Privacy Policy

    Effective Date: November 9, 2025

    Sit Stay AI ("we," "us," or "our") operates sitstayai.com and provides AI training workshops for small businesses. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or register for our services.

    We respect your privacy and are committed to protecting your personal information. This policy describes our practices in plain language.

    Information We Collect

    Information You Provide Directly

    • Name, email address, phone number, and company name when you register for workshops
    • Payment information (processed through secure third-party payment processors)
    • Communication preferences and workshop attendance details
    • Feedback, questions, or other information you submit through contact forms

    Information Collected Automatically

    • Browser type, device information, and operating system
    • IP address and general location data
    • Pages visited, time spent on pages, and referring URLs
    • Cookies and similar tracking technologies (see Cookie Policy)

    How We Use Your Information

    We use your information to:

    • Process workshop registrations and payments
    • Send workshop confirmations, reminders, and materials
    • Provide customer support and respond to inquiries
    • Send updates about our services (with your consent)
    • Improve our website and services
    • Comply with legal obligations

    Information Sharing and Disclosure

    We do not sell your personal information. We may share your information with:

    Service Providers

    Third-party vendors who help us operate our business (payment processors, email service providers, analytics providers). These providers are contractually obligated to protect your information.

    Legal Requirements

    When required by law, subpoena, or legal process, or to protect our rights, property, or safety.

    Business Transfers

    If we are involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change.

    Your Rights and Choices

    You have the right to:

    • Access the personal information we hold about you
    • Correct inaccurate or incomplete information
    • Request deletion of your information (subject to legal obligations)
    • Opt out of marketing communications
    • Withdraw consent where we rely on consent to process your information

    To exercise these rights, contact us at hello@sitstayai.com.

    Data Retention

    We retain your information for as long as necessary to provide our services and comply with legal obligations. Workshop registration data is typically retained for 7 years for tax and business records purposes.

    Security

    We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. However, no internet transmission is completely secure, and we cannot guarantee absolute security.

    Children's Privacy

    Our services are not directed to individuals under 18. We do not knowingly collect personal information from children.

    International Data Transfers

    We are based in the United States. If you access our services from outside the U.S., your information will be transferred to and processed in the U.S.

    Changes to This Policy

    We may update this Privacy Policy periodically. We will notify you of material changes by posting the updated policy on our website with a new effective date.

    Contact Us

    For questions about this Privacy Policy or our privacy practices, contact us at:

    Sit Stay AI

    Email: hello@sitstayai.com

    Website: sitstayai.com

    Our Commitment to Your Privacy

    At Sit Stay AI, we believe privacy is a fundamental right, not just a legal obligation. We've built our business around trust — trust that we'll teach you practical AI skills, trust that our workshops deliver real value, and trust that we'll handle your personal information responsibly.

    We collect only the information we need to provide our services effectively. We don't sell your data. We don't share your information with third parties for their marketing purposes. We don't track you across the web or build advertising profiles from your browsing behavior.

    When you register for a workshop, we use your information to process your registration, send you important updates about your workshop, and provide the resources and support you need to get the most from your training. After your workshop, we may send you occasional updates about new workshops or resources — but you can unsubscribe at any time with one click.

    We work with trusted service providers to process payments (Stripe), send emails (Resend), and host our website (Vercel and Supabase). Each of these providers has their own privacy practices and security measures, and we've chosen them because they share our commitment to protecting user data.

    If you ever have questions about how we handle your information, or if you want to access, correct, or delete your data, just send us an email. We respond to privacy requests promptly and without the runaround. Your trust matters to us, and we work hard to earn it every day.

    Data We Don't Collect

    We believe in data minimization — collecting only what we need and nothing more. Here's what we don't do:

    • We don't use tracking pixels or retargeting cookies to follow you around the web
    • We don't sell or rent your personal information to data brokers or marketing companies
    • We don't build advertising profiles based on your browsing behavior
    • We don't share your email address with third parties for their marketing purposes
    • We don't collect biometric data, precise location data, or any sensitive personal information beyond what's necessary for workshop registration

    Our business model is simple: we sell AI training workshops. We don't need to monetize your data because our revenue comes from providing valuable education, not from advertising or data brokerage.

    How We Protect Your Information

    Security isn't just a checkbox for us — it's built into how we operate. Here are the specific measures we take to protect your data:

    • All data transmission uses HTTPS encryption (TLS 1.3)
    • Payment processing is handled entirely by Stripe — we never see or store your credit card numbers
    • User passwords are hashed using industry-standard algorithms (never stored in plain text)
    • Our database uses row-level security policies to ensure users can only access their own data
    • We regularly review access logs and monitor for suspicious activity
    • Our hosting providers (Vercel and Supabase) maintain SOC 2 compliance and enterprise-grade security

    While no system is perfectly secure, we take reasonable and appropriate measures to protect your information from unauthorized access, disclosure, alteration, or destruction.

    Your California Privacy Rights

    If you're a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

    • Right to know what personal information we collect and how it's used
    • Right to delete your personal information (with some exceptions)
    • Right to opt out of the sale of personal information (we don't sell your data, but you have this right)
    • Right to non-discrimination for exercising your privacy rights
    • Right to correct inaccurate personal information
    • Right to limit use of sensitive personal information

    To exercise any of these rights, contact us at hello@sitstayai.com. We'll respond to verifiable requests within 45 days as required by law.