Legal
Privacy Policy
Blue Horizon Labs LLC · Effective date: 2026-07-14 · Last updated: 2026-07-14
1. Who we are
This website, bluehorizonlabs.ai, is operated by Blue Horizon Labs LLC (“we,” “us,” “our”), a limited liability company based in Albany, New York, USA. For personal information collected through this site, Blue Horizon Labs is the data controller.
Privacy contact: ZacharyWood@bluehorizonlabs.ai
2. The personal information we collect
(a) Information you provide directly — when you email or call us: your name, contact details, and the contents of your message.
(b) Information collected automatically — our only analytics is Cloudflare Web Analytics, which is cookieless: aggregate, non-identifying metrics such as page views, referring sites, approximate country, and device/browser type. No cookies, no persistent identifiers, no cross-site tracking — it does not identify you.
We do not intentionally collect special-category data, and we ask that you not include sensitive personal information in messages to us.
3. How we use this information
- Respond to your inquiries and provide our services.
- Operate, secure, and improve the website (including aggregate analytics).
- Comply with legal, tax, and accounting obligations.
We do not use your information for automated decision-making or profiling that produces legal or similarly significant effects. We do not sell your personal information.
4. Cookies
This site sets no optional cookies. There is no cookie banner because there is nothing to consent to: our analytics (Cloudflare Web Analytics) is cookieless and uses no persistent identifiers or cross-site tracking. If we ever introduce cookies that require consent, this policy and the site will change accordingly before they are set.
5. Legal bases (EU/UK visitors — GDPR/UK GDPR)
- Legitimate interests — for cookieless aggregate analytics and basic site security/operation (balanced against your rights).
- Steps prior to a contract — when you contact us about engaging Blue Horizon Labs.
6. Who we share it with (processors)
We share personal information only with vendors processing it on our behalf under contract. Today that is one provider: Cloudflare, Inc. — website hosting and cookieless web analytics (site delivery logs; aggregate, non-identifying analytics).
We may also disclose information when required by law, to enforce our terms, or in connection with a business transfer. We do not otherwise share or “sell”/“share” (as defined by US state laws) your personal information.
7. International transfers
Our provider (Cloudflare) may process data in the United States and elsewhere. Where required for EU/UK data, transfers rely on appropriate safeguards such as the EU Standard Contractual Clauses and the provider’s data processing terms.
8. Data retention
- Email/phone correspondence: retained ~24 months, or longer as needed to provide services and meet legal obligations, then deleted or anonymized.
- Cloudflare aggregate analytics: per Cloudflare’s retention; no personal identifiers are stored.
9. Data security
The site is served over HTTPS on Cloudflare’s infrastructure, and access to inquiry correspondence is limited. No method of transmission or storage is 100% secure, but we take reasonable measures to protect your information.
10. Your rights and choices
EU/UK (GDPR/UK GDPR): access, rectification, erasure, restriction, data portability, objection, withdrawal of consent, and the right to complain to a supervisory authority (in the UK, the ICO; in the EU, your local authority).
California & other US states (CCPA/CPRA and equivalents): rights to know, access, delete, and correct your personal information; the right to opt out of any “sale” or “sharing”; and the right to non-discrimination for exercising these rights.
- We honor the Global Privacy Control (GPC) browser signal as a valid opt-out under applicable state laws. Because this site sets no optional cookies and our analytics stores no personal identifiers, there is no analytics/advertising storage to opt out of in the first place.
- Exercise any of these rights by emailing the address in §1. We will verify requests as required by law and respond within statutory timeframes.
“Do Not Track”: browsers’ DNT signals are not standardized; we respond to GPC instead, as above.
11. Children
This site is intended for businesses and adults. It is not directed to children under 16, and we do not knowingly collect personal information from children. If you believe a child provided us information, contact us and we will delete it.
12. Changes to this policy
We may update this policy; the “Last updated” date reflects the latest version.
13. Contact
ZacharyWood@bluehorizonlabs.ai · Blue Horizon Labs LLC, Albany, NY, USA.