Privacy Policy

At Melororium, operated by Melonos 135863 LLC, we are deeply committed to protecting the privacy, confidentiality, and data sovereignty of our worldwide users. This Privacy Policy outlines exactly how we collect, process, secure, and manage data across your personal or organizational business workspace.

1. Information We Collect

We restrict data collection exclusively to variables required to provide a stable, fast, and fully integrated operational environment. The categories of information processed include:

• Account Infrastructure Data: Full name, verified email address, chosen password hash, and system preferences configured during initialization.
• Third-Party Integration Allotments: OAuth access tokens and store parameters securely submitted when linking external APIs (such as Etsy Marketplace integrations or corporate Slack channels).
• Operational Workspace Inputs: Project names, Kanban board layouts, task names, text logs, active team time-tracking metrics, and custom field configurations submitted by users.
• Payment Tracking Records: All billing processes are executed natively by Stripe or AppSumo. Melororium servers never view, log, or store complete credit card strings, CVC codes, or raw financial details. We retain exclusively transaction reference IDs and plan subscription statuses.

2. Special Clause: Artificial Intelligence & Data Sovereignty

3. How We Utilize Your Information

The processed data is utilized strictly for the execution of the following services:

• Authenticating access and maintaining stable user sessions across your organizational workspace.
• Calculating live team load metrics and project performance dashboards.
• Syncing external marketplace parameters for real-time Etsy net profit analyses.
• Delivering urgent system updates, security patches, and processing direct support tickets.

4. Data Sharing & Third-Party Vendors

We do not sell, rent, lease, or distribute your workspace details to marketing networks or data brokers. Data sharing is restricted exclusively to vetted subprocessors essential for execution of Platform operations:

• Stripe Inc.: Employed for direct, secure checkout execution and fraud protection.
• AppSumo (Sumo Me, Inc.): Utilized for the validation of legitimate launch code allocations.
• Enterprise AI APIs: (e.g., OpenAI API Enterprise) Utilized strictly for real-time conversion of brief descriptions into automated sub-tasks and localized copywriting without retention rights.

5. GDPR & CCPA Global Compliance Rights

Regardless of your geographic location, Melororium extends comprehensive data control rights aligned with the European Union General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA):

• Right of Access & Portability: You may request a complete export of all tasks and workspace logs linked to your account.
• Right to Rectification: You maintain full real-time rights to modify or correct any personal or business configurations inside the Platform.
• Right to Erasure ("Right to be Forgotten"): Upon submitting a direct deletion request via info@melororium.com, all your account spaces, database records, and linked credentials will be permanently purged from our active operational servers within thirty (30) business days.

6. Data Security Measures

Melororium implements bank-grade protection mechanisms, including end-to-end Transport Layer Security (TLS) encryption for all data in transit and Advanced Encryption Standard (AES-256) blocks for data at rest. Access to database servers is strictly restricted via multi-layered firewall nodes and continuous automated security auditing logs.