Legal & Policies

Foundable is a product of Autono Labs, Inc., a Delaware C-corporation. Throughout this site, "Foundable" refers to the product; "Autono Labs" refers to the legal entity that operates it and is the counterparty to every contract on this page. Legal, privacy, and security correspondence uses @autono.sh email handles (matching the legal entity); product email comes from @foundable.now. Mail addressed to Autono Labs, Inc. (re: Foundable) at the postal address below also reaches us.

• Terms of ServiceEveryone using Foundable

  The contract between you and Foundable — what we promise, what we don't, and the rules for using the product.

• Privacy PolicyEveryone using Foundable

  What data we collect, how we use it, who we share it with, and the rights you have over it (GDPR / CCPA).

• Data Deletion InstructionsUsers and platform reviewers

  How to delete your Foundable account data or request deletion of data shared through a connected platform app.

• Acceptable Use PolicyEveryone using Foundable

  What you can't do with the product — incorporating Anthropic's usage policy by reference.

• Refund & Dispute PolicyAnyone who pays for Foundable

  How refunds work for subscriptions, credits, and pass-through purchases, and how to raise a billing dispute.

• AI DisclosureOperators and reviewers

  What the AI does, what model powers it, what its limits are, and where humans need to stay in the loop.

• Domain Holding AgreementTeams registering domains through Foundable

  Terms for domains registered through Foundable Domains and held in trust through Foundable's Cloudflare registrar account.

• Cookie & Tracking NoticeVisitors to foundable.now

  Which cookies and tracking technologies we use and how to control them.

• SecurityProcurement and security teams

  How we protect chat content, OAuth tokens, and account credentials. Architecture, encryption, access control, incident response.

• SubprocessorsProcurement and DPO teams

  Third-party service providers that process customer data on our behalf — names, locations, data categories.

• Data Processing AddendumCustomers in the EU/UK or with regulated data

  GDPR Article 28 processor terms, including SCCs and the UK International Data Transfer Addendum.

• Responsible Disclosure PolicySecurity researchers

  Safe-harbor terms for reporting vulnerabilities, scope, and what to expect after you submit a finding.

• DMCA Notice & TakedownCopyright holders

  How to submit a copyright takedown notice or counter-notice under U.S. law.

The right inbox depends on the topic:

• General legal — legal@autono.sh
• Privacy questions and rights requests — privacy@autono.sh
• Security questions and vulnerability reports — security@autono.sh
• Acceptable-use violations and abuse — abuse@autono.sh
• Copyright takedowns (DMCA) — dmca@autono.sh
• Product feedback — feedback@autono.sh

Each policy carries a "Last updated" date at the top. Material changes are surfaced in-product (a banner or dialog the first time you use the product after the change) and, for changes that affect existing customers, by email at least 30 days before the change takes effect.

To subscribe to subprocessor change notifications, see the instructions on /subprocessors.