CORAS PRIVACY POLICY
Last Updated: February 13,2026
This PRIVACY POLICY (this “Policy”) describes how CorasCloud, Inc. (“CORAS,” “we,” “us,” or “our”) collects, uses, discloses, and protects personal data in connection with our websites, products, and services (collectively, the “Services”).
This Policy applies to personal data collected through our websites that link to this Policy and through our Products and services. It does not apply to third-party websites or services that may be linked from our Services.
1. SCOPE AND ROLES
CORAS may act as:
- a data controller when we process personal data for our own purposes (for example, website operation, marketing, account administration); and
- a data processor when we process personal data on behalf of our customers in accordance with their instructions.
Where CORAS acts as a processor, the applicable customer agreement governs our processing activities.
2. PERSONAL DATA WE COLLECT
We collect personal data directly from you and automatically through your use of the Services.
- Information You Provide:
This may include:
- Name, email address, phone number
- Account credentials
- Business and billing information
- Communications with us
- Content you submit through the Services
- Information Collected Automatically
This may include:
- IP address
- Device and browser information
- Usage and log data
- Cookies and similar technologies
3. HOW WE USE PERSONAL DATA
We use personal data for the following purposes:
- To provide, operate, and maintain our Services
- To create and manage user accounts
- To process transactions and payments
- To communicate with you about the Services
- To improve and secure our Services
- To conduct analytics and business operations
- To comply with legal obligations
4. LEGAL BASES FOR PROCESSING
Where required by applicable law, including the GDPR, CORAS processes personal data only where a lawful basis applies, including:
- Performance of a contract
- Legitimate interests, such as operating and improving our Services
- Consent, where required (for example, marketing communications or non-essential cookies)
- Compliance with legal obligations
5. COOKIES AND SIMILAR TECHNOLOGIES
We use cookies and similar technologies to operate and improve our websites and Services.
Cookies may include:
- Strictly necessary cookies
- Functional cookies
- Analytics cookies
- Advertising cookies
Where required by law, non-essential cookies are used only with your consent. You may manage cookies through your browser settings or any cookie management tools made available on our websites. Disabling cookies may affect functionality.
6. SHARING OF PERSONAL DATA
We may share personal data with:
- Service providers who perform services on our behalf (e.g., hosting, payment processing, analytics)
- Customers or account administrators, where applicable
- Legal or regulatory authorities, where required by law
- Successors or acquirers in connection with a merger, acquisition, or sale of assets
We do not sell personal data.
7. INTERNATIONAL DATA TRANSFERS
Personal data may be transferred to and processed in countries other than where you reside. Where required by law, we implement appropriate safeguards to protect personal data, such as contractual protections and other legally recognized transfer mechanisms.
8. DATA RETENTION
We retain personal data for as long as reasonably necessary to fulfill the purposes for which it was collected, including to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. When personal data is no longer required, we securely delete or anonymize it.
9. SECURITY
We implement reasonable administrative, technical, and organizational measures designed to protect personal data. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.
10. YOUR RIGHTS AND CHOICES
Depending on your location and applicable law, you may have the right to:
- Access your personal data
- Correct inaccurate personal data
- Request deletion of personal data
- Object to or restrict certain processing
- Receive a copy of personal data in a portable format
- Withdraw consent where processing is based on consent
Requests may be submitted to support@coras.ai. We respond within the timeframes required by applicable law.
11. MARKETING COMMUNICATIONS
You may opt out of marketing communications at any time by using the unsubscribe link in our emails or contacting us directly. Transactional and service-related communications are necessary to provide the Services and cannot be opted out of.
12. CHILDREN’S PRIVACY
Our Services are not directed to children under the age of 13, and we do not knowingly collect personal data from children under 13. If we become aware that we have collected such data, we will delete it in accordance with applicable law.
13. U.S. STATE PRIVACY RIGHTS
Residents of certain U.S. states may have additional rights regarding their personal data, including the right to access, delete, correct, or opt out of certain processing activities such as targeted advertising. To exercise these rights, please contact us using the information below. We do not sell personal data as defined under applicable U.S. state privacy laws.
14. EUROPEAN ECONOMIC AREA AND UNITED KINGDOM
If you are located in the European Economic Area or the United Kingdom, you have the right to lodge a complaint with your local data protection authority if you believe your personal data has been processed unlawfully.
15. CHANGES TO THIS POLICY
We may update this Policy from time to time. When we do, we will update the “Last Updated” date above. Your continued use of the Services after an update constitutes acceptance of the revised Policy.
16. CONTACT INFORMATION
If you have questions about this Policy or our data practices, or wish to exercise your rights, please contact us at:
Legal Department
CorasCloud, Inc.
7918 Jones Branch Drive, Suite 800
McLean, VA 22102
Email: support@coras.com
