All Aboard – Terms and Conditions Effective Date: 4/30/2025 Operated by JStrongly Technologies LLC, a Florida Limited Liability Company Last Updated: 4/30/2025 1. Acceptance of Terms These Terms and Conditions ("Terms") govern your access to and use of the All Aboard service, including its website dashboard, APIs, SDKs, and related offerings (collectively, the “Service”). By accessing or using the Service, you ("you", "Customer") agree to be bound by these Terms. If you are entering into this agreement on behalf of a company or organization, you represent that you have the authority to bind that entity to these Terms. If you do not agree to these Terms, do not access or use the Service. 2. Eligibility You must be at least 18 years old to create an All Aboard account or use the Service. By using the Service, you represent that you meet this requirement. The Service is not intended for individuals under 18 years of age. 3. Account Registration To access the Service, you must create an account. You agree to provide accurate and complete information, maintain the security of your credentials, and be responsible for all activity under your account. 4. Use of the Service All Aboard enables you to embed AI-powered chat functionality into your mobile applications using our SDK and web-based dashboard. You may configure prompts, set up chat products, and provide your own API keys (e.g., OpenAI or Anthropic) to process AI responses. You are solely responsible for how you configure and deploy the Service within your application, and for all resulting interactions and content. 5. Third-Party API Keys You are solely responsible for any OpenAI, Anthropic, or other third-party API keys you use with the Service. All Aboard acts only as a technical facilitator and does not monitor or control the use or cost of your API keys. By using such keys with the Service, you agree that: You assume all responsibility for API costs, rate limits, and usage. You are responsible for rotating or revoking keys if compromised. JStrongly Technologies LLC is not liable for any misuse or unintended use of your keys. 6. SDK Integration and Compatibility You are solely responsible for integrating the All Aboard SDK into your application. We provide documentation and basic support, but do not guarantee compatibility with all devices, frameworks, or third-party tools. JStrongly Technologies LLC is not responsible for any issues, bugs, app crashes, or unexpected behaviors that result from integrating the SDK into your environment. 7. Customer Responsibilities and Data Compliance As a Customer, you are the data controller for all content and user data you submit through the Service. All Aboard is your data processor and acts solely on your behalf. You are responsible for: Informing your end users about how their data is used; Obtaining all necessary consents and complying with applicable privacy laws (e.g., GDPR, CCPA); Responding to data requests from your users (e.g., access or deletion). JStrongly Technologies LLC will provide reasonable assistance where legally required and technically feasible. 8. Data Retention and Deletion You and your users can delete chat history or data via in-app controls. We may also archive or delete inactive accounts or content after a reasonable retention period in accordance with our internal policies. We are not responsible for loss of data due to deletion, expiration, or failure to export. You are responsible for backing up any data you wish to preserve. 9. AI Output Disclaimer The Service may return responses generated by AI systems via third-party providers. You understand and acknowledge that: AI responses may be inaccurate, offensive, or misleading. JStrongly Technologies LLC does not control or guarantee the content produced by third-party models. You are solely responsible for moderating or filtering the output shown to your users. 10. Subscription and Billing All Aboard is a subscription-based service. By subscribing, you agree to: Pay all applicable fees via Stripe for your selected plan; Comply with usage limits specified in your plan; Allow automated billing until canceled. All fees are non-refundable unless required by law. Downgrading or exceeding limits may restrict access to certain features or trigger additional charges. 11. Service Availability and Maintenance While we aim to provide a reliable service, we do not guarantee uptime or uninterrupted access. The Service may be temporarily unavailable for maintenance, upgrades, or technical issues. You agree that JStrongly Technologies LLC is not liable for any disruption, downtime, or resulting losses, including those related to third-party providers, bugs, or service outages. 12. Beta Features Some features may be released as beta or experimental. These features are offered "as-is" and may be changed, removed, or unavailable at any time. Use of beta features is at your own risk. 13. Security We implement industry-standard technical and organizational safeguards to protect data, including encryption in transit and at rest through our cloud providers. However, no system is completely secure. You acknowledge that use of the Service involves some risk, and you assume responsibility for securing your own systems and integrations. 14. Intellectual Property All Aboard, including its software, branding, SDKs, and documentation, is the intellectual property of JStrongly Technologies LLC. You may not copy, resell, reverse-engineer, or create derivative works based on the Service. You retain ownership of your own applications, configuration data, and user content. 15. Indemnification You agree to indemnify, defend, and hold harmless JStrongly Technologies LLC, its officers, employees, contractors, and affiliates from any claims, liabilities, damages, and expenses (including attorneys’ fees) arising from: Your use of the Service; Your violation of these Terms; Your end users’ actions or data; Your misuse of third-party API services. 16. Limitation of Liability To the fullest extent allowed by law, JStrongly Technologies LLC shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including loss of data, profits, revenue, or goodwill. Our total liability for any claim shall not exceed the fees you paid in the six (6) months preceding the event giving rise to the claim. 17. Force Majeure We are not liable for delays or failures due to events beyond our reasonable control, including natural disasters, internet outages, war, cyberattacks, or infrastructure failures of third-party platforms. 18. Export Compliance You agree to comply with U.S. and international export laws and not use or distribute the Service in embargoed countries or to restricted individuals. 19. No Partnership These Terms do not create any agency, partnership, joint venture, or employment relationship. You may not make representations or obligations on behalf of JStrongly Technologies LLC. 20. Modifications to Terms We may modify these Terms at any time. If changes are material, we will notify you via email or the dashboard. Continued use of the Service constitutes your acceptance of the updated Terms. 21. Governing Law and Jurisdiction These Terms are governed by and construed in accordance with the laws of the State of Florida, without regard to its conflict of law provisions. You agree that any dispute arising out of or relating to the Service or these Terms shall be brought exclusively in the state or federal courts located in Florida, and you consent to the personal jurisdiction and venue of such courts. 22. Contact Us For questions or legal inquiries related to these Terms: JStrongly Technologies LLC Email: jstronglytechcontact@gmail.com
Data Processing Agreement (DPA) Effective Date: 4/30/2025 This Data Processing Agreement (“Agreement” or “DPA”) is entered into between: Customer ("Controller"), and JStrongly Technologies LLC, a Florida limited liability company operating the All Aboard service ("Processor"). This DPA supplements and forms part of the agreement governing the use of the All Aboard service (“Main Agreement”) and reflects the parties’ agreement with respect to compliance with applicable data protection laws. 1. Definitions The terms “Personal Data”, “Processing”, “Data Subject”, “Controller”, “Processor”, and “Supervisory Authority” shall have the meanings set forth in the General Data Protection Regulation (EU) 2016/679 (“GDPR”) or other applicable data protection laws. Applicable Law means all data protection and privacy laws, including but not limited to the GDPR, UK GDPR, and CCPA/CPRA, applicable to the processing of Personal Data. 2. Roles and Scope Controller determines the purposes and means of Processing. Processor processes Personal Data only on documented instructions from the Controller and solely for the purpose of providing the Service. This DPA applies to all Processing of Personal Data conducted by Processor on behalf of Controller under the Main Agreement. 3. Nature and Purpose of Processing Subject Matter: Provision of AI chat functionality within mobile applications via All Aboard. Purpose: Processing of chat data, user inputs, and related metadata for AI responses and analytics. Categories of Data Subjects: End users of Controller's mobile application(s). Types of Personal Data: Pseudonymous identifiers, chat content, metadata (timestamps, session IDs), and any other data optionally submitted by Controller. Processor does not intentionally collect or require special categories of personal data. 4. Controller Obligations Controller agrees to: Ensure all Personal Data has been collected lawfully, with proper consents and legal basis; Not submit or cause the processing of any sensitive data (e.g., health, biometric, financial, or government ID data) without written authorization from Processor; Ensure its configuration and use of the Service complies with Applicable Law; Provide required notices to and obtain consent from end users; Respond to data subject requests, including those related to access, correction, deletion, and portability. 5. Processor Obligations Processor shall: Processor shall process Personal Data only as instructed by the Controller and for the purpose of providing the Service, except where processing is required by law or for the Processor’s legitimate business operations, including security, service improvement, and aggregated analytics, provided that such processing does not override the rights and freedoms of data subjects and is conducted in accordance with Applicable Law. Implement appropriate technical and organizational security measures, including encryption in transit and at rest (as supported by its cloud providers); Ensure access is restricted to personnel under confidentiality obligations; Notify Controller without undue delay after becoming aware of any personal data breach; Assist Controller in fulfilling data subject rights, compliance, and risk assessments where legally required and technically feasible; Delete or return Personal Data upon request or termination as outlined below. 6. Use of Third-Party APIs Controller may connect third-party services (e.g., OpenAI, Anthropic) through the Service. Processor acts solely as a facilitator of API usage based on Controller’s instructions and credentials. Processor disclaims all responsibility for data processed by or through such third-party services. Controller is responsible for reviewing and complying with third-party privacy terms and applicable law. 7. Subprocessors Processor may engage subprocessors to provide the Service. Current subprocessors include: Google Cloud / Firebase (hosting and storage) Stripe (payment processing) Sentry or equivalent (error tracking) Processor shall: Processor shall use commercially reasonable efforts to ensure that subprocessors are subject to written agreements that impose obligations materially similar to those set out in this DPA. Processor shall remain responsible for the acts and omissions of its subprocessors to the extent Processor would be liable under the Main Agreement, subject to the limitations of liability therein. Processor shall make a current list of subprocessors available upon request. Controller may subscribe to updates, and objections must be raised in writing within 14 days of notice. Continued use of the Service constitutes acceptance. 8. Data Transfers Where Personal Data originates from the European Economic Area (EEA), UK, or Switzerland and is transferred to a country not recognized as offering adequate protection, Processor shall ensure lawful transfer mechanisms, such as: Standard Contractual Clauses (SCCs), or Other mechanisms under Applicable Law. 9. Security Measures Processor uses commercially reasonable security measures appropriate to the risk, including: Access controls and authentication Encryption in transit and at rest Secure APIs and logging Firewalls and DDoS protections Processor makes no guarantees beyond these commercially reasonable efforts and disclaims responsibility for breaches caused by Controller’s own configuration, user behavior, or third-party services. 10. Audit Rights Controller may request evidence of compliance with this DPA once per year (or more frequently if required by law). Any audit shall: Be conducted by an independent third-party auditor bound by NDA; Not interfere with Processor’s operations; Be limited to necessary scope and time; Be at Controller’s sole expense unless legally required otherwise. Processor may alternatively provide a summary audit report or third-party certification. 11. Data Retention and Deletion Upon request or termination of the Main Agreement, Processor shall: At Controller’s written request, delete or return Personal Data within a commercially reasonable period; Retain Personal Data only as required for legal compliance, dispute resolution, or internal backups; Delete residual copies from backups in accordance with regular retention cycles (typically within 90 days). If Controller does not request deletion within 30 days after termination, Processor may delete data at its discretion. 12. Force Majeure Processor shall not be liable for failure or delay in processing Personal Data due to causes beyond its reasonable control, including but not limited to: Internet outages, cloud infrastructure failures Natural disasters, war, terrorism Legal or regulatory changes Cyberattacks or service provider disruptions 13. Limitation of Liability Processor’s liability under this DPA is subject to the limitations of liability set forth in the Main Agreement. In no event shall Processor’s liability exceed the amount paid by Controller for the Service in the six (6) months prior to the event giving rise to the claim. 14. Miscellaneous In the event of conflict between this DPA and other terms, this DPA shall prevail solely with respect to data protection. This DPA is governed by the same jurisdiction and law specified in the Main Agreement. 15. Contact Information For privacy-related inquiries, data requests, or notices: JStrongly Technologies LLC Email: jstronglytechcontact@gmail.com
Privacy Policy Effective Date: 4/30/2025 Operated by JStrongly Technologies LLC 1. Introduction JStrongly Technologies LLC ("Company", "we", "us", or "our") respects your privacy. This Privacy Policy explains how we collect, use, store, and protect personal data when you use All Aboard, including our website, dashboard, APIs, SDKs, and related services (collectively, the “Service”). By using the Service, you agree to the practices described in this policy. 2. Who This Policy Applies To Customers – Individuals or organizations who create an All Aboard account to build and manage AI chat experiences. End Users – Individuals who use a Customer’s mobile app that integrates All Aboard functionality via SDK. 3. Minimum Age Requirements Customers must be at least 18 years old to register and use the Service. End users of Customer applications must be at least 13 years old, unless the Customer has obtained verified parental consent as required by law. We do not knowingly allow minors under 13 to use the Service. Customers are responsible for ensuring their users comply with applicable age requirements. 4. Data We Collect From Customers: Name, email address, and login credentials Billing details (processed via Stripe) API keys (e.g., OpenAI, Anthropic) and configuration settings Configuration data for products created using the Service, including but not limited to custom prompts and model settings. Usage metrics and access logs From End Users (on behalf of Customers): Chat content and user interaction history (which may be linked to a user via identifiers provided by the Customer) User identifiers (if provided by the Customer) Interaction timestamps and metadata Automatically Collected (from all users): IP address Browser, device, and OS details Usage activity (e.g., page views, button clicks) 5. How We Use the Data We use data to: Provide and maintain the Service Authenticate access and manage accounts Facilitate AI interactions via third-party APIs Monitor system health and prevent abuse Analyze and improve platform functionality We do not sell user data or use it for third-party advertising. Store and make available user message history as part of the chat experience. 6. How We Protect Data We implement reasonable administrative, technical, and physical safeguards to protect your data. This includes: Encryption in transit and at rest (as provided by our cloud service providers) Access controls and authentication Secure APIs and rate limiting Error logging and system monitoring While we follow best practices, no system is 100% secure. You acknowledge and accept this risk when using the Service. 7. Our Role as a Data Processor When Customers use the Service to collect or process their end users’ data, JStrongly Technologies LLC acts as a data processor, and the Customer is the data controller. Customers are solely responsible for: Informing their users about data practices Obtaining all required consents (including for children if applicable) Responding to user requests (e.g., access, deletion, portability) We process such data primarily on the Customer’s instructions and in compliance with applicable privacy laws. In some cases, we may respond directly to data subject requests (e.g., access or deletion) where required by law and technically feasible. 8. Data Retention End users or Customers may delete chat history at any time. We may delete or archive data that is inactive, expired, or in violation of our terms. We retain Customer account information for as long as necessary to provide services and comply with legal obligations. 9. Sharing and Disclosure We only share data under the following conditions: With third-party processors (e.g., Stripe for payments, hosting providers) necessary to deliver the Service In response to legal obligations (e.g., subpoenas, lawful requests) To protect our rights, safety, or integrity of the platform We do not sell or trade personal data. 10. Third-Party APIs and Integrations When Customers provide API keys (e.g., OpenAI or Anthropic), we use them solely to process AI requests on their behalf. We store both the user messages and the corresponding AI responses as part of the conversation history, which may be accessed by the Customer or their users through the Service. Customers are responsible for: Reviewing and complying with the third-party’s privacy policies Managing the use of their API credentials 11. Cookies and Tracking Technologies We may use cookies or similar technologies on our dashboard and website to: Maintain session state and login functionality Analyze anonymous usage patterns Improve usability and feature performance You may disable cookies via your browser settings, but some features may stop working properly. 12. Your Privacy Rights Depending on your location (e.g., the EU or California), you may have the right to: Request access to your personal data Request correction or deletion Object to or restrict certain processing Request data portability Customers are responsible for managing these rights for their end users. We support our Customers in fulfilling verified data subject requests where applicable. To exercise your rights or request support, contact us at the address below. 13. International Data Transfers All data may be stored or processed in the United States or other jurisdictions. If you access the Service from outside the U.S., you acknowledge that your data may be transferred to and processed in the United States. 14. Changes to This Privacy Policy We may update this Privacy Policy periodically. If changes are material, we will notify Customers via email or the Service dashboard. Continued use of the Service after changes indicates your acceptance of the revised policy. 15. Contact Us If you have questions about this Privacy Policy, contact: JStrongly Technologies LLC Email: jstronglytechcontact@gmail.com
