Privacy Policy

Last Updated: April 12, 2026

1. Information We Collect

1.1 Information Provided During Account Setup

Pyrworks uses an admin-managed account model. You do not create your own account. The Pyrworks administrator creates your account, configures your devices, and provides you with login credentials. During this process, we collect:

• Account Information: Your name, email address, organization name, and password (stored in hashed form).
• Phone Number: Your phone number, used to deliver SMS alerts, voice call alerts, and account notifications.

1.2 Information You Provide Directly

• Contact Information: When you submit inquiries through our contact forms or request information, we collect your name, email address, organization, and any information you include in your message.

1.3 Information Collected Automatically

• IoT Device Data: Our Smol sensors collect and transmit temperature measurements, probe depth information, device identifiers, battery voltage, firmware versions, and operational status.
• Usage Information: We collect information about how you interact with the Kor web platform, including access times, device IP addresses, and API usage patterns.
• Audit Logs: We maintain logs of firmware updates, device registration events, alert triggers, and system activities for security and operational purposes.

2. How We Use Your Information

We use the information we collect to:

• Provide Our Services: Monitor almond hull storage conditions, track temperature changes, and send alerts when readings exceed configured thresholds.
• Deliver Alerts: Send you SMS messages, voice calls, and emails when the system detects temperature conditions that require attention.
• Improve Our Services: Analyze sensor data to improve monitoring accuracy and provide better early warning information.
• Account Management: Create and manage your account, authenticate your access, and provide customer support.
• Communications: Send you notifications about your devices, system updates, and responses to your inquiries.
• Security and Compliance: Protect against unauthorized access, maintain data integrity, and comply with legal obligations.

3. SMS and Voice Alert Consent

When you opt in to receive SMS text messages and phone calls through your Notification Settings, you expressly consent to receive automated temperature alert messages from Pyrworks temperature monitoring.

• Message Frequency: Message frequency varies based on temperature alert conditions at your facility.
• Message and Data Rates: Message and data rates may apply.
• Opt-Out: You can opt out at any time by unchecking the consent checkbox in your Notification Settings, or by replying STOP to any SMS message.
• Help: Reply HELP to any SMS message for assistance, or contact us at [email protected] or (209) 214-9579.

We do not share your phone number with third parties for marketing purposes. Your phone number is shared with Twilio solely for the purpose of delivering alert notifications. Carriers are not liable for delayed or undelivered messages.

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

• Twilio: We use Twilio to deliver SMS text message alerts and voice call alerts. Your phone number is shared with Twilio solely for this purpose and is not shared with any other third parties for marketing or promotional purposes. We also use Twilio SendGrid to deliver email notifications.
• Microsoft Azure: We use Azure as our cloud infrastructure provider, including Azure IoT Hub (device communication), Azure SQL Database (data storage), and Azure App Service (web platform hosting).

4.2 Within Your Organization

Data from your devices is shared with authorized users within your organization who have appropriate access permissions.

4.3 Legal Requirements

We may disclose your information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to:

• Comply with legal obligations
• Protect our rights, property, or safety
• Prevent fraud or security issues
• Respond to emergency situations

5. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: Data transmission uses TLS/SSL encryption. Passwords are hashed using industry-standard algorithms.
• Authentication: We use JWT tokens for secure authentication with automatic expiration.
• Device Security: IoT devices use encrypted and authenticated wireless transmission to verify data integrity and authenticity.
• Access Controls: Multi-tenant data isolation ensures your data is only accessible to authorized users in your organization.
• API Security: Rate limiting and API key authentication protect against unauthorized access.
• Monitoring: We maintain audit logs and monitor for suspicious activity.

No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Data Transmission

Our system uses a multi-stage data path:

• Sensor to Base Station: Smol sensor units transmit temperature data over LoRa radio (915 MHz) to a base station located at your facility. This is a short-range wireless link within your site.
• Base Station to Cloud: The base station relays data to the Kor platform over your facility's WiFi connection and the internet, using encrypted connections.
• Cloud to You: Alerts and dashboard data are delivered from Azure to your browser, phone, or email through encrypted channels.

7. Data Retention

We retain your information for as long as necessary to provide our Services and comply with legal obligations:

• Account Data: Retained while your account is active and for a reasonable period afterward for backup and legal purposes.
• Sensor Data: Temperature and monitoring data is retained to enable historical analysis and trend identification.
• Audit Logs: Security and operational logs are retained according to our data retention policies and legal requirements.
• Contact Information: Information from contact forms is retained for business development and customer relationship purposes.

You may request deletion of your personal data by contacting us at the email address below.

8. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request access to the personal information we hold about you.
• Correction: Request correction of inaccurate or incomplete information.
• Deletion: Request deletion of your personal information, subject to legal retention requirements.
• Data Portability: Request a copy of your data in a structured, machine-readable format.
• Opt-Out: Request changes to your notification preferences by contacting us.

To exercise these rights, please contact us using the information provided below.

9. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of material changes by:

• Posting the updated policy on our website with a new "Last Updated" date
• Sending notice to the email address associated with your account

Your continued use of our Services after changes become effective constitutes acceptance of the updated Privacy Policy.

11. Third-Party Links and Services

Our Services may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing them with any information.

12. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information held by businesses
• Right to opt-out of sale of personal information (we do not sell personal information)
• Right to non-discrimination for exercising CCPA rights

To exercise these rights, please contact us using the information below.

13. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws different from those in your country. We take appropriate safeguards to ensure your information receives adequate protection.

14. Contact Us

15. Consent

By using our Services, you consent to the collection, use, and sharing of your information as described in this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our Services.