Devbrew logo

Privacy Policy

Last updated: September 24, 2025

1. Introduction

Devbrew LLC (“Devbrew,” “we,” “our,” or “us”) respects your privacy. This Privacy Policy explains how we collect, use, share, and safeguard personal data when you visit our websites, contact us, or work with us as a prospect or client.

This Privacy Policy applies to devbrew.ai, subdomains including fintech.devbrew.ai, and any related sites, communications, or services that link to this Policy (“Services”). By using the Services, you agree to this Privacy Policy.

1.1 Who we are

  • Data Controller: Devbrew LLC, a Wyoming limited liability company
  • Registered address: 1027 E 231st St, Apt 2, Bronx, NY, 10466

If we process personal data on behalf of a client under a services agreement, we do so as a processor and the client is the data controller. For website visitors and contact form submissions, Devbrew is the controller.

1.2 Changes to this Policy

We may update this Privacy Policy from time to time. We will post updates on this page with a new “Last updated” date. Your continued use of the Services means you accept the updated Policy.

2. Information We Collect

We collect information directly from you, automatically through your use of the Services, and from third parties.

2.1 Data you provide to us

Contact and Business Inquiry Data

When you submit our contact form or otherwise reach out, we collect:

  • Full name, email address, phone number, job title, company name
  • Your service interest selection, expected timeline, and your message
  • Consent to be contacted about your request
  • Anti-spam honeypot field named “website”; if populated, we treat the submission as automated and may discard it

Client and Contract Data

If you engage Devbrew, we may collect and process additional information to deliver services, for example: statement of work details, billing and invoicing data, and technical specifications you provide.

Voluntary information

Any other information you choose to provide, for example attachments or supporting materials.

2.2 Data from your use of the Services

Usage and device data

We may collect IP address, browser type, device identifiers, operating system, pages visited, referring URLs, and timestamps. This helps us operate, secure, and improve the Services.

Cookies and similar technologies

We use cookies and similar technologies for essential site functionality, analytics, and performance. See Section 7 and our Cookie Notice for details and choices.

2.3 Data from third parties

We may receive information from service providers that support our site and operations, for example analytics, error logging, email delivery, and security tools.

We do not intentionally collect sensitive personal information through the website. Please do not include sensitive information in free-form fields.

3. How We Use Your Information

How we use data depends on how you interact with us.

3.1 Provide and operate the Services

  • Respond to inquiries and provide requested information
  • Evaluate service fit, prepare proposals, and manage projects
  • Authenticate and secure the Services
  • Operate, maintain, and improve site performance and user experience

3.2 Communications

  • Send operational messages about your request, meetings, or deliverables
  • Send service updates, announcements, and administrative notices

You can opt out of non-transactional marketing communications at any time. You cannot opt out of transactional or legal notices.

3.3 Business development and marketing

  • Understand interest in our services and improve positioning
  • Measure the effectiveness of site content and campaigns

We do not sell your personal data.

3.4 Research, development, and quality

  • Improve reliability, security, and usability
  • Debug, monitor performance, and prevent spam or abuse
  • Comply with applicable laws and respond to lawful requests
  • Enforce agreements and protect rights, safety, and property
  • Detect, prevent, and investigate fraud, abuse, or security incidents

If you are in the European Economic Area, the United Kingdom, or Switzerland, we process your personal data under the following legal bases:

  • Consent: For example when you consent to be contacted about your request or accept non-essential cookies.
  • Contract: To take steps at your request prior to entering into a contract and to perform a contract.
  • Legitimate interests: For example to operate and secure our site, prevent fraud, and improve services.
  • Legal obligation: To comply with applicable laws and regulatory requirements.

You can withdraw consent at any time. Where we rely on legitimate interests, you may object to processing.

5. How We Share Information

We do not sell your personal data. We share information only as described below.

5.1 Service providers

We use trusted vendors under contract who act on our behalf and process data only as instructed, for example:

  • Hosting and infrastructure
  • Content delivery networks
  • Email and communications delivery
  • Web analytics and performance monitoring
  • Error logging and security

These providers receive only what is necessary to perform their services and are obligated to protect your data.

We may disclose information if required by law or in good faith belief that disclosure is reasonably necessary to:

  • Comply with legal process or lawful requests
  • Enforce agreements and policies
  • Protect the rights, property, or safety of Devbrew, our clients, or others
  • Detect and prevent fraud, security, or technical issues

Where permitted, we will attempt to notify you of legal requests that affect your information.

5.3 Business transfers

If Devbrew is involved in a merger, acquisition, financing, or sale of assets, your information may be transferred as part of that transaction. The recipient will continue to process your data consistent with this Policy.

5.4 Client relationship processing

When we act as a processor for a client, we share or process personal data only as directed by the client and according to the applicable agreement.

6. Your Choices and Rights

Your rights depend on your location. We will respond to requests as required by applicable law.

6.1 Access, correction, deletion

You may request access to personal data we hold about you, request correction of inaccurate data, or request deletion. See the Contact Us section.

6.2 Restriction and objection

You may request that we restrict certain processing or object to processing based on our legitimate interests.

6.3 Portability

You may request a copy of personal data you provided in a machine-readable format where technically feasible.

6.4 Marketing choices

You can opt out of marketing emails by using the unsubscribe link in the email or by contacting us. We may still send transactional or legal notices.

6.5 California privacy rights

If you are a California resident, the CCPA provides the rights to know, access, correct, delete, and to not be discriminated against for exercising these rights. Devbrew does not sell or share personal information for cross-context behavioral advertising as defined by the CCPA. To exercise rights, please see the Contact Us section and specify you are a California resident making a CCPA request.

Categories we collect: identifiers, professional or employment information, internet or network activity information, geolocation based on IP, and inferences drawn from usage for service improvement.

Sources: you, your device, and service providers.

Purposes: those listed in Sections 3 and 5.

Retention: described in Section 8.

6.6 EEA, UK, and Swiss rights

If you are in the EEA, UK, or Switzerland, you have the rights of access, rectification, erasure, restriction, objection, and portability. You may also lodge a complaint with your local supervisory authority.

7. Cookies and Similar Technologies

We use cookies and similar technologies to:

  • Essential: run core site functions and security
  • Analytics and performance: understand usage and improve content
  • Preferences: remember your choices

You can control cookies through your browser settings. Blocking some cookies may affect site functionality. Where required, we will request consent for non-essential cookies.

8. Data Retention

We retain personal data for as long as needed to fulfill the purposes described in this Policy, including:

  • Contact and inquiry records: typically up to 24 months after last interaction, unless you request deletion or a longer period is required by law
  • Contract and billing records: retained as required for legal, tax, and accounting purposes
  • Security and logs: retained for a reasonable period for security and auditing

We may retain aggregated or de-identified information for analytics and improvement.

9. Security

We use reasonable technical and organizational measures designed to protect personal data, including encryption in transit, access controls, and monitoring. No method of transmission or storage is completely secure. We cannot guarantee absolute security.

10. International Data Transfers

We process data both inside and outside of the United States and rely on legally-provided mechanisms to lawfully transfer data across borders. Countries where we process data may have laws which are different from, and potentially not as protective as, the laws of your own country.

11. Children’s Privacy

Our Services are not directed to individuals under 18. We do not knowingly collect personal data from children. If you believe a child has provided personal data, contact us and we will delete it.

Our site may link to third-party websites. Those sites have their own privacy policies. We are not responsible for their content or privacy practices.

13. Do Not Track

Some browsers offer a Do Not Track setting. We do not respond to Do Not Track signals at this time. You can control cookies using the methods in Section 7.

14. Contact Us

If you have questions, requests, or complaints regarding this Privacy Policy or our data practices, contact us at hello@devbrew.ai

15. Supplemental Notices

15.1 When Devbrew is a processor

For client projects where we process personal data on behalf of a client, we do so under the client’s instructions and the applicable agreement. Clients are responsible for providing appropriate privacy notices and obtaining any required consents from individuals.

15.2 Anti-spam and automated abuse

We use safeguards to prevent spam and automated abuse, including a hidden honeypot field in the contact form. Submissions that indicate automation may be blocked or discarded to protect our systems and users.