Privacy Policy

Last Updated: April 1, 2026

Last Updated: April 1, 2026

This Privacy Policy describes how DeepCyte Inc. and our subsidiaries and affiliates including DeepCyte ApS ("Company," "we," "us," or "our") collects, uses, discloses, and protects personal information when you access or use our website located at DeepCyte.bio and any related services (collectively, the "Services").

This Privacy Policy is intended to comply with applicable global privacy laws, including but not limited to the EU General Data Protection Regulation (GDPR), UK GDPR, and applicable U.S. state privacy laws such as the California Consumer Privacy Act (CCPA/CPRA).

1. Information We Collect

a. Information You Provide

We may collect personal information that you voluntarily provide, including:

  • Name
  • Email address
  • Company name
  • Job title
  • Any information submitted through forms, communications, or account creation

b. Automatically Collected Information

When you use our Services, we automatically collect:

  • IP address
  • Device identifiers
  • Browser type and operating system
  • Usage data (pages viewed, time on site, interactions)
  • Referring URLs

c. Cookies and Tracking Technologies

We use cookies, pixels, and similar technologies to:

  • Operate and secure the website
  • Analyze traffic and usage
  • Improve functionality and user experience
  • Deliver and measure marketing and advertising

You may control cookie preferences through your browser or via our cookie consent banner.

2. Technologies and Third-Party Services

We use third-party service providers, which may collect or process personal data on our behalf:

Analytics

  • Google Analytics – to analyze website usage and performance
  • Data collected may include IP address, device data, and usage behavior
  • Google may process data in the United States

Email and Communications

  • Tools such as Salesforce, HubSpot, Mailchimp, or similar providers
  • Used to manage communications, newsletters, and customer relationships

Hosting and Infrastructure

  • Cloud hosting providers (e.g., AWS, Google Cloud, or similar)
  • Used to host and operate our Services

These providers may act as data processors and are contractually bound to protect your data. We maintain a list of sub-processors used to provide the Services, which is available upon request.

3. How We Use Your Information

We use personal data for the following purposes:

  • To provide and operate our Services
  • To communicate with you
  • To respond to inquiries and support requests
  • To improve functionality and user experience
  • To monitor usage and detect fraud or security issues
  • To send marketing communications (where permitted)
  • To comply with legal obligations

We do not use personal data or customer data to train general-purpose machine learning models without explicit consent.

4. Legal Basis for Processing (GDPR/UK GDPR)

If you are located in the EEA or UK, we process personal data based on:

  • Consent – where you have provided consent
  • Contractual necessity – to fulfill services you request
  • Legitimate interests – to operate and improve our business
  • Legal obligations – to comply with applicable law

Where processing is based on legitimate interests, we have conducted a balancing test to ensure that such interests are not overridden by your fundamental rights and freedoms.

5. Sharing and Disclosure of Information

We do not sell personal information. We may share data with:

  • Service providers and vendors
  • Professional advisors (legal, accounting)
  • Regulatory authorities when required
  • Business transferees in connection with mergers or acquisitions

6. International Data Transfers

Your personal information may be transferred to and processed in countries outside your jurisdiction, including the United States.

Where personal data is transferred outside the European Economic Area (EEA) or United Kingdom, including to the United States, we rely on:

  • The European Commission's Standard Contractual Clauses (SCCs)
  • Supplementary technical and organizational safeguards where required

Copies of these safeguards are available upon request.

7. Data Retention

We retain personal data only as long as necessary to fulfill the purposes described in this Privacy Policy, including:

  • Account and service data: retained for the duration of the relationship and up to 5 years thereafter for legal and operational purposes
  • Communication data: retained for up to 5 years
  • Analytics data: retained for up to 5 years

We may retain data longer where required by applicable law or to resolve disputes and enforce agreements.

8. Your Privacy Rights

a. EU / UK Residents

You have the right to:

  • Access your data
  • Correct inaccuracies
  • Request deletion
  • Restrict or object to processing
  • Data portability
  • Withdraw consent

You also have the right to lodge a complaint with a supervisory authority in your country of residence, place of work, or place of the alleged infringement.

b. U.S. Residents (including California)

Under applicable U.S. privacy laws, including the California Consumer Privacy Act (CCPA/CPRA), you may have rights to:

  • Know what personal information we collect and how it is used
  • Access your personal information
  • Request deletion of your personal information
  • Correct inaccurate personal information
  • Opt out of the sale or sharing of personal information

Categories of personal information collected include:

  • Identifiers (e.g., name, email address, IP address)
  • Internet activity (e.g., usage data, browsing behavior)
  • Professional information (e.g., company name, job title)

Categories of recipients include:

  • Service providers (hosting, analytics, communications)
  • Professional advisors

DeepCyte does not sell or share personal information for cross-context behavioral advertising.

c. Global Rights

We will honor privacy rights requests consistent with applicable law regardless of your location.

To exercise your rights, contact: legal@deepcyte.bio

9. Cookies and Consent (EU/EEA/UK)

Where required, we:

  • Obtain consent before placing non-essential cookies
  • Allow you to manage preferences via a cookie banner
  • Provide the ability to withdraw consent

10. Data Security

We implement appropriate technical and organizational measures designed to protect personal data in accordance with applicable law. While no system is completely secure, we take reasonable steps to safeguard personal data and will notify affected individuals and authorities of any data breach in accordance with applicable legal requirements.

11. Children's Privacy

Our Services are not intended for children under:

  • 13 (U.S.)
  • 16 (EEA/UK)

We do not knowingly collect personal data from children.

12. Third-Party Links

Our Services may contain links to third-party websites. We are not responsible for their privacy practices.

13. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted with an updated "Last Updated" date.

14. Contact Information

For privacy or data protection inquiries, or to exercise your rights, contact:

DeepCyte
Email: legal@deepcyte.bio
Address: 221 W 9th St PMB 427, Wilmington, DE 19801

15. Data Controller

For users located in the European Economic Area (EEA) or United Kingdom, DeepCyte ApS (Denmark) is the data controller responsible for your personal data.

DeepCyte Inc. (United States) acts as a data processor or service provider on behalf of DeepCyte ApS.

For users located outside the EEA/UK, DeepCyte Inc. may act as the data controller.

References to "DeepCyte," "Company," "we," or "us" refer to the applicable entity based on your location.

Impressum

Information according to § 5 TMG

DeepCyte ApS
Ole Maaløes Vej 3
Copenhagen 2200
Denmark

Represented by:

Theodore Alexandrov (Director)

Contact:

Email: legal@deepcyte.bio
Phone: +1 302 667 5262
Website: www.deepcyte.bio

Company Information:

  • Company form: ApS (Anpartsselskab)
  • Registered in Denmark

Registration Details:

  • CVR number: 45398293
  • Register: Danish Business Authority (Erhvervsstyrelsen)
  • VAT number (CVR): 45398293

Responsible for content according to § 55 Abs. 2 RStV:

Theodore Alexandrov
Ole Maaløes Vej 3
Copenhagen 2200
Denmark

Dispute Resolution:

The European Commission provides a platform for online dispute resolution (ODR): https://ec.europa.eu/consumers/odr/

We are not willing or obliged to participate in dispute resolution proceedings before a consumer arbitration board.

Liability for Content:

As a service provider, we are responsible for our own content on these pages in accordance with general laws. However, we are not obligated to monitor transmitted or stored third-party information or to investigate circumstances that indicate illegal activity.

Liability for Links:

Our website contains links to external websites of third parties, over whose contents we have no control. Therefore, we cannot assume any liability for these external contents.

Copyright:

The content and works on these pages created by the site operator are subject to copyright law. Duplication, processing, distribution, or any kind of commercialization requires prior written consent of the respective author.