Pylon Logo

Privacy Policy

Effective Date: September 22, 2025

This Privacy Policy describes the practices of Pylon (“Company,” “we,” “us,” or “our”) with respect to the collection, use, and disclosure of personal information provided by individuals (“you”) who elect to join the waitlist for participation in our private beta program (the “Waitlist”).

1. Information We Collect

We collect information in the following categories:

  • Waitlist Data: Email address you submit.
  • Technical Metadata at Submission: IP address (truncated or stored in full as needed for abuse mitigation), and user agent string (browser / OS) captured automatically.
  • Cookies & Local Storage: A simple marker (`pylon.signedUp`) stored in both a cookie and localStorage to avoid duplicate UI flows and to remember sign-up state. No tracking identifiers beyond this marker are set by us directly.
  • Analytics & Telemetry: Page views, page paths, referrers, approximate geography (derived from IP or region edge lookup), timestamps, event types (e.g., load, navigation, interaction), performance timing metrics, error events, and device / environment data (browser family, version, OS, viewport or screen dimensions). Where feasible, IP addresses used for analytics are either truncated or processed only ephemerally to derive coarse region. We do not record raw keystrokes or form field contents other than the email you explicitly submit.

2. How We Use Information

We process the information above for these purposes:

  • Maintain and prioritize the waitlist and potential beta access.
  • Communicate onboarding or product availability updates to you.
  • Prevent fraud, spam, automated/bot signups, and abuse (IP + UA).
  • Debug service issues and improve reliability (analytics + performance metrics).
  • Measure aggregate engagement and product interest (analytics events).
  • Enforce basic rate-limiting and security controls (IP data).
  • Detect and triage client/runtime errors (error & performance telemetry).

We do not use collected data for unrelated third-party advertising or build personal marketing profiles beyond assessing interest in our own product.

3. Legal Bases (EEA/UK where applicable)

Our processing is based on: (a) Legitimate Interests (operating a secure waitlist, preventing abuse, measuring aggregate usage); (b) Consent where required for optional analytics features; and (c) Legal Obligations for retaining information necessary to respond to lawful requests.

4. Cookies, Local Storage & Similar Technologies

We set a minimal state cookie/localStorage key (`pylon.signedUp=true`) to avoid replaying the sign-up experience. Our privacy-focused analytics service may set lightweight identifiers (e.g., an anonymous event/session token). These do not store your email and are used only to correlate page views or performance events within a short timeframe. You can clear or block them via your browser settings; basic site functionality (viewing the marketing page) should continue to work.

If your browser signals Do Not Track (DNT) or you use common tracking-protection features, we will make reasonable efforts to respect those signals for optional analytics where technically feasible.

5. Data Retention

Email addresses are retained until (a) we invite you to the beta and you accept or decline, or (b) you request deletion, whichever is earlier. Security logs containing IP data are typically retained no longer than 30 days unless required for investigation of abuse. Analytics event data is aggregated; raw events are pruned or anonymized on a rolling basis (target window ≤ 90 days) unless needed for legitimate security/debugging purposes.

6. Your Rights & Choices

Depending on your jurisdiction you may have rights to access, correct, delete, or restrict processing of your personal data, and to object to certain processing (including analytics based on legitimate interests). You may also have a right to data portability and to lodge a complaint with a supervisory authority. To exercise rights, contact: privacy [at] pylon [dot] gg. We may take reasonable steps to verify your request.

7. Security

We apply administrative, technical, and organizational safeguards appropriate to the low volume and sensitivity of data processed (principle of data minimization, least privilege access, parameterized database writes, and transport encryption). No method is 100% secure; we monitor for anomalous activity and will evaluate any required notifications under applicable law if an incident occurs.

8. International Transfers

Infrastructure or analytics processing may occur in jurisdictions outside your own. Where required, we rely on standard contractual clauses or comparable safeguards for cross-border data transfers.

9. Children’s Privacy

Our waitlist and site are not directed to children under 16 (or lower age as defined by local law). We do not knowingly collect their data. If you believe a child has provided personal information, contact us for deletion.

10. Changes to This Policy

We may modify this Privacy Policy; changes apply as of the updated Effective Date.

11. Contact Information

For questions, rights requests, or clarification of analytics scope, contact: privacy [at] pylon [dot] gg