Privacy Policy

1. Summary

Warp Speed Solutions Inc. ("Routina", "we", "us", or "our") processes customer information as a "service provider" under California law or "processor" under the GDPR when operating the Routina platform on behalf of customers. We also collect information for our own corporate purposes, including customer communications and service improvements.

2. Information We Collect & Why

a. Information from Website Visitors

We gather standard web analytics including browser type, language preference, referring site, pages visited, and the date and time of each request. This includes Internet Protocol (IP) addresses and contact information when visitors voluntarily provide it.

b. Why We Collect This Information

Data collection supports understanding website usage patterns, maintaining security, and enabling business communications.

c. Information from Account Users

Account creation requires a username and email address, provided through a third-party identity provider. Users may optionally provide additional profile information.

"User Personal Information" encompasses any data that could identify an individual — usernames, email addresses, real names, photographs — as well as online identifiers like IP addresses and cookie data.

3. Processing Purposes

Routina uses collected data to:

• Create and maintain accounts
• Provide requested services
• Identify users on the platform
• Generate personalized recommendations
• Analyze service interaction patterns
• Maintain security logs
• Support legal documentation and compliance obligations

4. Legal Basis for Processing Information

Contractual Necessity: Username and email processing is required for Terms of Service compliance.

Consent: Profile information processing is voluntary and consent-based.

Legitimate Interests: Remaining processing — including security and operational purposes — relies on our legitimate business interests.

5. Information About Children

Routina prohibits accounts for users under 16. We do not knowingly collect information from or direct any of our content specifically to children under 16. If we learn that personal information of a child under 16 has been collected, we will take steps to delete it promptly.

6. Data Submitted Through Services

Data submitted via the Routina platform is not used for commercial resale beyond service provision. We act as a data processor for data submitted by customers through the platform. Customers retain ownership and control of their operational data at all times.

7. Information Sharing

Routina does not sell or rent user information to third parties for commercial purposes. We may share:

• Aggregated, non-identifying data for analytics and product improvement
• Information with service providers (payment processors, security vendors, hosting providers, communications platforms) under appropriate data protection agreements
• Data with law enforcement or regulatory bodies pursuant to valid legal process

8. Cookies and Tracking

a. Cookies

We use cookies for preferences, security, and analytics. Some features of the service may require cookies to function correctly. You can configure your browser to refuse cookies, but this may limit access to certain features.

b. Tracking and Analytics

We work with third-party analytics providers under data protection agreements that limit the scope of data collection and restrict processing purposes to service improvement only.

9. Links to Third-Party Websites

Our platform and website may contain links to third-party websites. Routina is not responsible for the privacy practices of those websites and encourages users to review their privacy policies independently before providing any personal information.

10. Correcting, Updating, or Deleting Information

Users may update personal information through account settings at any time. To request deletion of your personal information, please contact us at privacy@getroutina.com. We will respond to all verified requests within the timeframes required by applicable law.

11. Data Retention

We retain personal information based on the nature and sensitivity of the data, the purposes for which it was collected, and our legal obligations. When information is no longer necessary for the original purpose and no legal obligation requires retention, we delete or anonymize it.

12. Security Measures

We implement industry-standard security measures to protect personal information, including encryption in transit and at rest, access controls, and regular security assessments. However, no method of transmission or electronic storage is 100% secure, and we cannot guarantee absolute security.

For healthcare customers, Routina is built to support HIPAA compliance requirements, including safeguards for Protected Health Information (PHI). Business Associate Agreements (BAAs) are available upon request.

13. Incident Management and Data Breach Notification

In the event of a qualifying security incident affecting personal data, we will notify affected account holders within 72 hours of becoming aware of the breach, or as otherwise required by applicable law. We maintain an incident response plan and conduct regular security reviews.

14. Global Privacy Practices

Routina is headquartered in Puerto Rico, United States. Data may be stored and processed in the United States, though subprocessors may operate in other jurisdictions. We apply consistent privacy standards globally regardless of the user's location, and we implement appropriate safeguards for international data transfers.

15. Compelled Disclosure

We may disclose personal information to government authorities or law enforcement when required by valid legal process or when reasonably necessary to protect our rights, property, or the safety of our users. We will attempt to notify affected users of any such disclosure when legally permitted to do so.

16. CCPA and GDPR Applicability

When processing customer data on behalf of our business customers, Routina functions as a "service provider" under the California Consumer Privacy Act (CCPA) and a "data processor" under the General Data Protection Regulation (GDPR). In these cases, data subjects should contact the customer organization — not Routina directly — to exercise their data rights.

Individuals who interact with Routina directly as customers may contact privacy@getroutina.com to exercise deletion or access rights.

17. Notice to California Residents

California residents have the following rights under the CCPA:

• Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected about you
• Right to Delete: Request deletion of your personal information, subject to certain exceptions
• Right to Opt-Out: Opt out of the sale of personal information (note: Routina does not sell personal information as defined under the CCPA)
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights

To submit a request, please email legal@getroutina.com. We may require sufficient verification information to confirm your identity before fulfilling requests.

18. Notice to European Users

Legal Bases for Processing

Contractual Necessity: Essential account data, billing information, and support-related communications.

Legitimate Interest: Profile data, usage analytics, and other information supporting service provision and business operations.

Consent: Certain cookie and tracking technologies requiring explicit agreement.

Your Rights Regarding Personal Data

EEA and UK residents may exercise the following rights by contacting privacy@getroutina.com:

• Access: Request information about personal data we process about you
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your personal data
• Withdrawal of Consent: Revoke consent for consent-based processing at any time
• Portability: Obtain a copy of your data in a structured, machine-readable format
• Objection: Object to processing based on legitimate interests
• Restriction: Request that we limit further processing of your data
• Complaint: Lodge a complaint with your local supervisory authority

Transfer of Personal Data

Personal data may be transferred to the United States. Where required, we implement appropriate safeguards such as Standard Contractual Clauses (SCCs) approved by the European Commission to ensure adequate protection of your personal data.

19. Google Workspace APIs Use

Data obtained through Google Workspace APIs is not used to develop, improve, or train generalized artificial intelligence (AI) or machine learning (ML) models. Use of Google Workspace API data is strictly limited to providing and improving Routina's user-facing functionality in accordance with Google's API Services User Data Policy.

20. Policy Changes

We may update this Privacy Policy from time to time. Material changes will be communicated via email to registered account holders or through a prominent notice on our platform. The updated policy takes effect upon posting unless otherwise stated. Continued use of Routina following notice of changes constitutes acceptance of the revised policy.

21. Contact Information

For privacy inquiries, requests, or questions about this policy, please contact us at: