Legal

Privacy
Policy

Last Updated: April 2025

1. Introduction

Argus Intelligence ("Argus," "we," "us," or "our") operates the website located at useargus.co (the "Website") and the Argus AI-powered retail loss prevention platform (the "Platform"). Together, the Website and Platform are referred to as the "Service."

This Privacy Policy explains how we collect, use, disclose, retain, and safeguard information when you visit our Website, request a demo, submit inquiries through our contact forms, or use our Platform. It applies to all users, visitors, customers, and authorized end users of the Service.

By accessing or using any part of the Service, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of the Service immediately. This Privacy Policy should be read in conjunction with our Terms of Service.

Effective Date: April 2025. This Privacy Policy is effective as of the date stated above and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.

2. Information We Collect

We collect information in several ways depending on how you interact with us. The categories below describe the types of information we may collect and process.

a. Information You Provide Directly

When you fill out a demo request form, contact form, or otherwise communicate with us through the Website, you may provide the following:

  • Full name
  • Email address
  • Phone number
  • Company or organization name
  • Store locations and geographic regions
  • Job title or role within your organization
  • Number of retail locations or stores
  • Existing camera system or security infrastructure details
  • Estimated shrinkage or loss figures
  • Free-form messages, questions, or comments

b. Information Collected Automatically

When you visit our Website or use the Platform, we automatically collect certain technical information through server logs and similar technologies, including:

  • IP address
  • Device type (desktop, mobile, tablet)
  • Browser type and version
  • Operating system
  • Referring URLs and exit pages
  • Pages visited and features accessed
  • Timestamps and session duration
  • Cookies and similar identifiers (see Section 11)

c. Information Processed by the Platform

The Argus Platform processes live camera feeds provided by our Customers through the Streaming Agent and AI engine to generate detection and analytics data ("Detection Data"). Detection Data includes, but is not limited to:

  • Person detection events with timestamps
  • Movement paths and trajectory data
  • Behavioral pattern analysis
  • Dwell time and zone activity metrics
  • Risk scores and confidence levels
  • Heat map data and spatial analytics
  • Traffic flow analytics and occupancy counts
  • Point-of-sale correlation data
  • Customer tracking patterns (anonymized)

Video footage is processed in real time by the AI engine. Raw video footage is not permanently stored by Argus. Only metadata and detection events derived from the analysis are retained by the Platform. Incident media, such as event frames or short clips associated with detection alerts, may be temporarily stored for the purpose of alert review.

Important: Argus processes camera feeds for AI analysis. Raw video footage remains on the Customer's own infrastructure and is not permanently stored by Argus. Only detection metadata — such as timestamps, event types, confidence scores, and anonymized behavioral patterns — is retained by the Platform.

d. Information from Third Parties

We may receive information about you from third-party services that we use in connection with the Service, including:

  • Payment processors (Stripe): Transaction identifiers, subscription status, billing details, and payment confirmation. Argus does not directly receive or store full credit card numbers.
  • Authentication providers: Account identifiers, email addresses, and authentication tokens used for secure access to the Nexus dashboard.

3. How We Use Information

We use the information we collect for the following purposes:

  • Deliver and improve Platform services: Operate the AI analytics engine, process camera feeds, generate alerts and reports, and continuously improve detection accuracy and Platform features.
  • Process detection events and generate analytics: Create real-time and historical reports including heat maps, traffic analytics, risk assessments, and behavioral insights for our Customers.
  • Transactional communications: Send detection alerts, incident notifications, system status updates, account confirmations, and other service-related communications.
  • Respond to inquiries and demo requests: Process and respond to contact form submissions, demo scheduling requests, and general inquiries received through the Website.
  • Improve AI models: Use anonymized and aggregated data to train and refine our machine learning models, improve detection accuracy, and develop new analytical capabilities. Individual personal data is not used for model training.
  • Platform security and fraud prevention: Monitor for unauthorized access, detect anomalous behavior, prevent abuse of the Service, and protect the integrity of our infrastructure.
  • Legal compliance: Comply with applicable laws, regulations, legal processes, and enforceable governmental requests.
  • Industry benchmarks and reporting: Generate anonymized, aggregated industry benchmarks, trend reports, and research insights that do not identify any individual or specific Customer.

4. Data Ownership

The allocation of data ownership between Argus and our Customers is as follows:

  • Customer-owned data: Customers retain full ownership of their raw camera footage, which remains on the Customer's own infrastructure (on-premises DVR/NVR systems or Customer-selected cloud storage). Argus does not claim any ownership interest in Customer video recordings.
  • Argus-owned Detection Data: Argus retains ownership of all Detection Data generated by the AI processing engine, including but not limited to detection metadata, analytical models, risk scores, behavioral pattern analyses, heat maps, and any derivative insights produced by the Platform.
  • Anonymized and aggregated data: Argus may use anonymized, aggregated data derived from Platform usage for the purpose of platform improvement, model training, research, and industry reporting. Such data does not identify any individual person or specific Customer.
  • No sale of personal data: Argus does not sell personal data to third parties under any circumstances. Argus does not share personal data for cross-context behavioral advertising.

5. Legal Basis for Processing

Where applicable law requires a legal basis for processing personal data, we rely on the following grounds:

  • Contract performance: Processing is necessary to perform our contractual obligations to you, including delivering the Platform services, managing your account, and processing transactions.
  • Legitimate interests: Processing is necessary for our legitimate business interests, including platform security, fraud prevention, service improvement, and internal analytics, provided those interests are not overridden by your data protection rights.
  • Consent: Where required by applicable law, we obtain your consent before processing your personal data for specific purposes, such as marketing communications. You may withdraw consent at any time by contacting us at privacy@useargus.co.
  • Legal obligation: Processing is necessary to comply with applicable laws, regulations, court orders, or other legal processes to which Argus is subject.

6. Data Sharing and Third Parties

We may share your information with the following categories of third parties, solely for the purposes described below. All third-party service providers are contractually obligated to protect your data and may only use it to perform services on our behalf.

  • Email service providers (Resend): We use Resend to deliver transactional emails, including form submission notifications, demo confirmations, and system alerts. Resend processes your email address and message content solely for delivery purposes.
  • Cloud infrastructure providers (Vercel, Cloudflare): Our Website is hosted on Vercel. Media assets and certain Platform data are stored on Cloudflare infrastructure. These providers may process technical data (IP addresses, request metadata) as part of normal service operation.
  • Compute providers: We use cloud compute infrastructure for AI processing workloads. Camera feed data is processed through these providers in real time. Providers are bound by data processing agreements.
  • Authentication providers: We use third-party authentication services to manage secure access to the Nexus dashboard. These providers process account identifiers and authentication credentials.
  • Payment processors (Stripe): Stripe processes all subscription billing and payment transactions on our behalf. Argus does not directly handle or store full payment card information. Stripe's privacy practices are governed by Stripe's Privacy Policy.
  • Law enforcement and government authorities: We may disclose your information when required by law, subpoena, court order, or other legal process, or when we believe in good faith that disclosure is necessary to prevent imminent harm, protect our rights, or comply with a judicial proceeding.
  • Business transfers: In connection with a merger, acquisition, reorganization, asset sale, or bankruptcy, your information may be transferred as a business asset. We will provide notice before your personal data is transferred and becomes subject to a different privacy policy.

Argus does NOT sell personal data. Argus does not sell, rent, or lease personal information to any third party. Argus does not share personal data for cross-context behavioral advertising.

7. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law. The specific retention periods are as follows:

  • Website form data: Information submitted through demo request and contact forms is retained as long as necessary to respond to your inquiry and for follow-up purposes, then deleted within 12 months of submission.
  • Account data: Account information is retained for the duration of your active subscription. Upon termination of your account, personal data will be deleted or anonymized within 90 days, except where retention is required by law.
  • Detection metadata: Detection Data generated by the Platform is retained according to the Customer's subscription plan. The default retention period is 12 months, after which data is automatically purged unless a different period is specified in the Customer's service agreement.
  • Incident media (event frames and clips): Temporary media associated with detection alerts is retained for up to 30 days for the purpose of alert review, then automatically deleted.
  • Anonymized and aggregated data: Data that has been irreversibly anonymized and aggregated may be retained indefinitely, as it no longer constitutes personal data.
  • Backup copies: Backup copies of deleted data may persist in our backup systems for up to 30 days after deletion of the source data, after which they are permanently removed.

8. Data Security

We take the security of your data seriously and implement a range of technical and organizational measures to protect it against unauthorized access, alteration, disclosure, or destruction.

  • Encryption: All data is encrypted at rest and in transit using TLS 1.2 or higher.
  • Infrastructure compliance: Our infrastructure is designed to align with SOC 2 Type II standards for data handling and security practices.
  • Access controls: Role-based access controls (RBAC) ensure that only authorized personnel can access sensitive data, with the principle of least privilege applied across all systems.
  • Audit logging and monitoring: Comprehensive audit logs track access to and modifications of data. Automated monitoring systems detect and alert on anomalous activity.
  • Security assessments: We conduct regular security assessments, vulnerability scans, and penetration testing to identify and remediate potential weaknesses.
  • Incident response: We maintain documented incident response procedures to promptly address any security breach or data incident.

While we implement industry-standard security measures, no method of electronic transmission or storage is completely secure. We cannot guarantee the absolute security of your data. In the event of a data breach that affects your personal information, we will notify affected parties within 72 hours of becoming aware of the breach, in accordance with applicable law.

9. Your Rights

Regardless of your jurisdiction, we are committed to providing you with meaningful control over your personal data. All users of the Service have the right to:

  • Access: Request a copy of the personal data we hold about you, including the categories of data collected, the purposes for processing, and the third parties with whom it has been shared.
  • Correction: Request correction of inaccurate, incomplete, or outdated personal data.
  • Deletion: Request deletion of your personal data, subject to legal retention requirements and our legitimate business needs.
  • Data portability: Request that your personal data be provided to you in a structured, commonly used, machine-readable format (such as CSV or JSON).
  • Object to processing: Object to processing of your personal data based on our legitimate interests, including direct marketing.
  • Restrict processing: Request that we restrict processing of your personal data under certain circumstances, such as when you contest the accuracy of the data or object to processing.
  • Withdraw consent: Where processing is based on your consent, you have the right to withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing conducted prior to withdrawal.

To exercise any of these rights, please contact us at privacy@useargus.co. We will acknowledge your request within 10 business days and provide a substantive response within 30 days. For complex requests, the response period may be extended to 45 days, in which case we will notify you of the extension and the reason for it.

We will not discriminate against you for exercising any of your privacy rights. We may need to verify your identity before processing your request to protect against fraudulent or unauthorized requests.

10. State-Specific Privacy Rights

In addition to the general rights described in Section 9, residents of certain U.S. states may have additional rights under state privacy laws. The following disclosures are provided to comply with applicable state requirements.

California Residents (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020 (collectively, "CCPA"), provides you with the following additional rights:

  • Right to know: You have the right to request that we disclose what personal information we have collected about you, the categories of sources from which it was collected, the business or commercial purpose for collection, the categories of third parties with whom it is shared, and the specific pieces of personal information collected.
  • Right to delete: You have the right to request deletion of your personal information, subject to certain exceptions permitted by law.
  • Right to opt out of sale or sharing: You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising. Argus does NOT sell personal information and does NOT share personal information for cross-context behavioral advertising.
  • Right to non-discrimination: You will not receive discriminatory treatment for exercising any of your CCPA rights.
  • Right to limit use of sensitive personal information: You have the right to limit the use and disclosure of sensitive personal information to purposes necessary to perform the services.

Categories of personal information collected (as defined by the CCPA): Identifiers (name, email, IP address); commercial information (transaction records, subscription details); internet or other electronic network activity information (browsing history, search history, interaction data); geolocation data (approximate location from IP address); professional or employment-related information (job title, company); and inferences drawn from the above (risk scores, behavioral patterns).

To exercise your California privacy rights, please contact us at privacy@useargus.co. You may also designate an authorized agent to submit a request on your behalf.

Illinois Residents (BIPA)

The Illinois Biometric Information Privacy Act ("BIPA") regulates the collection, use, storage, and destruction of biometric identifiers and biometric information. If the Argus Platform processes biometric identifiers (as defined under BIPA) in connection with camera-based analytics at Customer locations in Illinois, the following applies:

  • Customers operating the Platform in Illinois are responsible for: (a) providing written notice to all individuals subject to camera monitoring that biometric identifiers or biometric information may be collected or stored; (b) obtaining written consent from such individuals before biometric data collection begins; (c) maintaining a publicly available written policy establishing a retention schedule and guidelines for permanently destroying biometric data; and (d) complying with all BIPA retention and destruction schedules.
  • Argus provides tools, documentation, and compliance resources to assist Customers in meeting their BIPA obligations.
  • Biometric data processed by the Platform, if applicable, is not sold, leased, traded, or otherwise used for profit by Argus.
  • Biometric data, if collected, will be destroyed when the initial purpose for collection has been satisfied or within three (3) years of the individual's last interaction with the Customer, whichever occurs first.

Texas Residents

Under the Texas Capture or Use of Biometric Identifier Act ("CUBI"), similar protections to those described under Illinois BIPA apply to the collection and use of biometric identifiers. Customers deploying the Platform in Texas are responsible for providing notice to and obtaining informed consent from individuals whose biometric identifiers may be captured. Argus does not sell, lease, or otherwise disclose biometric identifiers captured through the Platform to third parties, except as permitted by CUBI.

Colorado, Connecticut, Virginia, and Oregon Residents

If you are a resident of Colorado, Connecticut, Virginia, or Oregon, you have the following additional rights under your respective state privacy laws:

  • Right to access, correct, and delete your personal data
  • Right to opt out of targeted advertising, the sale of personal data, and profiling in furtherance of decisions that produce legal or similarly significant effects concerning you
  • Right to data portability (receive your data in a portable, readily usable format)
  • Right to appeal a denial of your privacy rights request. If we deny your request, we will provide instructions on how to appeal the decision.

New York, Connecticut, and Delaware (Employee Monitoring)

Certain states, including New York, Connecticut, and Delaware, require employers to provide advance written notice to employees regarding electronic monitoring in the workplace. Customers deploying the Argus Platform in locations where employees are present in these states must comply with applicable employee monitoring notification laws. Argus provides compliance guidance but responsibility for employee notification rests with the Customer as the deploying entity.

Other States

State privacy legislation continues to evolve across the United States. Argus is committed to monitoring developments in state privacy law and complying with all applicable requirements as they take effect. We will update this Privacy Policy to reflect new obligations as necessary. If you have questions about your rights under a specific state law, please contact us at privacy@useargus.co.

11. Cookies and Tracking Technologies

Our Website uses a limited set of cookies and similar technologies. We are committed to minimizing the use of tracking technologies and do not engage in cross-site tracking or third-party behavioral advertising.

  • Essential cookies: Required for the basic functionality and security of the Website, including session management, form submission, and authentication. These cookies cannot be disabled without affecting Website functionality.
  • Analytics (Vercel Web Analytics): We use Vercel Web Analytics, a privacy-focused analytics service that does not collect personally identifiable information (PII). This service provides us with aggregate insights into Website traffic and usage patterns without tracking individual users across sites.
  • No third-party advertising cookies: We do not use third-party advertising cookies, retargeting pixels, or social media tracking scripts on our Website.
  • No cross-site tracking: We do not engage in cross-site tracking. Your browsing activity on our Website is not shared with advertising networks or data brokers.

You can manage cookie preferences through your browser settings. Disabling essential cookies may affect the functionality of the Website.

12. Children's Privacy

The Service is not directed to children under the age of 13 (or 16 in jurisdictions where a higher age threshold applies). We do not knowingly collect, solicit, or maintain personal information from children. If we become aware that we have collected personal data from a child without appropriate parental consent, we will take prompt steps to delete that information.

The Argus Platform's camera-based detection system does not distinguish between individuals based on age. Customers deploying the Platform in environments where children may be present are responsible for ensuring compliance with the Children's Online Privacy Protection Act (COPPA) and similar laws applicable to their specific deployment context. If you believe that a child has provided us with personal data, please contact us at privacy@useargus.co.

13. International Data Transfers

Argus is based in the United States. All data collected through the Website and Platform is processed and stored in the United States.

If you access the Website or Platform from a location outside the United States, please be aware that your information may be transferred to, stored in, and processed in the United States, where data protection laws may differ from those in your jurisdiction.

We implement appropriate safeguards for international data transfers, including standard contractual clauses and other approved transfer mechanisms where required by applicable law, to ensure that your personal data remains protected in accordance with this Privacy Policy.

14. AI and Automated Decision-Making

The Argus Platform uses artificial intelligence and machine learning algorithms to analyze camera feeds, detect events of interest, and generate alerts and analytics for our Customers. The following disclosures are provided regarding AI and automated decision-making:

  • Probabilistic detection: AI-powered detection is probabilistic in nature. Detection events are assigned confidence scores, and the system is not guaranteed to be 100% accurate. False positives and false negatives may occur.
  • Decision-support tool: The Platform is designed as a decision-support tool for retail loss prevention teams. AI-generated alerts and analytics are intended to assist human decision-makers, not to replace them. We strongly recommend that Customers implement human review processes before taking any adverse action based solely on AI-generated alerts.
  • Right to human review: You have the right to request human review of any decision based solely on automated processing that produces legal effects concerning you or similarly significantly affects you. To request human review, contact us at privacy@useargus.co.
  • Model transparency: Argus is committed to transparency regarding how our AI models function. Customers may request information about the logic involved in automated decision-making, the significance of such processing, and the envisaged consequences for individuals.

15. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational, legal, or regulatory reasons.

For material changes to this Privacy Policy, we will provide at least 30 days' advance notice before the changes take effect. Notice may be provided via email to the address associated with your account, through a prominent notice on the Website, or through a notification within the Platform.

Your continued use of the Service after the effective date of any updated Privacy Policy constitutes your acceptance of the revised terms. If you do not agree with the changes, you should discontinue use of the Service before the effective date. The "Last Updated" date at the top of this page indicates when this Privacy Policy was most recently revised.

16. Contact Us

If you have questions, concerns, or complaints about this Privacy Policy, our data practices, or your personal data, please contact us using the information below:

Privacy inquiries: privacy@useargus.coGeneral inquiries: hello@useargus.coMailing address: [To be added]Contact page: useargus.co/contactTerms of Service: useargus.co/terms

We are committed to resolving any concerns you may have regarding our collection and use of your personal data. We will make every reasonable effort to address your inquiry promptly and thoroughly.

© 2025 Argus IntelligenceHome