Privacy Policy

Last Updated: March 6, 2026

Unnbound Inc, doing business as Temper (“Temper,” “we,” “us,” or “our”) operates the website ontemper.com (the “Site”) and provides AI-powered supply chain integration services (the “Service”). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you visit our Site or use our Service.

By accessing our Site or using our Service, you acknowledge that you have read and understood this Privacy Policy.

1. Information We Collect

1.1 Information You Provide Directly

• Contact Information: Name, email address, company name, phone number, and job title when you book a demo, fill out a contact form, or communicate with us.
• Account Information: Credentials and profile details when you create an account to use our Service.
• Communications: Any messages, feedback, or support requests you send to us.

1.2 Information Collected Automatically

• Usage Data: Pages visited, time spent on pages, click patterns, and navigation paths.
• Device Information: Browser type, operating system, device type, screen resolution, and language preferences.
• Log Data: IP address, access times, referring URLs, and error logs.
• Cookies and Tracking Technologies: We use cookies, pixels, and similar technologies as described in Section 6 below.

1.3 Information from Third Parties

• Scheduling Platforms: When you book a demo through our integrated scheduling tool (Cal.com), we receive the information you provide during booking.
• Analytics Providers: We receive aggregated and individual usage data from analytics services such as Google Analytics.
• Authentication Providers: When you sign in to the Service, we receive authentication data from our identity management provider (Clerk).

2. How We Use Your Information

We use the information we collect for the following purposes:

• Providing our Service: To operate, maintain, and improve our AI-powered supply chain integration platform, including processing your data through AI models to generate integration workflows.
• Communication: To respond to your inquiries, schedule demos, and send service-related notices.
• Analytics and Improvement: To understand how our Site and Service are used and to improve user experience.
• Security: To detect, prevent, and address fraud, abuse, or technical issues.
• Legal Compliance: To comply with applicable laws, regulations, and legal processes.
• Marketing: With your consent, to send you information about our products, features, and events. You may opt out at any time.

3. Legal Bases for Processing (GDPR)

If you are located in the European Economic Area (EEA) or the United Kingdom, we process your personal data based on the following legal grounds:

• Consent: Where you have given us explicit consent (e.g., for marketing communications or non-essential cookies).
• Contractual Necessity: Where processing is necessary to perform a contract with you or to take pre-contractual steps at your request (e.g., providing our Service).
• Legitimate Interests: Where processing is necessary for our legitimate business interests, such as improving our Service, ensuring security, and conducting analytics, provided these interests are not overridden by your rights.
• Legal Obligation: Where processing is necessary to comply with a legal obligation.

4. How We Share Your Information

We do not sell your personal information. We may share your information with:

• Service Providers: Third-party vendors who help us operate our business (e.g., hosting, analytics, scheduling, authentication, AI model providers). These providers are contractually bound to protect your data and use it only for the purposes we specify.
• Legal Requirements: When required by law, regulation, legal process, or governmental request.
• Business Transfers: In connection with a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction.
• With Your Consent: In any other circumstance where you have given us permission.

4.1 Third-Party Services We Use

Service	Purpose	Privacy Policy
Amazon Web Services (AWS)	Cloud infrastructure and hosting	AWS Privacy Policy
Vercel	Frontend and backend application hosting	Vercel Privacy Policy
Clerk	User authentication and identity management	Clerk Privacy Policy
GitHub	Code repository hosting for workflow definitions	GitHub Privacy Policy
Google (Gemini)	AI/ML services for workflow generation	Google Privacy Policy
Anthropic (Claude)	AI/ML services for workflow generation	Anthropic Privacy Policy
LangChain (LangSmith)	Agent observability and monitoring	LangChain Privacy Policy
Google Analytics (via GTM)	Website analytics and usage tracking	Google Privacy Policy
Cal.com	Demo scheduling	Cal.com Privacy Policy
Webflow	Marketing website hosting	Webflow Privacy Policy

5. International Data Transfers

Your personal data may be transferred to and processed in countries other than your country of residence, including the United States, where our servers and service providers are located. When we transfer data outside the EEA or UK, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) approved by the European Commission.
• The UK International Data Transfer Addendum, where applicable.
• Adequacy decisions where applicable.
• Other legally recognized transfer mechanisms.

6. Cookies and Tracking Technologies

We use the following categories of cookies:

• Essential Cookies: Required for the Site to function properly. These cannot be disabled.
• Analytics Cookies: Help us understand how visitors interact with our Site (e.g., Google Analytics). These are only set with your consent.
• Functional Cookies: Enable enhanced functionality and personalization.
• Marketing Cookies: Used to deliver relevant advertisements. These are only set with your consent.

You can manage your cookie preferences at any time through our cookie consent banner or by adjusting your browser settings.

7. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. Specifically:

• Contact and account data: Retained for the duration of our business relationship and for up to 3 years after your last interaction.
• Analytics data: Retained in identifiable form for up to 26 months.
• Communication records: Retained for up to 3 years.

When data is no longer needed, it is securely deleted or anonymized.

8. Your Rights

8.1 Rights Under GDPR (EEA/UK Residents)

If you are in the EEA or UK, you have the right to:

• Access: Request a copy of the personal data we hold about you.
• Rectification: Request correction of inaccurate or incomplete data.
• Erasure: Request deletion of your personal data (“right to be forgotten”).
• Restriction: Request that we limit the processing of your data.
• Portability: Receive your data in a structured, machine-readable format.
• Objection: Object to processing based on legitimate interests or for direct marketing.
• Withdraw Consent: Withdraw consent at any time where processing is based on consent.
• Lodge a Complaint: File a complaint with your local data protection authority.

8.2 Rights Under CCPA/CPRA (California Residents)

If you are a California resident, you have the right to:

• Know: Request disclosure of the categories and specific pieces of personal information we have collected about you.
• Delete: Request deletion of your personal information, subject to certain exceptions.
• Correct: Request correction of inaccurate personal information.
• Opt Out of Sale/Sharing: We do not sell or share your personal information for cross-context behavioral advertising.
• Non-Discrimination: You will not be discriminated against for exercising your privacy rights.

To exercise any of these rights, please contact us at the details provided in Section 12 below. We will respond to verified requests within 30 days (GDPR) or 45 days (CCPA/CPRA).

9. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including encryption in transit (TLS/SSL) and at rest, role-based access controls, multi-factor authentication, regular security assessments, and secure data storage practices. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

10. Children’s Privacy

Our Site and Service are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly. If you believe we have inadvertently collected information from a child, please contact us immediately.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the “Last Updated” date. We encourage you to review this policy periodically. For significant changes, we may also notify you via email or a prominent notice on our Site.

12. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

• Email: contact@ontemper.com
• Address: Unnbound Inc (dba Temper), 1 Sansome St, Suite 1400, San Francisco, CA 94104
• Website: ontemper.com

If you are in the EEA and are unsatisfied with our response, you have the right to lodge a complaint with your local supervisory authority.