Skip to main content
← Back to Home

Privacy Policy

Effective Date: November 5, 2024 | Last Updated: November 5, 2024

1. Introduction

At Xheight ("we," "our," or "us"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website aion.xheight.com or use our Aion assistive technology products and services.

This policy applies to all users of all ages, including children under 13, and complies with the Children's Online Privacy Protection Act (COPPA), General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable privacy laws.

2. Information We Collect

2.1 Information You Provide Directly

  • Contact Information: Name, email address, phone number, mailing address
  • Account Information: Username, password, profile preferences
  • Communication Data: Messages, feedback, support requests, newsletter subscriptions
  • Accessibility Information: Voluntary disclosure of accessibility needs and preferences
  • Purchase Information: Billing details, shipping information, payment data (processed securely by third-party processors)

2.2 Information Collected Automatically

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages visited, time spent, clicks, navigation patterns
  • Location Data: General geographic location (city/region level only)
  • Cookies and Tracking: Essential cookies for functionality, analytics cookies with consent

2.3 Aion Device Data

  • Device Performance: Battery levels, connectivity status, system diagnostics
  • Usage Patterns: Feature utilization, settings preferences, accessibility configurations
  • Voice Data: Processed locally on device for Aion Speak functionality (not transmitted or stored)
  • Visual Data: Processed locally on device for Aion Sight functionality (not transmitted or stored)
  • Audio Data: Processed locally on device for Aion Listen functionality (not transmitted or stored)

3. How We Use Your Information

  • Product Development: Improving Aion devices and developing new accessibility features
  • Customer Support: Responding to inquiries, providing technical assistance, troubleshooting
  • Service Delivery: Processing orders, managing accounts, delivering updates
  • Communication: Sending important updates, newsletters (with consent), support communications
  • Legal Compliance: Meeting regulatory requirements, protecting rights, preventing fraud
  • Research: Conducting accessibility research to improve assistive technology (anonymized data only)

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • Service Providers: Trusted partners who help us operate our business (hosting, payment processing, analytics)
  • Legal Requirements: When required by law, court order, or government regulation
  • Safety and Protection: To protect rights, property, or safety of Xheight, users, or others
  • Business Transfers: In connection with mergers, acquisitions, or asset sales (with notice)
  • Consent: When you explicitly consent to sharing with specific third parties

5. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: All data transmitted and stored is encrypted using AES-256 standards
  • Access Controls: Strict employee access controls with multi-factor authentication
  • Regular Audits: Security assessments and vulnerability testing
  • Data Minimization: We collect only necessary information and delete when no longer needed
  • Local Processing: Sensitive data (voice, visual, audio) processed locally on Aion devices

6. Children's Privacy (COPPA Compliance)

We take special care to protect children's privacy and comply with COPPA requirements:

  • Parental Consent: We obtain verifiable parental consent before collecting information from children under 13
  • Limited Collection: We collect only information necessary for the functionality of our accessibility services
  • No Behavioral Advertising: We do not use children's information for targeted advertising
  • Parental Rights: Parents can review, delete, or refuse further collection of their child's information
  • Safe Communication: All communications with children are supervised and educational

For questions about children's privacy or to exercise parental rights, contact us at privacy@xheight.com.

7. Your Privacy Rights

You have the following rights regarding your personal information:

  • Access: Request copies of your personal information
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information
  • Portability: Request transfer of your data in a machine-readable format
  • Restriction: Request limitation of processing in certain circumstances
  • Objection: Object to processing based on legitimate interests
  • Opt-out: Unsubscribe from marketing communications at any time

To exercise these rights, contact us at privacy@xheight.com or use our privacy portal.

8. International Data Transfers

We primarily store and process data within the United States. When we transfer data internationally, we ensure adequate protection through:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions by relevant data protection authorities
  • Certification under approved transfer mechanisms
  • Your explicit consent for specific transfers

9. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

  • Essential Cookies: Required for website functionality and security
  • Analytics Cookies: Help us understand how you use our website (with consent)
  • Preference Cookies: Remember your accessibility settings and preferences
  • No Tracking: We respect "Do Not Track" browser settings

You can manage cookie preferences through your browser settings or our cookie consent banner.

10. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will:

  • Post the updated policy on our website with a new effective date
  • Notify you via email for material changes (if you've subscribed to notifications)
  • Provide prominent notice on our website for significant updates
  • Obtain additional consent when required by law

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: privacy@xheight.com

Mail: Xheight Privacy Office
[Company Address]
[City, State, ZIP Code]

Phone: [Phone Number]

Response Time: We will respond to privacy inquiries within 30 days

12. Accessibility of This Policy

This Privacy Policy is designed to be accessible to all users. If you need this information in an alternative format, please contact us at accessibility@xheight.com. We can provide:

  • Large print versions
  • Audio recordings
  • Plain language summaries
  • Braille versions (upon request)
  • Sign language interpretation for video calls

13. Regulatory Compliance

This Privacy Policy complies with:

  • General Data Protection Regulation (GDPR) - EU
  • California Consumer Privacy Act (CCPA) - California, USA
  • Children's Online Privacy Protection Act (COPPA) - USA
  • Personal Information Protection and Electronic Documents Act (PIPEDA) - Canada
  • Australian Privacy Principles (APP) - Australia
  • Section 508 of the Rehabilitation Act - USA
  • Americans with Disabilities Act (ADA) - USA