Privacy Policy

Last updated: March 20, 2026

GenauTech Solutions ("GenauTech," "we," "us," or "our") operates the websites genautech.com and betterdojo.app, as well as the BetterDojo mobile application. This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you use our websites and services.

1. Information We Collect

Information You Provide

• Email address — when you join the BetterDojo beta waitlist or subscribe to our newsletter
• Name — optionally provided during waitlist signup
• Verification codes — temporary 6-digit codes generated for email verification (automatically deleted after use or expiration)

Information Collected Automatically

• Analytics data — via Google Analytics 4 and Amplitude, including pages visited, time on page, browser type, device type, operating system, screen resolution, referral source, and user interactions (button clicks, form submissions, scroll depth). Analytics tracking is only active after you provide consent.
• Server logs — standard web server logs including IP address, request timestamps, and user agent string, collected by our hosting provider (Google Firebase)

2. How We Use Your Information

• Beta program management — to manage your waitlist position and notify you when BetterDojo beta access is available
• Email verification — to verify your email address through our verification code system
• Newsletter delivery — to send you product updates and news (only if you subscribe)
• Service improvement — to understand how visitors use our websites and improve the user experience
• Security — to prevent abuse through rate limiting and fraud detection

3. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), we process your personal data based on:

• Consent — for analytics cookies, marketing emails, and newsletter subscriptions. You may withdraw consent at any time.
• Legitimate interest — for security measures such as rate limiting and fraud prevention
• Contract performance — for providing beta program access to waitlist subscribers

4. Cookies and Tracking

We use the following analytics services to understand website usage:

Google Analytics 4 (GA4)

GA4 may set the following cookies:

• _ga — distinguishes unique users (expires: 2 years)
• _gid — distinguishes unique users (expires: 24 hours)

Amplitude

Amplitude is a product analytics platform that helps us understand how users interact with our websites. Amplitude may store data in cookies or local storage to identify returning visitors and track user sessions. Amplitude collects interaction data such as page views, button clicks, form submissions, and session duration.

Both analytics services are only active after you provide consent through our cookie consent banner. You can manage your preferences at any time by clearing your browser's local storage and cookies, which will prompt the consent banner to reappear. Our websites function fully without analytics tracking.

Local Storage

We use browser local storage for the following purposes:

• cookie_consent — stores your analytics consent preference ("accepted" or "declined")
• newsletter_subscribed — remembers if you have already subscribed to avoid showing the form again
• AMP_* — Amplitude analytics identifiers (device ID, session ID) used to maintain session continuity. Only set after you provide consent.

5. Third-Party Services

We share data with the following service providers, who act as data processors on our behalf:

• Google Firebase / Google Cloud (United States) — hosting, database (Firestore), and cloud functions
• Google Analytics (United States) — website analytics (only with your consent)
• Amplitude (United States) — product analytics and user behavior insights (only with your consent)
• SendGrid / Twilio (United States) — email delivery for verification codes and newsletters

These providers process data in the United States. For transfers from the EEA, we rely on Standard Contractual Clauses (SCCs) as the legal transfer mechanism.

We do not sell your personal information to any third party.

6. Data Retention

• Verification codes — expire after 15 minutes and are automatically deleted hourly
• Waitlist data — retained until you request deletion or the beta program concludes
• Newsletter subscriptions — retained until you unsubscribe or request deletion
• Google Analytics data — retained according to Google Analytics default retention settings (14 months)
• Amplitude data — retained according to Amplitude's default retention settings

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access — request a copy of the personal data we hold about you
• Correction — request correction of inaccurate data
• Deletion — request deletion of your personal data
• Portability — request your data in a machine-readable format
• Objection — object to processing based on legitimate interest
• Withdraw consent — withdraw consent for analytics or marketing at any time

California residents (CCPA/CPRA): You have the right to know what personal information we collect, request deletion, and opt out of the sale or sharing of personal information. We do not sell personal information.

To exercise any of these rights, contact us at privacy@genautech.com.

8. Children's Privacy (COPPA)

Our websites (genautech.com and betterdojo.app) are directed at parents, guardians, and adults aged 18 and older. We do not knowingly collect personal information from children under 13 through our websites.

BetterDojo is a family-oriented application designed to be set up and managed by parents or guardians. When the BetterDojo app launches:

• Parent or guardian accounts are required to set up and manage the family experience
• Any data related to children will be collected and controlled by the parent or guardian
• We will obtain verifiable parental consent before collecting any personal information directly from children under 13
• Parents will have the ability to review, modify, and delete their children's information at any time
• We will not use children's data for behavioral advertising

If you believe we have inadvertently collected information from a child under 13, please contact us immediately at privacy@genautech.com and we will promptly delete it.

9. Security

We implement appropriate technical and organizational measures to protect your personal data, including:

• HTTPS encryption for all data in transit
• Firebase Security Rules restricting database access
• Rate limiting on API endpoints (maximum 3 verification codes per hour per email)
• Automatic expiration and deletion of verification codes
• Maximum verification attempt limits to prevent brute-force attacks

No method of transmission or storage is 100% secure. If you become aware of a security vulnerability, please contact us at security@genautech.com.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy on our websites with a revised "Last updated" date. Your continued use of our services after changes are posted constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

GenauTech Solutions
99 South Almaden Blvd., Suite 600, San Jose, California, 95113, United States of America
Email: privacy@genautech.com
General inquiries: hello@genautech.com

If you are in the EEA and believe your data protection rights have been violated, you have the right to lodge a complaint with your local supervisory authority.