Privacy Policy

Last Updated: April 29, 2026

Automation Intelligence Labs, Inc. ("Company," "we," "us," or "our") has adopted this Privacy Policy to describe how we collect, use, disclose, and otherwise process personal information when you access or use our website located at plcforge.ai (the "Website"), our PLC Forge desktop application (the "Software"), and any services, features, and functionality made available through them (collectively, the "Services"). By accessing or using the Services, you acknowledge that you have read and understand this Privacy Policy. This Privacy Policy is incorporated into and forms part of our Master End User License Agreement (the "EULA") and our Terms of Use. Capitalized terms not defined in this Privacy Policy shall have the meaning set forth in our EULA or Terms of Use, as applicable.

If you are a resident of the EU, UK, or Switzerland, you may have additional rights described in Section IX below.

I. The Information We Collect and How We Use It

We may collect the following information about you, either because you provide it to us, it is directly necessary to provide our Services, or because it helps us improve and secure the Services. We may use this information for the purposes described below and, where applicable, to comply with legal obligations, enforce our agreements, protect our rights and the rights of others, and in connection with a merger, acquisition, reorganization, financing, sale of assets, or other corporate transaction involving all or part of our business.

Information You Provide To Us

The following categories of personal information are collected directly from you when you register with the Services, purchase a subscription, or otherwise contact us:

• Account Information. If you create an account, we collect your login credentials and information associated with your account, such as your name, email address, company or organization name (if provided), and account settings. We use account information to create and manage your account, authenticate your identity, provide access to account features, enforce usage allowances associated with your Tier, and help protect against unauthorized access or misuse.
• Contact Information. This includes information by which you may be personally identified, such as your name and email address. We use this information to create and manage your account, communicate with you about the Services, respond to your inquiries and requests, send administrative or service-related notices, and notify you about updates or changes to the Services.
• Billing Information. If you subscribe to a paid Tier, we collect billing and payment information necessary to process your transactions. Payment card details are processed by our third-party payment processor, Stripe, Inc. ("Stripe"); we do not store full payment card numbers on our servers. We use billing information to process payments, manage subscriptions, and enforce payment obligations under the EULA.
• Communications Data. When you contact us, submit a support request, or otherwise communicate with us, we collect information about your communications, requests, and preferences. We use this information to respond to you, provide support, improve the Services, and understand how users interact with the Services.

Information Collected Through the Software

• Customer Code Transmitted Through AI Features. When you invoke an AI Feature within the Software (such as code generation, code explanation, analysis suggestions, or fix suggestions), relevant portions of your PLC code ("Customer Code") are transmitted through our proxy server to a third-party AI model provider for inference processing. Our proxy server does not read, store, or log your Customer Code or prompts. Customer Code is processed in transit only and is not retained on our servers. The third-party AI model provider's use and handling of Customer Code transmitted through the AI Features is governed by such provider's own terms, conditions, and data handling policies. We do not use Customer Code to train artificial intelligence or machine learning models, and we do not retain Customer Code, except where you have affirmatively elected to participate in a voluntary program that allows you to submit data (which may include prompts, outputs, feedback, or limited portions of Customer Code) to improve the performance and quality of our AI features. Participation in any such program is entirely optional and is not enabled by default. If you choose to participate, any data you submit for these purposes may be retained and used for training, evaluation, and model improvement. You represent and warrant that you have all necessary rights, permissions, and authorizations to submit any such data, including where it is owned by or subject to the rights of a third party (such as your employer or a client).
• Usage Data. We automatically collect certain usage metadata when you use the Software, including feature usage analytics; AI interaction data (such as action type, token count, timestamps, and high-level interaction outcomes (e.g., accept/reject/edit indicators)); security and abuse monitoring data (such as authentication attempts, rate limiting events, and system access logs); technical metadata relating to files and projects (such as file type, size, structure, and target platform); and error and crash reporting, and application performance metrics. We use this information to operate, maintain, and improve the Services, enforce Tier usage limits, process billing, identify and resolve technical issues, ensure platform security and integrity, prevent misuse, and analyze usage patterns.
• Local Data. Your PLC project files, Customer Code, and local code analysis results are stored locally on your device. We do not access, collect, or transmit this data except as described in the Customer Code subsection above when you affirmatively invoke an AI Feature.

Information Automatically Collected Through the Website

• Log and Usage Data. When you visit the Website, we may collect information such as the domain and host from which you access the Internet, the Internet address of the website from which you linked directly to the Website (if applicable), the date and time of your visit, how long you spent on the Website, which pages you visited, your Internet Protocol (IP) address, device identifiers and other unique online identifiers, and your computer's operating system and browser software. We collect this information from your browser and device through server logs and analytics tools. We use this information to improve the Website, customize elements to your interests, ensure security, and analyze usage trends.
• Cookies and Other Tracking Technologies. We, including through third-party providers, use "cookies" and similar technologies on the Website to collect information such as your IP address, internet service provider, browser type, operating system and language, referring and exit pages and URLs, date and time, amount of time spent on particular pages, what sections of the Website you visit, number of links clicked, search terms, and other usage data. We use this information to improve the Website, enhance your overall experience by analyzing usage patterns, optimize site performance, and customize content and features based on your preferences. You can manage your cookie preferences as described in Section III(2) below. If you are located in the European Economic Area, the United Kingdom, or Switzerland, we will obtain your consent for the use of non-essential cookies and similar technologies where required by applicable law, and you may exercise your rights regarding such processing as described in Section IX(3) below.

Information You Provide About Others

The Services are not designed to collect personal information about third parties. If you nonetheless submit content that includes information about other individuals (for example, if a PLC project file you process through the AI Features contains another person's name or identifying information), we collect that information only as part of the content you submit and process it solely as necessary to provide the Services. You represent and warrant that you have obtained all legally required permissions and consents from any individuals whose personal information is included in content you submit.

Aggregated Data

We may use Usage Data in an anonymous and aggregated form ("Aggregate Data") for the purposes of operating, maintaining, managing, and improving the Services. Aggregate Data does not identify you or any individual. Aggregate Data does not include Customer Code.

II. How We Share Your Information

We may disclose your personal information to the following categories of third parties for the purposes described below. We do not "sell" or "share" your personal information as those terms are defined under the California Consumer Privacy Act, as amended by the California Privacy Rights Act ("CCPA/CPRA"), or under any other applicable U.S. state privacy law.

Vendors, Consultants, and Service Providers

We may disclose your personal information to third-party service providers and contractors who assist us in operating our Services and conducting our business, including:

• AI Model Providers. When you invoke an AI Feature, relevant portions of your Customer Code are transmitted through our proxy server to a third-party AI model provider for inference processing. The AI model provider processes this data to generate responses (code suggestions, explanations, analysis results) that are returned to you through the Software. We do not control the AI model provider's data handling practices; such provider's own terms and policies govern its use of data received through the AI Features.
• Payment Processing. Stripe processes billing and payment card information on our behalf. Stripe's privacy policy governs its collection and use of your payment information.
• Cloud Infrastructure. We use third-party cloud infrastructure providers for hosting our proxy server, backend services, and databases that store account data and usage metadata.
• Authentication Services. We may use third-party authentication providers for user authentication and account management.
• Analytics. We may use third-party analytics providers to help us understand how the Website and Software are used. Analytics data is anonymized or pseudonymized where practicable.
• Email Communications. We may use third-party email service providers to send transactional and marketing communications.

These service providers process personal information on our behalf and in accordance with our instructions and applicable law.

Legal and Safety Disclosures

We may disclose personal information as required or permitted by law, including in the following circumstances:

• With government authorities, law enforcement agencies, or our legal counsel to comply with any court order, law, or legal process, including to respond to any valid government or regulatory request;
• To enforce or apply our EULA, Terms of Use, and other agreements, including to investigate, prevent, or take action regarding potential violations, fraud, or security issues;
• If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of Company, our users, or others; or
• To a buyer, prospective buyer, or other successor, affiliates, advisors, investors, or other relevant parties in the negotiation or effectuation of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of Company's assets (including in connection with any financing or similar transaction).

III. Your Privacy Choices

• Email Marketing Communications. You may opt out of receiving marketing emails at any time by clicking the "unsubscribe" link included in the email or by contacting us as described in Section XII. Please note that you may continue to receive transactional or service-related communications.
• Manage Cookies and Tracking Technologies. You may manage your cookie preferences through our cookie consent tool, available at www.plcforge.ai/cookies, which allows you to accept or reject non-essential cookies and adjust your preferences at any time. You can also manage cookies through your browser settings, and most browsers allow you to block or delete cookies. Please note that disabling certain cookies may affect the functionality of the Website. For users in the European Union, United Kingdom, and Switzerland, non-essential cookies are disabled by default unless you opt in.
• Do Not Track and Universal Opt-Out Signals. Some web browsers may transmit "Do Not Track" ("DNT") signals to the Website. At this time, we do not respond to DNT signals because there is no uniform industry standard governing their interpretation. Separately, we honor universal opt-out preference signals, such as browser- or device-based mechanisms that communicate your choice to opt out of targeted advertising, the sale or sharing of personal information, or certain profiling activities, to the extent required by applicable law.
• Exercising Your Privacy Rights; Questions or Concerns. You may contact us to exercise your privacy rights or to relay any questions or concerns as set forth in Section XII.

IV. How We Protect Your Information

We implement reasonable technical and organizational measures designed to help protect personal information from loss, unauthorized access, use, alteration, or disclosure. These measures include encryption of data in transit, access controls, and secure infrastructure practices. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security. Your security also depends on you. If you have a password for access to your account, you are responsible for keeping it confidential and not sharing it with anyone. While we strive to protect your data, any transmission over the internet is at your own risk, and we are not responsible for circumvention of security measures on or through the Services.

V. External Sites

The Website and Services may contain hyperlinks to third-party websites or services ("External Sites"). We have no control over the privacy practices or the content of any External Sites to which we provide hyperlinks. As such, we are not responsible for the content or the privacy policies of those External Sites. You should check the applicable third-party privacy policy and terms of service when visiting any External Sites.

VI. Children's Information

The Services are intended for business use by individuals who are at least 18 years of age. We do not knowingly collect personal information from children under the age of 13 or, if higher, the age at which an individual is considered a "child" under applicable data protection or privacy laws in your jurisdiction (the "Minimum Age"). If you are under the Minimum Age, do not provide us with personal information. If you believe a child under the Minimum Age has provided us with personal information, please contact us as described in Section XII so we can delete it.

VII. Data Retention

We retain your personal information for as long as reasonably needed to fulfill the purposes for which the personal information was collected, to comply with our legal obligations, to resolve disputes, and to enforce our agreements. Specifically:

• Account Data: Retained for the duration of your account and for ninety (90) days following termination or expiration of the EULA, as set forth in the EULA.
• Billing Records: Retained as required by applicable tax and financial reporting laws.
• Usage Data: Retained for as long as reasonably necessary for billing enforcement, product improvement, and compliance purposes.
• Customer Code: Not retained by Company. Customer Code is processed in transit only through the AI Features and is not stored on our servers.

VIII. International Transfers

Information will be collected and processed by us in the United States. In addition, we may disclose personal information to service providers or other third parties located outside your country of residence, where data protection laws may differ from those in your jurisdiction. Where such disclosures constitute restricted international transfers under applicable law, we rely on appropriate safeguards, which may include adequacy decisions, Standard Contractual Clauses and applicable UK transfer mechanisms, your explicit consent where permitted, or transfers necessary to perform a contract. You may request copies of applicable safeguards by contacting us as set forth in Section XII.

IX. Important Notice to European Users

Data Controller Contact and Status

We act as the data controller for personal information collected through our websites, properties, and communications. This includes identifiers and contact details, commercial records, and device and usage data (including cookies).

European users can contact us in our capacity as controller at:

• Automation Intelligence Labs, Inc.
• Email: support@plcforge.ai
• Telephone: (404) 490-3824

Legal Bases for Processing Your Personal Information

Please see Appendix I for a description of the legal bases for which we process your personal information.

Please note that when we process your personal information on the basis of your consent, you have the right to opt out of such processing at any time — including where we use non-essential cookies, targeted advertising technologies, or electronic marketing communications directed to European users.

Additionally, for processing done on the basis of contractual necessity, if you choose not to provide this information, we may be unable to create your account, process requests or transactions, or deliver the services you request, as applicable.

Your Privacy Rights

If you are in the EU, Switzerland, or the UK, you have the right to:

• Request a copy of the personal information we hold about you (including in a structured, commonly used, machine-readable format where applicable under the right of data portability),
• Request that we transmit your personal information to another controller (where applicable under the right of data portability),
• Request that we correct your data,
• Request that your data be deleted,
• Withdraw your consent, if you have consented to our use of personal information for a specific purpose,
• Request that your data be restricted, and
• Object to the processing of your personal information.

How to Submit Privacy Rights Requests

If you wish to exercise your rights enumerated above, please submit a request to us as set forth in Section XII, subject to the verification procedures set forth therein.

If you are in the EU and have a concern about our processing of personal information that we are not able to resolve, you have the right to lodge a complaint with the data protection authority where you reside. For contact details of your local Data Protection Authority, please see: https://edpb.europa.eu/about-edpb/board/members_en.

If you are in Switzerland and have such concerns, please see the Federal Data Protection and Information Commissioner website at https://www.edoeb.admin.ch/edoeb/en/home.html.

If you are in the UK and have such concerns, please see the Information Commissioner's Office website at https://ico.org.uk/.

X. U.S. State Privacy Laws

Depending on your place of residence, you may have certain rights regarding how we collect, use, and share your personal information under applicable U.S. state privacy laws, including the CCPA/CPRA. These rights may be subject to limitations or exceptions, and not all rights may apply in every circumstance. Subject to applicable law, these rights may include:

• The right to confirm whether we process your personal information and to access such personal information.
• The right to request correction of inaccuracies in your personal information.
• The right to request deletion of your personal information.
• The right to request a copy of certain personal information you have provided to us, where required by law.
• The right to opt out of certain types of processing, including processing for targeted advertising purposes, where applicable.
• The right to opt out of profiling or automated decision-making in furtherance of decisions that produce legal or similarly significant effects, where provided by law.
• The right to opt out of the sale or sharing of personal information, as defined under applicable law.
• The right to limit the use or disclosure of sensitive personal information, where required by law.
• The right to designate an authorized agent to submit a request on your behalf, where permitted by law.
• The right to appeal a decision regarding your privacy rights request, where required by applicable law.
• The right not to receive discriminatory treatment for exercising your privacy rights.

To request to exercise your rights, please contact us as described in Section XII. We may take reasonable steps to verify your identity before responding to your request. We will respond to verified requests within the timeframes required by applicable law.

XI. Changes to This Privacy Policy

This Privacy Policy is effective as of the date stated at the top of this Privacy Policy. We may change this Privacy Policy from time to time with or without notice to you. Any such changes will be posted on this page and reflected by an updated "Last Updated" date above. If we make material changes to how we collect, use, or disclose your personal information, we may provide additional notice, such as by posting a prominent notice on the Website or sending you an email notification where required by applicable law. By continuing to access or use the Services after any updates become effective, you acknowledge the revised Privacy Policy. Please refer back to this Privacy Policy on a regular basis.

XII. How to Contact Us

If you have any questions about this Privacy Policy or to report a privacy issue, please contact us in one of the following ways:

• Email: support@plcforge.ai
• Mailing Address: 285 W Wieuca Rd NE STE 69215, Atlanta, GA 30342

Authorized Agent; Verification Process. If you are a resident of a jurisdiction that affords you the privacy rights detailed in Sections IX and X and you choose to use an authorized agent to exercise your rights, we may deny the request if the agent does not provide proof of valid authorization. To process any request, we must verify your identity by matching the information you provide with our records or by contacting you through a previously provided method. Any data collected for verification will be used solely for that purpose and deleted once verification is complete. In some cases, we may request additional information to confirm your identity and prevent fraud.

Appendix I — GDPR: Personal Information Collected, Purpose for Processing, Legal Basis for Use, and Parties With Whom Shared

The table below summarizes, for each category of personal information we collect, the purposes of processing, the legal basis relied upon under the General Data Protection Regulation ("GDPR") for users in the EEA and United Kingdom, the categories of third parties to whom such information may be disclosed, and the applicable retention period. This Appendix is intended to supplement the detailed descriptions set forth in the body of this Privacy Policy.