Privacy Policy

Kaarta Privacy Policy

Protecting the privacy of users of Kaarta, Inc. (“Kaarta,” “We,” “Us,” or “Our”) products and website is important to Us. Our Privacy Policy (the “Privacy Policy”) is designed to inform you (“You”) about Our collection and use of information in the conduct of Our business. Our Privacy Policy applies to all users of Kaarta products and services (the “Service”). The “Service” includes (a) the Kaarta website (the “Site”), (b) the Kaarta cloud-based platform (“Kaarta Cloud”), and (c) any other services provided to You through the Site or Kaarta Cloud. From time to time, Kaarta may modify this Privacy Policy. Any services and products provided to You by Kaarta directly or through the Service may be governed by the written agreement(s) entered into between You and Kaarta, and, in the event of any conflict between this Privacy Policy and such written agreement, the written agreement shall apply for the services covered by such written agreement.

This Privacy Policy is incorporated into and made a part of Our Terms of Use. If You have not done so already, please also review the Terms of Use. The Terms of Use include provisions that limit Our liability to users and other important terms.

Kaarta adheres to the following policies with regard to Your privacy.


A. “NPI”, Nonpublic Personal Information, is information that is not personally identifiable and that is obtained through Your use of the Service.

B. “PII”, Personally Identifiable Information, is non-public information that is personally identifiable and obtained in connection with providing a product or service to You, including personally identifiable information You provide during the registration process or during Your use of the Service. It may include information such as name, email, phone number and address that You provide to Kaarta. PII does not include information that has been made anonymous or aggregated so that it can no longer be used, whether in combination with other information or otherwise, to contact or identify You.


By using the Service, You are consenting to Our collection, use, processing, and disclosure of Your information as set forth in this Privacy Policy, which may be modified from time to time. You should review this Privacy Policy from time to time so that You are updated on any changes. If You do not wish to consent to Our collection, use, processing and disclosure of Your information, then do not use the Service or any portion thereof.


When You use the Service, Kaarta collects NPI such as Your device’s browser type. Likewise, in order to offer You meaningful products and services and for other reasons, Kaarta may collect PII about You from the following sources:

  • Information available to Us through weblogs about Your traffic on other websites; or
  • Information You give Kaarta on applications or other forms while using the Service, including, without limitation, the information You provide in creating Your account; or
  • Information You send Kaarta via any medium, including, but not limited to the Service, email, telephone, and social media interaction; or
  • Information You, or a third party on Your behalf, send Kaarta to create or authenticate Your account (e.g., Facebook authentication APIs); or
  • If You use a mobile device platform to access the Service or communicate with Kaarta, information transmitted from Your mobile device; or
  • Information purchased from or provided by third parties.


In order to use the Service (apart from the publicly available portion of the Site or Kaarta Cloud), You must provide Kaarta the following information: first name, last name and email address and scanner data. In addition, You may choose to add additional information to Your contact information.

Kaarta may request other information from You during or after the registration process that Kaarta uses to provide better and more customized services to its customers. You acknowledge that this information is personal to You, and by registering on Kaarta, You may allow others, including Kaarta, to identify You and to allow Kaarta to use Your information in accordance with the Terms of Use and this Privacy Policy.

Submitted Content

Content, including laser sensor files point cloud datasets, that You upload to the Service or otherwise provide Kaarta to upload to the Service will not be shared with any third-party, but may otherwise be used, copied, exploited, modified, archived, stored, reproduced, adapted, published, translated, distributed, performed or displayed by Kaarta in accordance with the Terms of Use, any written agreement You enter into with Kaarta, and applicable law.

Contact Forms

If You submit a contact form on the website, that information is not stored, but it is emailed to a Kaarta employee who will then respond to it. Do not put any PII into the form such as social security numbers or any other non-public personal information.

Use of Cookies and Related Technology

A cookie is a small piece of data that is sent to Your browser from a web server and stored on Your device. A cookie cannot read data off Your device or read cookie files created by other sites. Cookies do not damage Your system. Every device accessing the Service is assigned a different cookie. Cookies allow Kaarta to recognize You as a user when You access the Service using the same device and web browser. If You visit Our login page, We will send a temporary cookie to determine if Your browser accepts cookies. This cookie contains no personal data and is discarded when You close Your browser. When You log in, We will also set up several cookies to save Your login information and Your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If You select "Remember Me", Your login will persist for two weeks. If You log out of Your account, the login cookies will be removed. Kaarta also may use this information to better personalize the content that You see while using the Service. Most browser software can be set to reject cookies. However, if You reject Kaarta cookies, certain functionality on the Service may not work correctly or at all. Kaarta may also use web beacons, pixels, anonymous ad network tags, cookies and similar technologies to collect NPI about Your use of the Service and the websites of selected sponsors and advertisers, to collect anonymized, aggregated auditing, research and reporting for advertising purposes, and to collect data related to Your use of special promotions or newsletters. The information that may be collected by web beacons may also allow Kaarta to statistically monitor how many people open Kaarta emails and for what purposes these actions are being taken. Kaarta web beacons will not be used to track Your activity outside of the Service or the websites of Kaarta sponsors. However, because Your web browser requests advertisements and web beacons directly from ad network servers, these networks can view, edit or set their own cookies, just as if You had requested a web page from their site.

Do Not Track: Some web browsers (including Safari, Internet Explorer, Firefox and Chrome) incorporate a “Do Not Track” (“DNT”) or similar feature that signals to websites that a user does not want to have his or her online activity and behavior tracked. If a website that responds to a particular DNT signal receives the DNT signal, the browser can block that website from collecting certain information about the browser’s user. Not all browsers offer a DNT option and DNT signals are not yet uniform. For this reason, many website operators, including Kaarta, do not respond to DNT signals.

Collection of Location Information

When You use the Service, We may collect location data that You provide Kaarta.

Log Files, IP Addresses and Information About Your Device

When You use the Service, Kaarta may automatically receive the URL of the site from which You came and the site to which You are going when You leave the Service. Kaarta may also receive the IP address of Your computer (or the proxy server You use to access the internet), Your computer operating system and type of web browser You are using, Your mobile device, including Your Unique Device Identifier (“UDID”) and mobile operating system, as well as the name of Your ISP or Your mobile carrier. The link between Your IP address and Your PII is not shared with third parties without Your permission, except as described in Section 8. (“When Kaarta May Disclose Your Information”), below.


Kaarta’s Privacy Policy does not apply to (a) any information You may send to Kaarta by email or instant messaging programs, as email and instant messages are not recognized as secure communication forms or (b) information You provide to or that is collected by any third party. Kaarta requests that You do not send any information, which You consider private, to Kaarta by email or instant message.


From time to time, We may disclose the information collected from You, including PII, in accordance with Section 8 (“When Kaarta May Disclose Your Information”), below.

Kaarta uses and/or intends to use PII to:

  • Operate and improve the Service;
  • Track use of the Service;
  • Create Your account
  • Provide You with the Service and other products and services that You may request or that You have expressed interest in, including services provided to You under a written agreement entered into between You and Kaarta;
  • Evaluate Your interest and needs in order to improve the Service and make available other offers, products or services;
  • Evaluate the types of offers, products or services Kaarta makes available to You and potential customers;
  • Facilitate subscription processing, reviews and analysis;
  • Provide customer support;
  • Communicate and provide additional information that may be of interest to You through email or other means, such as special offers, announcements, and marketing materials;
  • Send You reminders, technical notices, updates, security alerts and support and administrative messages, service bulletins, or marketing; and
  • Manage Kaarta’s everyday business needs such as Service administration, forum management, fulfillment, analytics, fraud prevention, enforcement of Kaarta’s corporate reporting obligations, Terms of Use or to comply with the law.

This Privacy Policy does not limit Our use of any NPI, and We reserve the right to use and disclose such information to third parties at Our discretion.


Our policies limit access to un-aggregated user PII that is collected from the Service, to Our employees and agents and the employees and/or agents of Our affiliates and business partners who need the information to fulfill their business responsibilities, and who are under obligations of confidentiality. In some cases, this may require Your information to be sent to other countries. By supplying Your PII to Kaarta, including information supplied through the Service, You consent to Your information being transferred to Kaarta, its affiliates, vendors or agents. Vendors and other outside contractors We engage are subject to Our contractual requirements for safeguarding PII.

Employees and agents of Kaarta must adhere to this Privacy Policy. Our employees receive training about the privacy policies and procedures of Kaarta. We acknowledge that protecting privacy is a key part of Our trusted relationship with Our customers and visitors.

Any employee violating this Privacy Policy may be subject to disciplinary action, up to and including dismissal.

In addition, Kaarta employs commercially reasonable security measures, including advanced technology, to protect PII collected against unauthorized access, disclosure, alteration or destruction. Kaarta reviews and enhances its security systems in a commercially reasonable manner and as it deems necessary. Even with such technology, no web site or database is 100% secure. Kaarta cannot and does not guarantee that such security measures will prevent loss, misuse and/or alteration of information under its control.


You may access the Service on or through a third-party website and/or the Service may contain links to other websites. Any third-party website may have its own privacy policy that is different from this Privacy Policy. The terms of the third-party website privacy policy may conflict with the terms of this Privacy Policy. The terms of this Privacy Policy still apply, even if they conflict with the terms of a third-party website privacy policy.

Kaarta is not responsible for the actions, practices, or content, including but not limited to the privacy practices, of such third-party websites from which You may access the Service or that are linked to in the Service. Kaarta does not guarantee, approve, or endorse any information, material, services, or products contained on these third-party websites. Kaarta is not responsible for any content on sites linked from or to the Service or for obtaining the necessary consent for such third party sites to collect, transmit, or otherwise use Your information.

You understand that such websites may have their own legal documents to which You must agree prior to using and that Kaarta has no control over these legal documents. As always, You understand that it is Your responsibility to verify Your legal use of a website as well as use of information from the website with the corresponding website owner. If You visit the sites of third parties, please be sure to review the privacy policies applicable to those sites.


Except as set forth in this Privacy Policy or as specifically agreed to by You, Kaarta will not disclose any PII as gathered from You through the Service.

A. Kaarta may share PII in limited fashion to Kaarta’s contractors and service providers that perform services on Kaarta’s behalf, including, but not limited to, operation of the Service technology, data analytics, marketing services, and other related services. Unless You have opted-out (see Section 8.D. below) of such sharing, these contractors also may have access to Your email address or mobile phone number to send newsletters or special promotions to You on Kaarta’s behalf or to send emails to You for purposes such as conducting market research on Kaarta’s behalf. Access to Your PII by such contractors and service providers is limited to the information reasonably necessary for the contractor to perform its limited function for Kaarta. Kaarta also contractually requires that such contractors and service providers: 1) protect the privacy of Your PII consistent with this Privacy Policy, and 2) not use or disclose Your PII for any purpose other than providing Kaarta with products and services as required by law.

B. Kaarta may share PII Kaarta collects, as permitted by law, to companies such as credit reporting agencies, or servicing and processing companies, or when required or advised to do so in response to a valid legal requirement to release this information such as a state or federal law, regulation, search warrant, subpoena, or court order; or in special cases, such as in response to a physical threat to You or others, to protect property, or if We determine such disclosure is legally advisable or necessary to defend or assert legal rights or prevent harm, to defend ourselves in litigation. In the event that Kaarta is legally compelled to disclose Your PII to a third party, Kaarta will attempt to notify You unless doing so would violate the law or court order.

C. Kaarta may share PII in accordance with Section 11 (“Transfer of Ownership”), below.

D. If You prefer that Kaarta does not share certain information with third parties, as described above, You can direct Kaarta not to share that information by contacting Us ( Please note that an opt-out with respect to information sharing will not apply to information sharing arrangements described in Sections 8. B or C.

Finally, Kaarta may provide content and services to You through websites and platforms other than those contained in the Service. Kaarta will not disclose Your PII to these third-party websites and platforms without Your consent, but You should be aware that any information You disclose on such sites or platforms is NOT subject to this Privacy Policy.


The Service utilize various information security measures such as internet firewalls, encrypted data transmission, and operating procedures to protect Your PII, accounts, passwords, etc. Your PII is kept completely separate and confidential, unless You have given someone else access to Your PII. If Kaarta provides the capability for You to create a user ID and password, You should protect Your user ID and password and NOT share it with anyone. If You believe Your user ID and password have been compromised and You have trouble changing Your user ID/password on the Service, please contact Us (


Kaarta and its affiliates fully comply with the federal CAN-SPAM Act. You can always opt out of receipt of further email correspondence from Kaarta by contacting Us (


If the entire or substantial ownership of the Service were to change, or in the event of another sale or transfer of some or all of Kaarta’s assets, Your user information, including PII, may be transferred to the new owner so the Service can continue operations. In any such transfer of information, Your user information, including PII, would remain subject to the promises of Kaarta’s then current Privacy Policy. If You prefer that Kaarta does not share Your PII in accordance with this Section 11 (“Transfer of Ownership”), You can direct Kaarta not to share that PII by contacting Us (


Kaarta is headquartered in the United States of America. PII may be accessed by Kaarta or transferred to Kaarta in the United States of America or to Kaarta’s affiliates, business partners, merchants, or service providers elsewhere in the world. Processing Your PII is necessary for Kaarta to perform its obligations under the Terms of Use. Kaarta may also process Your PII for the purpose of a legitimate business interest such as maintaining, improving, and tracking the use of the Service. Kaarta will protect the privacy and security of PII according to Kaarta’s Privacy Policy, regardless of where it is processed or stored.


As of January 1, 2020, the California Consumer Privacy Act of 2018 (“CCPA”) provides California residents with additional privacy rights. Under the current guidelines, Kaarta is exempt from the rules and regulations of the CCPA. If you are a California resident and concerned about the privacy of your personal information please contact Us (


This is Kaarta’s entire Privacy Policy and it supersedes any earlier version. You agree to it every time You use the Service.

If Kaarta makes any material changes to this Privacy Policy, Kaarta will notify You by email or by posting a prominent notice on the Service prior to the change becoming effective. Kaarta encourages You to periodically review this page for the latest information on Kaarta’s privacy practices. Your continued use of the Service constitutes Your agreement to be bound by such changes to this Privacy Policy. Your only remedy, if You do not accept the terms of this Privacy Policy, is to discontinue use of the Service.


Use of the Service is limited to users who are eighteen (18) years of age or older and/or have legal capacity to form a binding contract.


You may be entitled to other rights under the GDPR. These rights are summarized below. We may require You to verify Your identity before We respond to Your requests to exercise Your rights. If You are entitled to these rights, You may exercise these rights with respect to Your PII that We collect and store:

  • the right to withdraw Your consent to data processing at any time (please note that this might prevent You from using certain aspects of the Site, or Kaarta Cloud or Service altogether);
  • the right of access Your PII;
  • the right to request a copy of Your PII;
  • the right to correct any inaccuracies in Your PII;
  • the right to erase Your PII;
  • the right to data portability, meaning to request a transfer of Your PII from Us to any other person or entity as chosen by You;
  • the right to request restriction of the processing of Your PII; and
  • the right to object to processing of Your PII.

You may exercise these rights free of charge. These rights will be exercisable subject to limitations as provided for by the GDPR. Any requests to exercise the above listed rights may be made by contacting Us (

You may also lodge a complaint with the competent Data Protection Authority if You are dissatisfied with the manner in which Your PII is used by Us.


We keep Your PII only as long as necessary for the purposes for which the PII are processed and as permitted by applicable law. For users that register on Our website, We store the personal information they provide in their user profile indefinitely. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

In practice, We delete or anonymize Your PII upon deletion of Your account, unless:

  • We must keep it to comply with applicable law;
  • We must keep it to evidence Our compliance with applicable law;
  • there is an outstanding issue, claim or dispute requiring Us to keep the relevant information until it is resolved; or
  • the information must be kept for Our legitimate business interests, such as fraud prevention and enhancing users’ safety and security. For example, information may need to be kept to prevent a user who was banned for unsafe behavior or security incidents from opening a new account.

Keep in mind that even though Our systems are designed to carry out data deletion processes according to the above guidelines, We cannot promise that all data will be deleted within a specific timeframe due to technical constraints.


You may at any time print, download, or request a printed copy of this Privacy Policy. We will make reasonable efforts to respond promptly to all such requests, but reserve the right to limit such requests to two per year per individual.

If You have any questions that are not answered elsewhere on this Site or Kaarta Cloud, or if You believe that this Privacy Policy has been violated, please contact Us at or Kaarta, 5001 Baum Blvd., Suite 430, Pittsburgh, PA 15213. Our response to such inquiries may be limited to information under Our direct control.