Privacy Policy

Last Updated: January 21, 2026

1. Introduction

Thanks for your interest in SimAtomic ("SimAtomic," "we," "our," or "us")!

This Privacy Policy ("Policy") explains how we collect, use, disclose, and protect information that identifies you or could reasonably be used to identify you ("Personal Information") when you visit www.simatomic.com (the "Site") or use SimAtomic's products and services, including our browser-based molecular simulation platform, related applications (including app.simatomic.com and/or portal.simatomic.com), APIs, documentation, and support channels (collectively, the "Services").

This Policy does not apply to information that is not legally considered Personal Information, such as information that has been de-identified or aggregated so it can't reasonably be linked to you. Where permitted by law, we may de-identify information and use it for purposes described in this Policy.

By using the Site or Services, you agree to the practices described in this Policy.

2. Information We Collect and How We Use It

We collect information in three main ways:

(1) information you provide to us,

(2) information we collect automatically when you use the Site or Services, and

(3) information we receive from third parties.

A. Information you provide to us

Depending on how you interact with SimAtomic, you may provide:

  • Account information: name, email address, password (stored in hashed form where applicable), organization/company, role/title, and account preferences.
  • Early access / demo / sales requests: contact details and any information you include in your request (e.g., use case, organization, project context).
  • Customer support and communications: information you share when you email us, submit a ticket, or otherwise communicate with us.
  • Billing information (if you purchase Services): billing contact information, billing address, tax information (if applicable), and transaction metadata. Payment card information is typically collected and processed by a third-party payment processor; we generally do not store full payment card numbers on our systems.
  • Content you upload or generate through the Services ("Customer Content"): files, structures, parameters, inputs/outputs, reports, and results you submit to or generate within the Services (for example, simulation inputs and outputs). Customer Content may include sensitive or confidential research data. We treat Customer Content as belonging to you (or your organization) and use it to provide the Services, including running jobs, displaying results, and providing support.

How we use this information:

  • To create and administer your account and provide the Services.
  • To run computations and return results you request.
  • To respond to requests, provide support, and communicate with you about the Services.
  • To send service-related messages (e.g., security alerts, important updates, billing notices).
  • To send marketing communications (where permitted by law). You can opt out of marketing emails at any time by using the unsubscribe link or contacting us.

B. Information we collect automatically

When you visit the Site or use the Services, we may automatically collect:

  • Usage data: pages or screens viewed, features used, actions taken, time spent, and navigation patterns.
  • Device and technical data: IP address, device type, operating system, browser type/version, language settings, and approximate location inferred from IP address.
  • Log and security data: access logs, authentication events, error reports, and other diagnostic data used to maintain reliability and security.

How we use this information:

  • To operate, maintain, and improve the Site and Services.
  • To monitor performance, diagnose issues, and debug.
  • To secure the Services, detect fraud or abuse, and protect users and SimAtomic.

C. Cookies and similar technologies

We use cookies and similar technologies (such as pixels, web beacons, local storage, and server logs) to:

  • Enable essential Site/Service functionality (e.g., authentication and session management).
  • Remember preferences.
  • Understand usage and improve the Site/Services.
  • Support security and fraud prevention.

You can control cookies through your browser settings. Some features of the Site or Services may not function properly if cookies are disabled.

D. Information from third parties

We may receive Personal Information from third parties such as:

  • Identity/authentication providers (e.g., if you sign in using a single sign-on provider).
  • Service providers that help us with analytics, infrastructure, security, communications, and payments.
  • Business partners in the context of an introduction you requested or authorized.

We use this information consistent with this Policy and for the purposes described above.

E. De-identified and aggregated information

Where permitted by law, we may de-identify or aggregate information so it no longer identifies you. Once de-identified, it is not treated as Personal Information under this Policy, and we do not attempt to re-identify it unless required by law.

3. How We Share and Disclose Personal Information

We do not sell your Personal Information.

We may share Personal Information in the following circumstances:

A. Service providers ("processors")

We may share Personal Information with trusted third-party service providers who help us operate the Site and Services, such as:

  • Cloud hosting, storage, and compute infrastructure providers
  • Security monitoring and fraud prevention providers
  • Customer support tooling
  • Email and communications providers
  • Analytics providers
  • Payment processors (if applicable)

These providers are authorized to use Personal Information only as needed to provide services to SimAtomic and are required to protect it through contractual obligations.

B. Within your organization (business accounts)

If you use the Services through an organization account, authorized administrators of your organization may be able to access and manage certain information associated with your account (such as user management and billing administration). Your organization's own policies may also apply.

C. Legal, safety, and enforcement

We may disclose information if we believe in good faith that disclosure is necessary to:

  • Comply with applicable law, regulation, legal process, or governmental request
  • Protect the rights, property, or safety of SimAtomic, our users, or others
  • Detect, prevent, or address fraud, security, or technical issues
  • Enforce our agreements and policies

D. Business transfers

If SimAtomic is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, Personal Information may be transferred as part of that transaction. We will take reasonable steps to ensure the information remains protected and subject to appropriate confidentiality protections.

E. With your direction or consent

We may share information when you ask us to, direct us to, or otherwise consent to the sharing.

4. How We Protect Personal Information

We use a combination of administrative, technical, and physical safeguards designed to protect Personal Information from unauthorized access, loss, misuse, alteration, or disclosure. These may include access controls, encryption in transit, monitoring, and least-privilege practices.

No security program can guarantee absolute security. You are responsible for maintaining the confidentiality of your credentials and for any activity occurring under your account.

5. Children's Privacy

The Site and Services are not intended for individuals under 18, and we do not knowingly collect Personal Information from anyone under 18. If you believe a minor has provided Personal Information to SimAtomic, please contact us and we will take steps to delete it.

6. Data Retention

We retain Personal Information only for as long as necessary to:

  • Provide the Services and maintain your account
  • Meet legal, accounting, or reporting obligations
  • Resolve disputes and enforce our agreements
  • Maintain security and prevent fraud

When information is no longer needed for these purposes, we will delete it or de-identify it where feasible and permitted by law. Backup copies may persist for a limited period in accordance with our backup and disaster recovery processes.

7. Supplemental Terms for Certain Regions

A. Europe (EEA), Switzerland, and the United Kingdom

If you are located in the European Economic Area ("EEA"), Switzerland, or the UK, SimAtomic processes Personal Information as a "controller" for most Site and product operations (and may process as a "processor" when providing Services to an organization under a separate agreement).

Legal bases for processing may include:

  • Contract: processing necessary to provide the Services you request.
  • Legitimate interests: operating, securing, and improving the Services.
  • Consent: where required (e.g., certain marketing communications or cookie categories, depending on jurisdiction).
  • Legal obligation: where we must comply with law.

International transfers:

If we transfer Personal Information outside the EEA/UK/Switzerland, we use appropriate safeguards, such as Standard Contractual Clauses, and additional safeguards where required.

B. California Privacy Notice (CCPA/CPRA)

This section applies to California residents to the extent the California Consumer Privacy Act, as amended by the CPRA ("CCPA"), applies.

1) "Sale" and "Sharing"

SimAtomic does not "sell" Personal Information and does not "share" Personal Information for cross-context behavioral advertising (as those terms are defined under the CCPA).

2) Categories of Personal Information

SimAtomic may collect and disclose the following categories of Personal Information for business purposes, as defined under the California Consumer Privacy Act (CCPA): Identifiers (such as name, email address, IP address, and account identifiers) are collected and disclosed for business purposes; California Customer Records categories (such as name, contact information, and billing information where applicable) are collected as applicable and disclosed for business purposes; Protected classification characteristics (such as race, religion, or similar attributes) are not collected and not disclosed; Commercial information (such as subscriptions or transaction information, where applicable) is collected as applicable and disclosed for business purposes; Biometric information is not collected and not disclosed; Internet or other network activity information (such as interaction with the Site or Services) is collected and disclosed for business purposes; Geolocation data is collected in approximate form via IP address and disclosed in a limited manner for security and operational purposes; Sensory data (audio or visual information) is not collected unless you voluntarily provide it, and if provided, it may be disclosed as applicable for business purposes; Professional or employment-related information (such as company name or job title) is collected as applicable and disclosed for business purposes; Education information protected under FERPA is not collected and not disclosed; and Inferences (such as limited usage patterns used to improve the Services) are collected in a limited manner and are not disclosed except as applicable for internal business purposes.

3) Your California rights

Subject to certain exceptions, you may have the right to:

  • Know/access the Personal Information we collected about you
  • Delete Personal Information
  • Correct inaccurate Personal Information
  • Receive Personal Information in a portable format
  • Not be discriminated against for exercising your rights

To exercise these rights, contact us at info@simatomic.com. We will verify your request (which may require confirming certain account or identity details). If you use the Services through an organization, we may refer you to your administrator or handle requests consistent with the organization's instructions and applicable law.

Authorized agents:

You may authorize an agent to make a request on your behalf. We may require proof of authorization and verification of your identity.

Appeals:

If we deny your request, you may contact us to appeal.

Global Privacy Control (GPC):

Because we do not sell or share Personal Information for cross-context behavioral advertising, we do not treat GPC as an opt-out preference signal for selling/sharing.

8. Your Rights and Choices

Depending on where you live, you may have rights to:

  • Access your Personal Information
  • Correct or update it
  • Request deletion
  • Object to or restrict certain processing
  • Request portability
  • Withdraw consent (where processing is based on consent)

You can also:

  • Opt out of marketing emails via the unsubscribe link or by contacting us.
  • Control cookies via your browser settings.

To exercise applicable rights, contact us at info@simatomic.com. We will respond in accordance with applicable law.

9. International Transfers

SimAtomic may process and store information in countries other than where you live, including the United States or other locations where SimAtomic or its service providers operate. Data protection laws may differ by jurisdiction. We take steps to protect Personal Information when it is transferred internationally, as described in this Policy.

10. Changes to This Privacy Policy

We may update this Policy from time to time. If we make material changes, we will post an updated version on the Site and update the "Last Updated" date above. If required by law, we will provide additional notice (such as by email or in-product notification).

11. Contact Us

If you have questions, concerns, or requests related to this Policy or your Personal Information, contact us at:

SimAtomic
Email: info@simatomic.com
(You may also include a mailing address here if desired for compliance/operational purposes.)