Privacy Policy
Last updated: May 12, 2026
Overview
This Privacy Policy explains how AIM-UP, LLC (“AIM-UP”) collects, uses, shares, and protects personal information in connection with our websites, applications, and related services (collectively, the “Services”).
1. Scope and Roles
AIM-UP acts as: (i) Controller (or “business”) for personal information we collect directly from you, such as when you visit our website, submit a demo request, communicate with us, or otherwise interact with us directly, and (ii) Processor/service provider for personal information we process on behalf of an organization that provides you access to the Services (an “Organization”) under an Enterprise Agreement, such as when your employer or another organization provides you with access to the Services and directs how certain personal information is processed. If you access AIM-UP through an Organization, that Organization’s own privacy notices and policies may also apply. Where applicable, the Enterprise Agreement and the Organization’s instructions may govern the processing of certain data within the Services.
2. Information We Collect
We may collect the following categories of information. 2.1 Information You Provide. Contact and inquiry information (name, email, company, messages submitted via demo or support); account and profile information (name, email, password, organization, role/title); assessment and reflection data (responses to assessments and surveys, self-reflections, check-ins, goals, tags, written comments); uploaded or submitted content (notes, attachments, and other text, media, or documents you choose to provide); billing information (billing address and limited payment information; we do not store full payment card numbers). 2.2 Information from Organizations and Other Users. If you use the Services through an Organization, we may receive: your name, work email, role/title, manager, and team or department membership; information about your employment status (for example, active/inactive, start and end dates) that affects account provisioning; and observations or comments about you submitted by managers, mentors, coaches, or peers via the Services. 2.3 Information Collected Automatically. Usage data (pages or features accessed, date and time of activity, and related interaction information); device and log data (IP address, browser type and settings, operating system, device identifiers, and error logs); cookies and similar technologies. At launch, AIM-UP uses a strictly necessary first-party HTTP-only secure authentication cookie for session and refresh token functionality. We also use browser local storage for functional purposes (such as storing authentication state and user preferences — for example, language or theme settings) and a service worker for offline caching or related functionality. AIM-UP does not use third-party analytics, advertising, social media pixels, chat widgets, or other third-party tracking technologies on the public site at launch. You can control cookies through browser settings and other tools. However, disabling necessary cookies or functional storage may affect your ability to use parts of the Services. 2.4 Information from Third Parties. We may receive information about you from service providers (providers that help us operate the Services may provide limited operational information, such as hosting, authentication, email delivery, security, or payment status) and from organizational systems and integrations (if your Organization connects AIM-UP with other tools, for example HRIS, SSO, or calendar systems, we may receive limited information such as identity attributes, role information, and relevant scheduling context, as configured by the Organization).
3. How We Use Information
We use personal information to: (i) Provide and operate the Services — creating and managing accounts, processing assessments and submitted content, delivering reports, dashboards, and insights, and supporting customer-requested functionality. (ii) Power analytics and AI features — generating AI-assisted summaries, suggestions, and other outputs within the Services, where applicable. (iii) Communicate with you — sending service-related notifications, updates, and security alerts, responding to support requests and feedback, and responding to demo requests and other inquiries. (iv) Improve the Services — maintaining, securing, troubleshooting, and improving the Services, including diagnosing technical issues, preventing fraud or misuse, and developing or refining product features. During pre-launch and beta testing phases, we may also use assessment responses and related data submitted by pre-launch testers to build, validate, and calibrate our normalized dataset (the reference set of assessment responses used to establish scoring norms and validate AIM-UP’s behavioral instruments across diverse populations). (v) Protect AIM-UP, users, and third parties — preventing, detecting, and responding to fraud, abuse, security incidents, and other harmful activity, and enforcing our Terms and agreements. (vi) Comply with legal obligations — responding to valid legal requests and regulatory requirements and maintaining appropriate business, accounting, and tax records. We may also use aggregated or de-identified information for internal analytics, research, reporting, and product improvement, provided that such information does not reasonably identify you.
4. How We Use AI and Model Training
AIM-UP uses AI models (including third-party providers) to generate certain outputs. We use your assessment responses, reflections, and related data to generate AI-powered insights, summaries, and suggestions for you and, where applicable, your Organization. We may use your information, generally in aggregated or de-identified form, to improve AIM-UP’s own models and Services. During pre-launch and beta testing phases, identified assessment responses may also be used to calibrate the normalized dataset (defined in Section 3, “How We Use Information”). We do not permit third-party AI providers to use AIM-UP user data to train or improve their public models. If you have questions about AI-related processing or wish to submit a privacy request, contact info@myaimup.com.
5. How We Share Information
We do not sell or share personal information for cross-context behavioral advertising. We may share personal information with: (i) Service providers and vendors — companies that help us deliver the Services, such as hosting providers, payment processors, customer support platforms, authentication providers, and technical service providers. These providers may only process personal information on our behalf and under contractual restrictions. (ii) Organizations (B2B customers) — if you access the Services through an Organization, we may share information with that Organization, including your assessment participation and completion, relevant metrics and reporting, and administrative information needed to manage access and billing. By default, AIM-UP provides aggregate or de-identified reports to Organizations rather than individual journals or free-text reflections. If an Organization requests named individual reporting that includes more detailed personal data, that will be subject to the Enterprise Agreement and, where appropriate, additional user-level notice or consent. AIM-UP may also share reports, usage information, and administrative data with the applicable Organization as necessary to provide and manage the Services in accordance with the Enterprise Agreement and the Organization’s instructions. (iii) Professional advisors — lawyers, auditors, and other advisors, as necessary to protect our legal interests. (iv) Business transfers — in connection with a merger, acquisition, financing, or sale of all or part of our business, personal information may be transferred as part of that transaction, subject to continued protections consistent with this Policy. (v) Legal and safety reasons — we may disclose information if we believe in good faith that it is reasonably necessary to comply with law, regulation, or legal process; protect the rights, property, or safety of AIM-UP, our users, or the public; or detect, prevent, or address fraud, security, or technical issues.
6. Cookies and Tracking Technologies
AIM-UP uses limited cookies and similar technologies to operate the Services. At launch, AIM-UP uses a strictly necessary first-party authentication cookie to maintain secure sessions and support login-related functionality. AIM-UP also uses browser local storage for functional purposes, such as storing authentication state and user preferences, and a service worker for offline caching or related technical functionality. AIM-UP does not use third-party analytics, advertising, social media pixels, or other non-essential third-party tracking technologies on the public site at launch. You may be able to manage certain browser storage settings through your browser. However, disabling necessary cookies or functional storage may affect the availability or performance of the Services. If AIM-UP later introduces non-essential cookies or tracking technologies, we may update this Privacy Policy and implement additional notice or consent mechanisms as required by law.
7. Data Retention
We keep personal information for as long as reasonably necessary to: provide the Services; fulfill the purposes described in this Policy; and meet legal, accounting, and reporting obligations. In general: account and profile data may be retained for up to seven (7) years after an account is deactivated, unless a shorter or longer period is required by law or agreed with an Organization; assessment history and reflections may be retained while the account is active and for up to seven (7) years after deactivation, unless deleted sooner at your request or that of your Organization, subject to legal constraints; billing and transaction records are typically retained for at least seven (7) years to meet tax and financial record-keeping requirements; log data may be retained for a shorter period as needed for security and troubleshooting, service integrity, and related operational purposes before being deleted or de-identified. We maintain internal data retention and destruction practices that guide how long each category of information is kept, when it is archived, and how it is securely deleted or anonymized.
8. Your Choices and Rights
8.1 General choices. You can: update certain account details directly in your profile; control cookies and tracking through browser settings and available preference tools, recognizing that disabling necessary technologies may affect functionality. If you access AIM-UP through an Organization, some changes may need to be made by that Organization’s admin. 8.2 Rights for Certain US Residents. Depending on where you live, you may have rights under state privacy laws, which can include the right to: request access to the personal information we hold about you; request correction of inaccurate personal information; request deletion of certain personal information; request a copy of your personal information in a portable format; and opt out of certain types of processing, such as targeted advertising or sales (which we do not conduct). To exercise these rights, contact us at info@myaimup.com with “Privacy Request” in the subject line. We may take steps to verify your identity before responding. If we process your information on behalf of an Organization, we may refer your request to that Organization or handle it in coordination with them. You may also have the right to appeal our decision by contacting us again if you are not satisfied with our response.
9. International Users
AIM-UP is currently focused on U.S.-based pilot-stage operations. If you access the Services from outside the United States, you understand that your information may be transferred to, stored in, and processed in the United States and other jurisdictions where AIM-UP or its service providers operate. If AIM-UP later expands operations in a way that requires additional jurisdiction-specific privacy disclosures, we may update this Privacy Policy accordingly.
10. Security
We use technical and organizational measures designed to protect personal information, including: encryption in transit and, where appropriate, at rest; role-based access controls and least-privilege principles; monitoring and access logging where appropriate; and contracts and due diligence with service providers. However, no system can be guaranteed 100% secure. We cannot promise or guarantee absolute security of your information. If we learn of a security breach that affects your personal information, we will take appropriate steps to investigate and, where required by law, notify you and relevant authorities.
11. Children
The Services are not intended for individuals under 18, and we do not knowingly collect personal information directly from anyone under 18. If you believe we have collected personal information directly from a person under 18 in a manner not permitted by applicable law, contact info@myaimup.com, and we will take appropriate steps to review and address the issue.
12. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. When we do, we will change the “Last updated” date at the top. If changes are material, we will take reasonable steps to notify you (for example, by email or in-product notice). Your continued use of the Services after the revised Policy becomes effective indicates your acceptance of the changes.
13. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, contact us at: info@myaimup.com.