Privacy policy

December 26, 2025

Welcome to Amadora AI, a service provided by Ordemio Inc. ("we," "us," or "our").

We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains what information we collect, how we use it, and your rights in relation to that information when you use our website, web application, and AI search visibility tools (collectively, the "Services").

1. Data Controller

The entity responsible for the processing of your data (Data Controller) is:

Ordemio Inc. 228 Park Ave S, PMB 85451 New York, NY 10003 United States Email: support@amadora.ai

2. Information We Collect

We collect information that you provide to us voluntarily, as well as data collected automatically when you use our Services.

2.1. Information You Provide to Us

  • Account Registration: When you register for Amadora.ai, join our waitlist, or subscribe to our newsletter, we collect your email address (for authentication and communication) and organization name.

  • Authentication Data: We utilize Firebase Auth (by Google) for secure authentication. We do not store passwords; authentication is handled via magic links or Single Sign-On (SSO).

  • Customer Support: Data you provide when contacting us for support or demos.

2.2. Information Collected Automatically

  • Log and Usage Data: When you access our Services, our servers automatically collect connection data, including your IP address, browser type, device information (e.g., device type, OS), referring URLs, and timestamps.

  • Cookies and Tracking: We use cookies and similar technologies to maintain your session, analyze usage, and improve performance. (See Section 6).

2.3. Data from Integrated APIs (Google Workspace)

If you grant us access to your Google Workspace account (e.g., via OAuth), we may access specific data required to provide our AI search visibility features.

  • Google Limited Use Disclosure: Our use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. We do not use this data for advertising purposes.

3. How We Use Your Information

We process your data for the following purposes:

  1. To Provide the Service: To create your account, authenticate your identity, and deliver the Amadora.ai functionality (Legal Basis: Performance of Contract).

  2. To Improve Our AI Models & Services: To analyze usage patterns and optimize our algorithms. Note: We do not train our public AI models on your proprietary Google Workspace data without your explicit consent. (Legal Basis: Legitimate Interest).

  3. Marketing & Communication: To send you newsletters, product updates, and waitlist status, provided you have opted in (Legal Basis: Consent).

  4. Security & Compliance: To prevent fraud, ensure the security of our IT systems, and comply with legal obligations (Legal Basis: Legitimate Interest / Legal Obligation).

4. How We Share Your Information

We do not sell your personal data. We may share your data with the following categories of third parties strictly for the provision of our Services:

  • Cloud Infrastructure & Hosting:

    • Firebase (Google Ireland Ltd/Google LLC): For hosting, database management, and authentication.

  • Analytics & Performance:

    • Google Analytics: To analyze website traffic.

    • Product Analytics Tools: We may use tools such as Vector, Default.com, and Cometly to understand user behavior within the app.

  • Marketing & Attribution:

    • HubSpot: For CRM and email marketing.

    • Dub: For link management and attribution.

    • Rewardful: For affiliate and referral program tracking.

  • Legal Requirements: If required by law, court order, or government regulation.

5. International Data Transfers

Ordemio Inc. is located in the United States. If you are accessing our Services from the European Economic Area (EEA), United Kingdom (UK), or Switzerland, please note that your personal data will be transferred to and processed in the United States.

To ensure your data is protected, we rely on:

  • Standard Contractual Clauses (SCCs): We implement the European Commission’s SCCs with our third-party service providers where applicable.

  • Data Privacy Framework: For providers certified under the EU-US Data Privacy Framework (such as Google), we rely on this certification.

6. Cookies and Tracking Technologies

We use cookies to distinguish you from other users. You can control cookies via your browser settings.

  • Essential Cookies: Necessary for the app to function (e.g., Firebase Auth tokens, Session IDs).

  • Analytics Cookies: Help us improve the site (e.g., Google Analytics).

  • Marketing Cookies: Used to track the effectiveness of our marketing (e.g., Rewardful for affiliates).

You may opt out of non-essential cookies via our Cookie Banner or your browser settings.

7. Data Retention

We retain your personal data only for as long as is necessary to fulfill the purposes set out in this policy.

  • Account Data: Retained as long as your account is active.

  • Waitlist Data: Retained until you are onboarded or request removal.

  • Logs: Generally retained for 30 days for security auditing.

8. Your Rights

8.1. For Users in the EEA/UK (GDPR)

Under the General Data Protection Regulation (GDPR), you have the right to:

  • Access your personal data.

  • Rectify inaccurate data.

  • Erasure (Right to be forgotten).

  • Restrict or Object to processing.

  • Data Portability. To exercise these rights, contact us at the email provided in Section 1.

8.2. For Users in the United States (California & Others)

Depending on your state of residence (e.g., California - CCPA/CPRA), you may have specific rights:

  • Right to Know: You may request details about the categories of personal information we collect.

  • Right to Delete: You may request the deletion of your personal information.

  • Do Not Sell/Share: We do not sell your personal information to third parties for monetary value. We may share data with service providers as described in Section 4.

9. Security

We implement industry-standard technical and organizational measures (TOMs) to secure your data, including encryption in transit (TLS/SSL) and at rest. However, no method of transmission over the Internet is 100% secure.

10. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by the "Last Updated" date. We encourage you to review this privacy policy frequently to be informed of how we are protecting your information.