Kanorio

Privacy Policy

This Privacy Policy explains how Kanorio, Inc. collects, uses, discloses, and protects your personal information, and the choices and rights you have.

Last updated: July 3, 2026

1. Introduction

Kanorio, Inc. ("Kanorio," "we," "us," or "our"), a Delaware corporation, provides an AI-assisted website building platform and related services (the "Services"). We respect your privacy and are committed to protecting your personal information.

This Privacy Policy describes how we collect, use, disclose, store, and protect personal information when you visit our website, create an account, or otherwise use the Services. It also describes your privacy rights and how to exercise them. By using the Services, you acknowledge that you have read and understood this Privacy Policy.

2. Information We Collect

Information You Provide

When you use the Services, we may collect the following information that you provide directly:

  • Contact information: name, email address, and, where applicable, phone number.
  • Account information: login credentials and profile details you create or upload.
  • Content: text, images, files, and other materials you submit, upload, or publish through the Services.
  • Communications: the content of messages when you contact us via forms, email, or other channels.
  • Payment information: billing details required to process a purchase. Card payments are processed by our third-party payment processor (Stripe); we do not store full card numbers.

Information Collected Automatically

When you access the Services, we and our service providers automatically collect certain information:

  • Device information: IP address, browser type, operating system, and device identifiers.
  • Usage data: pages visited, features used, time spent, click behavior, and referring URLs.
  • Approximate location: general location inferred from your IP address.
  • Cookies and similar technologies: for details, please see our Cookie Policy.

3. How We Use Your Information

We use the information we collect for the following purposes:

Providing and Improving the Services

  • Operate, maintain, and provide the features and functionality of the Services.
  • Process your requests, orders, and transactions.
  • Provide customer support and technical assistance.
  • Develop new features and improve the Services.

Communications

  • Respond to your inquiries and requests.
  • Send service-related notices (for example, order confirmations, security alerts, and account updates).
  • Send marketing communications where permitted, which you may opt out of at any time.

Security, Safety, and Compliance

  • Protect our users, the public, and the Services from fraud, abuse, and security threats.
  • Enforce our Terms of Service and other policies.
  • Comply with applicable laws, regulations, and lawful requests.

Analytics and Research

  • Analyze usage trends to understand and improve the Services.
  • Generate aggregated or de-identified statistics that do not identify you.

4. How We Share Information

We do not sell your personal information for money. We do not share your personal information for cross-context behavioral advertising. We may disclose personal information in the following circumstances:

Service Providers

We share information with third-party vendors who process it on our behalf and under contract, including:

  • Cloud hosting, storage, and infrastructure providers.
  • Payment processing (Stripe).
  • Email delivery and communications tools.
  • Analytics and security providers (for example, Google Analytics and Cloudflare).

These providers are permitted to use the information only to provide services to us and are contractually required to protect it.

Legal and Safety Reasons

  • To comply with applicable law, regulation, legal process, or governmental request.
  • To respond to subpoenas, court orders, or law enforcement requests.
  • To protect the rights, property, or safety of Kanorio, our users, or others, and to enforce our agreements.

Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, or sale of assets, your information may be transferred as part of that transaction, subject to this Privacy Policy.

5. Data Storage, Security, and Retention

Where Your Information Is Stored

We are based in the United States, and your information is primarily stored and processed on servers located in the United States. Some information may be processed in other countries where our service providers operate. Regardless of where information is processed, we apply the protections described in this Privacy Policy.

Security Measures

We implement reasonable administrative, technical, and organizational measures designed to protect your information, including:

  • Encryption of data in transit.
  • Access controls limiting access to authorized personnel.
  • Regular security reviews and monitoring.
  • Backups intended to prevent accidental loss.

No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Bot Protection (Cloudflare Turnstile)

To protect our sign-in, domain search, and other public forms from bots and abuse, we use Cloudflare Turnstile, which may run invisibly in the background and process signals such as your IP address, browser characteristics, and interaction data to distinguish human users from automated traffic. For details on how Cloudflare processes this data, see the Cloudflare Turnstile Privacy Addendum.

Data Retention

We retain personal information only for as long as necessary for the purposes described in this Policy, unless a longer retention period is required or permitted by law:

  • Account data: for the duration of your account and for a reasonable period afterward.
  • Transaction records: as required by applicable tax, accounting, and legal obligations.
  • Marketing data: until you opt out or withdraw consent.
  • Other data: as determined by the purpose of collection and applicable legal requirements.

6. Your Privacy Choices

You have choices regarding your personal information:

  • Access and update: you can review and update your account information at any time.
  • Marketing opt-out: you can unsubscribe from marketing emails using the link in those messages.
  • Cookies: you can manage cookies as described in our Cookie Policy.
  • Deletion: you may request that we delete your account and associated personal information, subject to legal exceptions.

To exercise any of these choices, contact us at support@kanorio.com. We may need to verify your identity before acting on a request. We will not discriminate against you for exercising your privacy rights.

7. Your California Privacy Rights (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (the "CCPA"), provides you with the following rights, subject to certain exceptions:

  • Right to know: request the categories and specific pieces of personal information we have collected, the sources, the purposes, and the categories of third parties with whom we share it.
  • Right to delete: request deletion of personal information we have collected, subject to exceptions.
  • Right to correct: request correction of inaccurate personal information.
  • Right to opt out: opt out of the "sale" or "sharing" of personal information. We do not sell or share personal information as those terms are defined under the CCPA.
  • Right to limit: limit the use of sensitive personal information. We do not use sensitive personal information for purposes that require an opt-out.
  • Right to non-discrimination: we will not discriminate against you for exercising your rights.

To exercise these rights, submit a request to support@kanorio.com. You may use an authorized agent to submit a request on your behalf. We will verify your request before responding.

California's "Shine the Light" law permits California residents to request information about our disclosure of personal information to third parties for their direct marketing purposes. We do not disclose personal information to third parties for their own direct marketing.

8. Your Rights in the EEA and UK (GDPR)

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, you have the following rights under the General Data Protection Regulation (GDPR) and equivalent laws:

  • Access: obtain confirmation of whether we process your data and a copy of it.
  • Rectification: request correction of inaccurate or incomplete data.
  • Erasure: request deletion of your data in certain circumstances.
  • Restriction: request that we restrict processing in certain circumstances.
  • Portability: receive your data in a structured, commonly used, machine-readable format.
  • Objection: object to processing based on our legitimate interests, including direct marketing.
  • Withdraw consent: where we rely on consent, withdraw it at any time without affecting prior processing.

We process personal data on the following legal bases: performance of a contract, our legitimate interests, compliance with legal obligations, and your consent where required. You also have the right to lodge a complaint with your local data protection supervisory authority.

9. Do Not Track and Global Privacy Control

Some browsers offer a "Do Not Track" (DNT) signal. Because there is no common industry standard for DNT, we do not currently respond to DNT signals. Where required by law, we treat recognized Global Privacy Control (GPC) signals as a valid request to opt out of the sale or sharing of personal information for the applicable browser or device.

10. Children's Privacy

The Services are intended for use by businesses and individuals who are at least 18 years old. The Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13, consistent with the Children's Online Privacy Protection Act (COPPA). If we learn that we have collected personal information from a child under 13, we will delete it promptly. If you believe a child has provided us personal information, please contact us.

11. Third-Party Links and Services

The Services may contain links to third-party websites or integrate third-party services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before providing them with any information.

12. International Data Transfers

We are based in the United States, and using the Services may involve transferring your information to the United States and other countries that may have data protection laws different from those in your jurisdiction. Where we transfer personal data from the EEA, the UK, or Switzerland, we rely on appropriate safeguards, such as the European Commission's Standard Contractual Clauses, to protect that data.

13. Changes to This Policy

We may update this Privacy Policy from time to time. For material changes, we will:

  • Post the updated policy on this page.
  • Update the "Last updated" date above.
  • Provide additional notice where required by law (for example, by email).

We encourage you to review this Policy periodically for the latest information.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us:

We will respond to your request within a reasonable timeframe and as required by applicable law.