top of page

Privacy Policy

Last Updated: December 23, 2024

Our Commitment

At Anava, we believe privacy is fundamental. We process camera data only as you direct, store only what's necessary, and never use your data for AI training without explicit consent.

1. Introduction

Anava, Inc. ("Anava," "we," "us," or "our") provides AI-powered analytics for security cameras. This Privacy Policy explains how we handle information when you use our services, including our web platform, ACAP applications, and API services (collectively, the "Services").

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, phone number, company name, billing information

  • Business Information: Configuration data, security profiles, API keys, integration settings

  • Camera Configuration: Camera locations, detection zones, alert preferences, authorized users

2.2 Information from Camera Operations

  • Temporary Processing Data: Images and video streams processed for analysis (automatically deleted within 24 hours unless you save them)

  • Analysis Results: AI-generated descriptions, detected objects, alerts, event logs

  • Metadata: Timestamps, camera IDs, location data (if enabled), event types

2.3 Automatically Collected Information

  • Technical Information: IP addresses, browser type, device information, API usage

  • Usage Data: Feature usage, performance metrics, error logs

  • Cookies: Session cookies for authentication, preference cookies for settings

3. How We Use Your Information

We use collected information to:

  • Provide AI analysis services

  • Send alerts and notifications based on your rules

  • Improve our AI models (only with your consent)

  • Ensure security and prevent fraud

  • Comply with legal obligations

4. Data Storage and Security

4.1 Security Measures

  • Encryption: AES-256 encryption at rest, TLS 1.3 in transit

  • Access Control: Multi-factor authentication, role-based permissions

  • Infrastructure: SOC 2 Type 2 compliant data centers

  • Monitoring: 24/7 security monitoring, intrusion detection

  • Employee Access: Background checks, security training, minimal access principles

4.2 Data Location

Primary data storage: United States (Google Cloud Platform)
Backup locations: Multiple US regions for redundancy

5. Data Retention

  • Raw camera footage: 24 hours (unless saved)

  • Saved clips/images: 90 days (configurable)

  • Analysis results: 1 year

  • Account data: Duration of account + 30 days

6. Data Sharing

We NEVER sell your data. We share data only with:

6.1 Service Providers

  • Google Cloud Platform: Infrastructure and AI services (Gemini API)

  • Stripe: Payment processing (PCI compliant)

  • SendGrid: Transactional emails

  • Sentry: Error monitoring (anonymized)

6.2 Legal Requirements

We may disclose data when required by law, court order, or to protect rights and safety. We'll notify you unless legally prohibited.

7. Your Privacy Rights

7.1 Rights for All Users

  • Access: Request a copy of your data

  • Correction: Update inaccurate information

  • Deletion: Request account and data deletion

  • Portability: Export your data in standard formats

  • Opt-out: Unsubscribe from marketing communications

7.2 CCPA Rights (California Residents)

  • Know what personal information we collect and how it's used

  • Request deletion of personal information

  • Opt-out of any "sale" of data (we don't sell data)

  • Non-discrimination for exercising privacy rights

8. AI and Camera Data Processing

8.1 Our AI Principles

  • No Facial Recognition: We don't identify individuals or store biometric data

  • Transparent Processing: You control what AI analyzes and how

  • No Training Without Consent: Your data isn't used for AI training unless you explicitly opt-in

  • Human Review: Support staff may view data only with your permission for troubleshooting

8.2 Third-Party AI Processing

We use Google's Gemini API for image analysis. When enabled:

  • Images are sent securely to Google for processing

  • Google processes under their privacy policy and our data processing agreement

  • Results return to our system; Google doesn't retain your images

  • You can disable AI features at any time

9. Children's Privacy

Our Services are not intended for anyone under 16. We don't knowingly collect children's data. If we discover we have, we'll delete it immediately.

10. Cookie Policy

We use cookies for:

  • Essential cookies: Authentication, security, load balancing

  • Functional cookies: Remember your preferences

  • Analytics cookies: Understand usage patterns (anonymized)

You can control cookies through your browser settings.

11. Data Breach Notification

If a breach occurs that may impact your data:

  • We'll notify you within 72 hours of discovery

  • Provide details about what happened and data affected

  • Explain steps we're taking and recommend protective actions

12. Changes to This Policy

We'll notify you of material changes via email at least 30 days before they take effect.

13. Contact Us

Privacy Questions:
Email: privacy@anava.ai
Data Protection Officer: dpo@anava.ai
Mailing Address: Please contact legal@anava.ai for our mailing address

14. State-Specific Rights

14.1 Nevada Residents

Nevada residents may opt-out of the sale of covered information. We don't sell data, but you can email us to confirm.

14.2 Other States

We respect privacy rights in all jurisdictions where we operate. Contact us about your local privacy rights.

bottom of page