Section 5 — How We Share Your Information
We do not sell, rent, or trade your personal information to third parties for their own marketing purposes. We share information only in the following circumstances:
5.1 Service Providers and Vendors
We engage trusted third-party service providers who process data on our behalf, including email marketing platforms, analytics providers (Google Analytics), cloud hosting providers, SMS messaging platforms (registered A2P 10DLC providers), and authentication providers (OAuth/social login). All service providers are contractually obligated to protect your data and comply with applicable privacy laws.
5.2 Research Publications
Aggregated, de-identified observation data may be published in open-access research datasets, academic papers, conference presentations, and policy reports. No individual contributor can be identified from published research data.
5.3 Legal Requirements
We may disclose personal information if required to do so by law, subpoena, court order, or other governmental or legal request, or when we believe disclosure is necessary to protect our rights, the safety of others, investigate fraud, or respond to a government request.
5.4 Business Transfers
In the event of a merger, acquisition, restructuring, sale of assets, or bankruptcy, your information may be transferred to the acquiring entity. We will provide notice before your personal information is transferred and becomes subject to a different privacy policy.
5.5 With Your Consent
We may share your information with third parties when you have given explicit consent for us to do so.
Section 6 — Cookies and Tracking Technologies
Our Website uses cookies and similar tracking technologies to operate and improve the Website.
Strictly Necessary Cookies: Essential for the Website to function (session management, authentication, security). Cannot be disabled. Duration: Session or Persistent.
Functional/Preference Cookies: Remember your settings and display preferences. Duration: Persistent, up to 1 year.
Analytics/Performance Cookies: Measure how visitors use the Website. We use Google Analytics. Duration: Persistent, up to 2 years.
Marketing/Targeting Cookies: Not currently used. If introduced, we will update this Policy and provide notice.
Managing Cookies: You can control cookies through your browser settings. Disabling certain cookies may affect Website functionality.
Opt-Out Preference Signals: Our Website honors Global Privacy Control (GPC) signals per 2026 CCPA regulations.
Do Not Track: Our Website responds to DNT signals by disabling non-essential cookies and tracking.
Section 7 — Data Retention
We retain personal information only as long as necessary for the purposes described in this Policy:
| Data Category | Retention Period |
|---|---|
| Account information | Duration of account plus 3 years after closure |
| Newsletter subscriber records | Until unsubscribe plus 2 years |
| SMS consent records | 5 years (TCPA compliance requirement) |
| Observation submissions | De-identified: indefinitely in research datasets. Personal metadata: account duration plus 1 year. |
| Contact form submissions | 2 years |
| Analytics/usage data | Up to 26 months |
| Payment records | 7 years (financial/tax compliance) |
| Employment applications | 2 years after position is filled |
| Security/fraud logs | 2 years |
Under updated 2026 CCPA regulations, if we retain personal information for longer than 12 months, you have the right to request access to personal information collected prior to that 12-month window.
Section 8 — Your Privacy Rights
8.1 Rights for California Residents (CCPA/CPRA)
California residents have the following rights:
-
Right to Know: Request disclosure of personal information collected, sources, purposes, and third parties
-
Right to Delete: Request deletion of personal information (subject to exceptions)
-
Right to Correct: Request correction of inaccurate personal information
-
Right to Opt-Out of Sale/Sharing: We do not sell personal information. Use "Do Not Sell or Share" footer link.
-
Right to Limit Use of Sensitive Personal Information
-
Right to Non-Discrimination
To exercise California privacy rights, contact [email protected] or call (424) 999-0548.
8.2 Rights for EEA/UK/Swiss Residents (GDPR)
GDPR rights include: access, rectification, erasure, restriction of processing, data portability, objection, withdrawal of consent, and right to lodge a complaint with a supervisory authority. Contact [email protected].
8.3 Other State Privacy Rights
Residents of Virginia, Colorado, Connecticut, Texas, Montana, Oregon, and other states with comprehensive privacy laws have similar rights. Contact [email protected].
Section 9 — Data Security
We implement commercially reasonable administrative, technical, and physical safeguards including:
-
Encryption of data in transit (TLS/SSL) and at rest
-
Secure password hashing
-
Access controls on a need-to-know basis
-
Regular security assessments and monitoring
-
Incident response procedures
No method of transmission over the Internet is 100% secure. If we become aware of a security breach, we will notify you in accordance with applicable law.
Section 10 — Children's Privacy
Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we learn that we have collected such information, we will delete it promptly. Contact [email protected] if you believe we have collected information from a child under 18.
Section 11 — International Data Transfers
Audacion AI Labs is based in Los Angeles, California, United States. If you access the Website from outside the United States, your information may be transferred to, stored, and processed in the United States. Where required by applicable law, we ensure appropriate safeguards are in place, including Standard Contractual Clauses or other approved transfer mechanisms.
Section 12 — Automated Decision-Making
We do not use personal data for automated decision-making or profiling that produces legal effects without human oversight. Where we use automated tools that produce significant effects on you, we will provide notice and the right to request human review.
Section 13 — Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Material changes will take effect thirty (30) days after notice is provided via the Website or email. Your continued use after the effective date constitutes acceptance.
PART II: SMS/TEXT MESSAGING POLICY (TCPA/FCC COMPLIANT)
Section 14 — SMS/Text Messaging Terms
14.1 Program Description
Audacion AI Labs offers an optional SMS/text messaging program to provide subscribers with research updates, PRISM Research Fellowship milestone notifications, community milestones, event announcements, and other informational messages related to AI safety research.
Program Name: Audacion AI Labs Research Updates
14.2 Consent and Opt-In
By providing your mobile phone number and checking the SMS opt-in checkbox during account registration, you expressly consent to receive automated and/or pre-recorded text messages from Audacion AI Labs at the mobile number you provide.
Your consent is not a condition of purchasing any goods or services. You are not required to opt in to SMS messaging to create an account, submit observations, or participate in the PRISM Research Fellowship.
We maintain records of your opt-in consent, including the date, time, method of consent, and phone number provided, for a minimum of five (5) years as required by TCPA regulations.
14.3 Message Frequency and Content
Message Frequency: Up to four (4) text messages per month. Frequency may vary.
Message Content: Research findings, fellowship tier progression, community milestones, event announcements, and service updates.
Messages will not include promotional content for third-party products or links to third-party commercial offers.
14.4 Opt-Out
You may opt out at any time by:
-
Replying STOP (or END, CANCEL, UNSUBSCRIBE, or QUIT) to any message
-
Updating your communication preferences in your account settings
-
Contacting [email protected] or calling (424) 999-0548
Opting out of SMS does not affect your account, submissions, fellowship status, or any other aspect of the Services.
14.5 Help
For help with the SMS program, text HELP to our messaging number, email [email protected], or call (424) 999-0548.
14.6 Message and Data Rates
Message and data rates may apply. Audacion AI Labs does not charge for text messages, but your mobile carrier may charge standard messaging and data fees.
14.7 Carrier Disclaimer
Carriers are not liable for delayed or undelivered messages.
14.8 No Data Sharing for SMS
We do not sell, rent, loan, trade, lease, or otherwise transfer any phone numbers or personal information collected through our SMS program to any third party for promotional purposes. Phone numbers are shared only with our registered SMS service provider solely for message transmission.
14.9 Age Restriction
You must be 18 years of age or older to opt in to the SMS messaging program.
PART III: YOUR RIGHTS SUMMARY
Section 15 — Exercising Your Rights
Regardless of your location, you may contact us at any time to request access, correction, deletion, or opt-out of any data processing. We will respond within the timeframes required by applicable law (45 days for CCPA, 30 days for GDPR, extendable where permitted).
Privacy Contact: [email protected]
Phone: (424) 999-0548
Mail: Audacion AI Labs, Attn: Privacy, Los Angeles, California
Section 16 — Nevada Privacy Rights
Nevada residents may opt out of the "sale" of personal information under Nevada Revised Statutes Chapter 603A. We do not currently sell personal information. Submit requests to [email protected] with subject line "Nevada Privacy Opt-Out."
PART IV: VERSION HISTORY
| Version | Date | Summary of Changes |
|---|---|---|
| 1.0 | May 25, 2026 | Initial publication |
Contact Information
Privacy Inquiries: [email protected]
General Inquiries: [email protected]
Legal/Policy Questions: [email protected]
Phone: (424) 999-0548
Audacion AI Labs is a Public Benefit Corporation. Founded 2026 by Dee Williams.
"To make AI safe enough to trust and good enough to matter."