1. Introduction

Blue Green Intelligence ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our B2B maritime SaaS platform, including our marine weather APIs, vessel routing APIs, voyage optimization APIs, and maritime analytics dashboards (collectively, the "Services").

By accessing or using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

2. Personal Data We Collect

2.1 Account and Contact Information

We collect the following personal information when you register for and use our Services:

• Name and Contact Details: Full name, email address, phone number
• Company Information: Company name, job title, business address
• Account Credentials: Username, password, and authentication details
• Billing Information: Billing address, company tax information (payment card details are handled by our payment processors)

2.2 Technical and Usage Data

We automatically collect technical information about how you use our Services:

• Login Details: Login timestamps, session duration, authentication logs
• API Usage Logs: API endpoints accessed, request parameters, response times, usage quotas
• Device and Browser Data: IP address, browser type, device information, operating system
• Support Communications: Messages, tickets, and correspondence with our support team

3. Operational and API Data We Collect

3.1 API Request Data

When you use our APIs, we process and may store:

• Weather Query Parameters: Geographic coordinates, weather parameters requested, time ranges
• Route Planning Inputs: Vessel specifications, waypoints, routing preferences, draft requirements
• Voyage Optimization Data: Route parameters, performance metrics, optimization criteria
• Analytics Queries: Dashboard usage, report parameters, data visualization preferences

3.2 Performance and Analytics Data

• API response times and error rates
• Service availability and performance metrics
• Usage patterns and feature adoption
• System performance and optimization data

4. How We Use Your Data

4.1 Service Provision and Account Management

• Provide and maintain our maritime APIs and analytics services
• Process API requests and deliver weather, routing, and optimization data
• Manage user accounts, subscriptions, and access controls
• Generate and manage API keys for secure access

4.2 Billing and Payment Processing

• Process subscription payments and manage billing cycles
• Calculate usage-based charges and overage fees
• Generate invoices and billing statements
• Handle refunds and billing disputes

4.3 Fraud Prevention and Security

• Detect and prevent fraudulent activities
• Monitor for abuse and unauthorized access
• Maintain system security and data integrity
• Comply with legal and regulatory requirements

4.4 Customer Support and Communication

• Provide technical support and customer service
• Send service-related notifications and updates
• Communicate about account changes and billing matters
• Respond to inquiries and support requests

4.5 Service Analytics and Improvement

• Analyze usage patterns to improve service performance
• Develop new features and enhance existing functionality
• Optimize API response times and data accuracy
• Conduct research and development for maritime services

5. Cookies and Analytics

5.1 Types of Cookies We Use

• Essential Cookies: Required for basic service functionality and security
• Authentication Cookies: Maintain your login session and user preferences
• Analytics Cookies: Help us understand service usage and performance
• Functional Cookies: Remember your settings and dashboard configurations

5.2 Third-Party Analytics

We may use third-party analytics services to understand how our Services are used and to improve performance. These services may collect information about your usage patterns in accordance with their own privacy policies.

6. Data Sharing and Third Parties

We do not sell, trade, or rent your personal information to third parties. We may share your information with:

6.1 Service Providers and Infrastructure Partners

• Cloud Hosting Providers: For data storage and service delivery
• Authentication Providers: For user identity management and security
• Analytics Services: For service monitoring and performance analysis
• Email and Communication Services: For sending notifications and support communications

6.2 Payment and Billing Providers

• Paddle: For payment processing, billing, and subscription management where applicable
• Other Payment Processors: For alternative payment methods and billing services
• Tax and Compliance Services: For tax calculation and regulatory compliance

6.3 Legal and Compliance Authorities

We may disclose your information when required by law or to:

• Comply with legal processes, court orders, or government requests
• Protect our rights, property, or safety, or that of our users
• Investigate potential violations of our terms of service
• Prevent fraud or other illegal activities

7. Data Retention

We retain your information for as long as necessary to provide our Services and comply with legal obligations:

Data Type	Retention Period	Purpose
Account Information	Duration of account + 2 years	Service provision and legal compliance
API Usage Logs	12 months	Service monitoring, billing, and support
Billing Records	7 years	Financial and tax compliance
Support Communications	3 years	Customer service and issue resolution
Session Data	24 hours (active sessions)	Authentication and security

8. Your Rights and Choices

8.1 Access and Portability

• Request access to your personal information we hold
• Obtain a copy of your data in a portable format
• View your API usage statistics and account information through our dashboard

8.2 Correction and Updates

• Update your account information and company details
• Correct inaccurate or incomplete information
• Modify your communication preferences

8.3 Deletion and Restriction

• Request deletion of your account and associated data
• Restrict processing of your information in certain circumstances
• Withdraw consent for data processing where applicable

9. Security Measures

We implement comprehensive security measures to protect your information:

9.1 Technical Safeguards

• Encryption: Data encrypted in transit using HTTPS/TLS and at rest using industry-standard encryption
• Access Controls: Strict access controls and multi-factor authentication
• API Security: Secure API tokens with expiration dates and usage monitoring
• Infrastructure Security: Cloud infrastructure with built-in security features and regular updates

9.2 Operational Safeguards

• Regular security audits and vulnerability assessments
• Employee training on data protection and privacy practices
• Incident response procedures for security breaches
• Regular backups and disaster recovery procedures

10. International Data Transfers

Our Services may involve international data transfers. We ensure that:

• Data transfers comply with applicable privacy laws and regulations
• Appropriate safeguards are in place for international transfers
• Service providers maintain adequate data protection standards
• Users are informed about the location of data processing

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will:

• Notify users of material changes via email or service notifications
• Post the updated Privacy Policy on our website with a new effective date
• Provide a summary of significant changes when applicable
• Maintain previous versions for reference when requested