Version: Draft v1.0Effective: April 21, 2026Last updated: April 21, 2026
1.Introduction
EXIT83 Consulting LLC (“EXIT83,” “we,” “our,” or “us”) respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy (“Policy”) explains how we collect, use, disclose, and safeguard information when you visit our website at exit83.ai (the “Site”), use our related subdomains, purchase or use any of our products or services (collectively, the “Services”), or otherwise interact with us.
By using the Site or Services, you acknowledge that you have read and understood this Policy. If you do not agree with this Policy, please do not use the Site or Services.
This Policy applies to all visitors, prospective customers, and customers of EXIT83. Service-specific terms (including the applicable license agreement for each product) govern use of the underlying Services and should be read alongside this Policy.
2.At a Glance
Summary
This summary is provided for convenience only. Please read the full Policy below for complete details.
What we collect: contact details you give us, information about your use of the Site and Services, payment information processed through Stripe, and — for certain Services — your GitHub username.
Why we collect it: to deliver Services, process payments, communicate with you, secure the platform, and comply with legal obligations.
Who we share it with: our service providers (e.g., Stripe for payments, GitHub for repository provisioning, Microsoft Azure for hosting), when required by law, or in connection with a business transaction.
Your rights: depending on where you live, you may request access to, correction of, or deletion of your personal information, and you may opt out of certain uses. See Section 9.
We do not sell your personal information to any third party.
We do not store credit card information. All card data is handled directly by Stripe; we never see or retain card numbers.
AI/LLM disclosure: some Services rely on third-party Large Language Models, and data you submit to those features may be processed — and in some cases used for model training — by the LLM provider. See Section 5.2.
We collect information in three ways: information you provide directly, information collected automatically when you use the Site or Services, and information we receive from third parties.
3.1Information You Provide Directly.
We collect information you voluntarily submit, including:
Account and contact information: name, email address, company name, job title, mailing or billing address, phone number.
Authentication credentials: passwords or similar credentials used to access the client portal (stored in hashed form only).
Payment information: billing details processed by our payment processor. We do not store credit card numbers, CVVs, or full card data on our systems. Card data is collected and handled directly by Stripe. We only receive and retain limited transaction metadata (e.g., the last four digits of the card, card brand, billing country, and the Stripe customer and subscription identifiers) so we can reconcile payments and provide customer support. See Section 5 for more on third-party processors.
Service-specific identifiers: for the Developer Workflow Skills product, we collect the GitHub username you provide at checkout so we can add you as a collaborator to your licensed repository.
Communications: the content of emails, support tickets, chatbot messages, form submissions, and any other correspondence you send us.
Marketing preferences: your consent status for marketing communications.
3.2Information Collected Automatically.
When you visit the Site or use the Services, we and our service providers may automatically collect:
Device and browser information: IP address, browser type and version, operating system, device identifiers, screen resolution, and language preference.
Usage data: pages viewed, links clicked, time spent on pages, referring URLs, search terms, timestamps, and similar interaction data.
Log data: server logs containing access times, requested URLs, HTTP status codes, and user-agent strings.
Cookies and similar technologies: see Section 7.
3.3Information From Third Parties.
We may receive information about you from third-party sources, including:
Payment processor: Stripe provides us with transaction metadata (e.g., the last four digits of the card used, card brand, billing country) and consent records captured at checkout.
Analytics providers: aggregated or pseudonymized usage data.
Publicly available sources: information from public business directories, professional networks, or enrichment tools used for lead qualification.
Referral sources: information shared by partners, affiliates, or existing customers who refer you to us.
4.How We Use Information
We use the information we collect for the following purposes:
4.1Delivering and Supporting the Services.
Creating and maintaining your account.
Processing purchases, issuing subscriptions, and provisioning access (including provisioning a private GitHub repository for Developer Workflow Skills customers).
Providing customer support and responding to your inquiries.
Delivering transactional communications such as receipts, license confirmations, security alerts, and service announcements.
Operating, maintaining, securing, and improving the Site and Services.
4.2Payments and Billing.
Processing payments, handling subscription renewals, issuing refunds or credits, and managing chargebacks — all executed by Stripe on our behalf.
Calculating and remitting applicable taxes.
4.3Communications and Marketing.
Sending service-related announcements, product updates, and security notifications. These communications are considered part of the Services and are not treated as marketing.
Sending marketing emails or newsletters where you have opted in. You can unsubscribe at any time using the unsubscribe link in any marketing email.
4.4Analytics and Product Improvement.
Understanding how visitors and customers use the Site and Services.
Measuring the effectiveness of marketing campaigns.
Developing new features and improving existing ones.
4.5Security, Fraud Prevention, and Legal Compliance.
Detecting, investigating, and preventing fraudulent, unauthorized, or illegal activity.
Protecting the rights, property, or safety of EXIT83, our customers, and others.
Complying with applicable laws, regulations, legal processes, or enforceable governmental requests.
Enforcing our Terms of Service, applicable license agreements, and other agreements.
4.6Legal Bases for Processing (EU/UK Residents).
If you are located in the European Economic Area, United Kingdom, or Switzerland, we process your personal data under one or more of the following legal bases:
Contract: processing necessary to provide the Services you have purchased or requested.
Legitimate interests: such as operating, securing, and improving the Services, preventing fraud, and marketing to existing customers. We balance our legitimate interests against your privacy rights.
Consent: where required (e.g., non-essential cookies, certain marketing communications). You may withdraw consent at any time.
Legal obligation: where processing is necessary to comply with applicable law.
5.How We Share Information
EXIT83 does not sell, rent, or trade your personal information to any third party for their own marketing or commercial purposes. We share information only as described below.
5.1Service Providers (Sub-Processors).
We rely on third-party service providers to operate the Site and Services. These providers are contractually obligated to protect your information and use it only for the purposes we direct. Our primary sub-processors include:
5.2Third-Party AI and Large Language Model Providers.
Some of our Services use third-party artificial intelligence and Large Language Model (“LLM”) providers (for example, broadly recognized foundation-model providers such as OpenAI, Anthropic, Google, and Microsoft). When you interact with an AI-powered feature, the inputs you submit — and sometimes related metadata — are transmitted to and processed by the applicable LLM provider in order to generate a response.
Important things to understand:
Data may be used for model training. Depending on the LLM provider, the commercial terms we have in place, and the configuration of the specific feature, data submitted to the provider may be used by that provider to train or improve its models. Where we have access to an enterprise or API configuration that excludes customer data from training, we use it. Where we do not, we disclose that use here so you can make an informed decision about what you submit.
Each provider has its own policies. LLM providers operate under their own privacy policies, data retention schedules, and terms of use. We encourage you to review the published policies of any LLM provider whose capabilities back a Service you use.
Do not submit sensitive information — such as protected health information, financial account numbers, government identifiers, or other regulated or confidential data — to AI-powered features unless the Service's documentation explicitly states that it is safe to do so.
Service-level specifics. Where practical, we publish the LLM providers backing a given Service and the training-exclusion posture in that Service's documentation.
EXIT83 does not sell data to these providers. We transmit data to them solely to deliver the Services you have requested.
5.3Legal and Regulatory Disclosures.
We may disclose your information if we believe in good faith that disclosure is necessary to:
Comply with a valid legal process, including subpoenas, court orders, or government investigations.
Respond to lawful requests from public authorities, including to meet national security or law enforcement requirements.
Enforce our Terms of Service or applicable license agreements.
Protect the rights, property, or safety of EXIT83, our customers, or the public.
5.4Business Transfers.
If EXIT83 is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or a portion of its assets, your information may be transferred as part of that transaction. We will notify you through a notice on the Site or by email before your personal information becomes subject to a different privacy policy.
5.5With Your Consent.
We may share information for any other purpose with your consent.
5.6Aggregated or De-Identified Data.
We may share aggregated or de-identified data — which cannot reasonably be used to identify you — for analytics, research, marketing, or other legitimate business purposes.
6.Data Retention
We retain personal information only for as long as necessary to fulfill the purposes described in this Policy, unless a longer retention period is required or permitted by law. Retention periods depend on the nature of the data and the purpose for which it was collected.
Account data: retained for the duration of your account and for a reasonable period thereafter.
Transactional records: retained for a period sufficient to satisfy tax, accounting, and audit requirements — typically at least seven (7) years.
License consent records: retained indefinitely as the evidentiary record of your acceptance of the applicable license agreement.
Support communications: retained for a reasonable period for service quality, training, and dispute resolution.
Marketing records: retained until you opt out, after which we retain a suppression record to honor your preference.
Backups and archives: may contain personal information for additional time consistent with our backup retention schedule.
When personal information is no longer needed, we delete or anonymize it in accordance with our internal retention policies.
7.Cookies and Similar Technologies
The Site uses cookies and similar technologies (such as pixels, local storage, and session storage) to operate the Site, authenticate users, remember preferences, and analyze Site performance. Categories include:
Strictly necessary: required for the Site to function (authentication, session management, security).
Functional: remembering preferences like language or region.
Analytics: measuring Site usage to help us improve.
You can control cookies through your browser settings. Blocking strictly necessary cookies may prevent parts of the Site from working.
8.Data Security
We maintain reasonable administrative, technical, and physical safeguards designed to protect personal information against accidental or unlawful loss, access, disclosure, alteration, or destruction. Measures include encryption of data in transit (TLS), encryption of sensitive data at rest where applicable, access controls, and regular review of security practices.
No method of transmission over the Internet or method of electronic storage is completely secure. We cannot guarantee absolute security. If we become aware of a security breach affecting your personal information, we will notify you as required by applicable law.
9.Your Privacy Rights
Depending on where you reside, you may have certain rights regarding your personal information. To exercise any of these rights, contact us at legal@exit83.com. We will verify your request before honoring it and will respond within the timeframe required by applicable law. You will not be discriminated against for exercising your rights.
9.1California Residents (CCPA/CPRA).
California residents have the right to:
Know what categories and specific pieces of personal information we collect, use, disclose, and (if applicable) sell or share.
Request deletion of personal information, subject to certain exceptions.
Request correction of inaccurate personal information.
Opt out of the sale or sharing of personal information. EXIT83 does not sell personal information to any third party, and does not share it for cross-context behavioral advertising.
Limit the use and disclosure of sensitive personal information. We do not use or disclose sensitive personal information beyond what is necessary to provide the Services.
Non-discrimination for exercising these rights.
California residents may designate an authorized agent to make a request on their behalf. The agent must provide proof of authorization.
9.2European Economic Area, United Kingdom, and Switzerland Residents (GDPR/UK GDPR).
If you are in the EEA, UK, or Switzerland, you have the right to:
Access the personal information we hold about you.
Request correction of inaccurate or incomplete information.
Request deletion of your personal information, subject to certain legal bases for retention.
Restrict or object to certain processing activities.
Receive your personal information in a portable, machine-readable format.
Withdraw consent at any time where processing is based on consent.
Lodge a complaint with your local data protection authority.
Where we rely on legitimate interests as our legal basis, you may object to the processing, and we will evaluate the objection against our interests.
9.3Other U.S. State Residents.
Residents of states with comprehensive privacy laws (including but not limited to Virginia, Colorado, Connecticut, Utah, Texas, Oregon, and Washington) may have similar rights to access, correct, delete, and opt out of certain processing. We honor these rights as required by applicable state law.
9.4How to Exercise Your Rights.
Send requests to legal@exit83.com. Please include enough information for us to verify your identity and locate your records. We may request additional information to complete verification.
10.International Data Transfers
EXIT83 is headquartered in the United States, and the Services are operated from the United States. If you access the Services from outside the United States, your information may be transferred to, stored in, and processed in the United States and in other countries where our service providers operate. These countries may have data protection laws that differ from those in your country.
Where required by applicable law, we rely on appropriate transfer mechanisms (such as the EU Standard Contractual Clauses or equivalent) to lawfully transfer personal information across borders.
11.Children's Privacy
The Site and Services are intended for business users and are not directed to children under 13 (or the equivalent minimum age in other jurisdictions, such as 16 in parts of the EEA). We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us, and we will take appropriate steps to delete it.
12.Do Not Track
Some browsers offer a “Do Not Track” (DNT) signal. Because there is no industry standard for how to respond to DNT signals, we do not currently respond to them. We describe our overall approach to tracking in Section 7.
13.Third-Party Links and Integrations
The Site may contain links to third-party websites or services (including social networks, sub-processors, and integration partners) that are not operated by EXIT83. This Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party site or service you visit.
14.Changes to This Policy
We may update this Policy from time to time. When we make material changes, we will update the “Last Updated” date above and, where required by applicable law, provide notice through the Site, by email, or by another reasonable means prior to the change taking effect. Your continued use of the Site or Services after the effective date of the updated Policy constitutes acceptance of the changes.
Each published version of this Policy will be available at a versioned URL (e.g., https://exit83.ai/legal/privacy-v1.0.html) so prior versions remain accessible.
15.Contact Us
If you have questions, concerns, or requests related to this Policy or your personal information, contact us at:
If you require a physical mailing address for a formal legal notice (for example, service of process), please contact us at the email above and we will provide an appropriate address.