---

Last updated: July 16, 2025

1. Introduction

This Privacy Policy explains how Bloo, Inc. ("Blue", "we", "us", or "our") collects, uses, discloses, and protects information about you when you use our project management platform and related services (collectively, the "Service").

This Privacy Policy applies to information we collect when you use our Service, visit our websites, or otherwise interact with us. By using our Service, you agree to the collection and use of information in accordance with this policy.

2. Definitions

• "Personal Data" means any information relating to an identified or identifiable natural person
• "Processing" means any operation performed on Personal Data
• "Data Controller" means the entity that determines the purposes and means of Processing
• "Data Processor" means an entity that Processes Personal Data on behalf of the Data Controller
• "User" means an individual who uses our Service
• "Customer" means the entity that has entered into an agreement with us

3. Information We Collect

3.1 Information You Provide

Account Information:

• Name and email address (required)
• Job title and phone number (optional)
• Company or organization name
• Profile picture (optional)

Payment Information:

• Billing name and address
• Payment method details (processed by Stripe - we only store last 4 digits)
• Tax identification numbers where required

Content and Files:

• Any content you create, upload, or share within the Service
• Files and attachments you add to projects
• Comments and communications within the platform

Support and Communications:

• Information you provide when contacting support
• Feedback and suggestions about our Service
• Testimonials and case studies (with your consent)

3.2 Information We Collect Automatically

Usage Data:

• Features you use and actions you take
• Time spent on different parts of the Service
• Search queries within the platform
• Performance metrics and error reports

Device Information:

• IP address and approximate location
• Browser type and version
• Operating system
• Device type and unique identifiers
• Language preferences

Log Data:

• Access times and dates
• Pages viewed and features accessed
• System activity and error logs
• Referral URLs

3.3 Information from Third Parties

• Information from integration partners (with your authorization)
• Publicly available information for verification purposes

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

• Keep you logged in
• Remember your preferences
• Understand how you use our Service
• Improve performance and functionality

Types of Cookies We Use:

• Essential Cookies: Required for the Service to function
• Analytics Cookies: Help us understand usage patterns
• Preference Cookies: Remember your settings and choices

You can control cookies through your browser settings. Disabling certain cookies may limit functionality of the Service.

5. How We Use Your Information

We use the information we collect to:

5.1 Provide and Maintain the Service

• Create and manage your account
• Provide customer support
• Process transactions and billing
• Send service-related communications

5.2 Improve and Develop the Service

• Analyze usage patterns and trends
• Test new features and improvements
• Fix bugs and technical issues
• Conduct research and analysis

5.3 Legal and Security Purposes

• Comply with legal obligations
• Protect against fraud and abuse
• Enforce our Terms of Service
• Protect our rights and property

5.4 Communications

• Send product updates and announcements
• Provide tips and best practices
• Respond to your inquiries
• Send marketing communications (with consent)

6. Legal Basis for Processing

We process Personal Data based on applicable law. For users in the European Economic Area, please see our GDPR Policy for details on our legal basis for processing.

7. How We Share Information

We do not sell your Personal Data. We share information only in these circumstances:

7.1 With Your Consent

• When you explicitly authorize sharing
• For testimonials or case studies
• When you use third-party integrations

7.2 Service Providers

We share data with vendors who help us provide the Service:

• Infrastructure: Amazon Web Services, Render, Backblaze, Cloudflare
• Payments: Stripe, Paddle
• Analytics: Google Analytics
• Communications: Emailit
• AI Services: OpenAI (for AI features)
• Monitoring: AppSignal
• Integrations: Make.com, Zapier, Boost.space, Albato, Pabbly Connect

All service providers are contractually required to protect your data and use it only for specified purposes.

7.3 Legal Requirements

We may disclose information if required by law:

• In response to valid legal process (warrant, subpoena, court order)
• To protect our rights, privacy, safety, or property
• To prevent fraud or illegal activity
• In connection with a merger or acquisition

8. Data Retention

We retain your information for as long as necessary to provide the Service and fulfill the purposes outlined in this policy:

• Account Data: Retained while your account is active
• Usage Data: Retained for up to 2 years for analytics
• Support Tickets: Retained for 3 years for quality assurance
• Billing Records: Retained for 7 years for tax compliance
• Deleted Content: Removed within 30 days from active systems
• Backups: May persist for up to 90 days after deletion

9. Your Privacy Rights

9.1 Access and Portability

You have the right to:

• Access your Personal Data
• Receive a copy in a portable format
• Know what data we hold about you

9.2 Correction and Deletion

You have the right to:

• Correct inaccurate data
• Update incomplete information
• Request deletion of your data ("right to be forgotten")

9.3 Restriction and Objection

You have the right to:

• Restrict Processing of your data
• Object to certain types of Processing
• Opt out of marketing communications

9.4 How to Exercise Your Rights

To exercise any of these rights:

• Email us at support@blue.cc
• Use in-app privacy controls where available
• We will respond within 30 days

10. California Privacy Rights

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to Know: What Personal Data we collect, use, and share
• Right to Delete: Request deletion of your Personal Data
• Right to Opt-Out: We do not sell Personal Data
• Right to Non-Discrimination: Equal service regardless of privacy choices

To exercise CCPA rights, contact support@blue.cc.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your own, including the United States and Singapore. We ensure appropriate safeguards are in place for all international transfers.

For EU residents, please see our GDPR Policy for specific information about transfers outside the EEA.

12. Data Security

We implement appropriate technical and organizational measures to protect your information:

• Encryption at rest and in transit (TLS/SSL)
• Access controls and authentication
• Regular security audits and testing
• Incident response procedures
• Employee training on data protection

While we strive to protect your information, no system is 100% secure. We encourage you to use strong passwords and protect your account credentials.

13. Children's Privacy

Our Service is not directed to children under 13. We do not knowingly collect Personal Data from children under 13. If you believe we have collected data from a child under 13, please contact us immediately.

14. Marketing Communications

We may send you marketing communications if you have:

• Opted in to receive them
• Not opted out after receiving them
• An existing business relationship with us

You can opt out anytime by:

• Clicking "unsubscribe" in any marketing email
• Updating your communication preferences in account settings
• Contacting support@blue.cc

15. Third-Party Links

Our Service may contain links to third-party websites. We are not responsible for their privacy practices. We encourage you to read their privacy policies.

16. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the new policy on our website
• Updating the "Last Updated" date
• Sending notice to your registered email

Your continued use after changes constitutes acceptance of the updated policy.

17. Data Protection Officer

While not formally required to have a Data Protection Officer, privacy inquiries can be directed to:

Emanuele Faja, CEO
Email: support@blue.cc

For privacy-related questions or to exercise your rights:

Email: support@blue.cc
Subject Line: Privacy Request

We aim to respond to all privacy requests within 30 days.