Authentic AV Privacy Policy

Last Updated: February 18, 2026

At Authentic AV, we build “Local-First” hardware. We believe your data should stay on your network whenever possible. This policy explains the limited data we collect to keep your systems running.

1. Data We Collect & Why

We only collect data that is strictly necessary to maintain your hardware and provide cloud services.

  • Heartbeat Data: Upon startup and periodically thereafter, your CX-1 controller sends a “heartbeat” to our servers. This includes the Serial Number, Firmware Version, and IP Address. We use this to ensure your system is secure and up to date.
  • System Configurations: If you use our cloud-tier services, we store a backup of your endpoint configurations and user-defined labels so you can restore them if your hardware is replaced.
  • Account Information: We collect your name, email, and company name when you register for a free or paid Authentic AV account.

2. Taiwan & US Compliance (International Transfers)

  • Taiwan PDPA: As our manufacturing and some operations are in Taiwan, we comply with the Taiwan Personal Data Protection Act. We do not transfer your data outside of our secure cloud infrastructure without your explicit consent.
  • California Privacy Rights (CCPA/CPRA): We honor Global Privacy Control (GPC) signals. If your browser sends a “Do Not Track” or GPC signal, our website and cloud dashboard will respect that request automatically.

3. No “Dark Patterns” & Your Rights

We do not use “dark patterns” to trick you into sharing data.

  • Easy Opt-Out: In 2026, we ensure that opting out of data sharing is just as easy as opting in. You can request the deletion of your cloud-stored data at any time through your dashboard.
  • Right to Know: You can request a copy of every piece of data we have collected about your systems since January 1, 2022.
  • No Sale of Data: We do not sell your personal or system data to third parties. Period.

4. Data Retention & Security

  • Encryption: All data sent from your CX-1 to our cloud is encrypted using TLS 1.3 or higher. Data at rest is encrypted using AES-256.
  • Retention: We keep heartbeat logs for 12 months for troubleshooting purposes. Account data is kept as long as your account is active. If you close your account, all associated cloud backups are purged within 30 days.

5. Contact Information

If you have questions about your privacy, please contact our team: Email: privacy@authentic-av.com