Privacy Policy
This English translation is provided for reference only. In case of any discrepancy, the Japanese version shall prevail.
Sola K.K. (the "Company") recognizes the importance of protecting personal information in connection with "Blue," the web application deployment and publishing platform (the "Service"). We have established the following privacy policy to ensure proper handling and protection of your personal information.
1. Information We Collect
We collect the following information in connection with the Service:
| Type of Information | When Collected |
|---|---|
| Email address | Account registration |
| Password (stored as a hash) | Account registration |
| Username | Account settings |
| IP address | Service usage (access logs) |
| Uploaded files | App deployment |
| Inquiry details (including company name, name, phone number) | Contact form submission |
| Feedback content | Feedback submission |
| AI Build conversation content / prompts | When using AI Build |
| Email address for the waitlist | Waitlist registration when at capacity |
2. Purpose of Use
We use collected personal information for the following purposes:
- Providing, maintaining, and improving the Service
- Account authentication and management
- Responding to inquiries
- Analyzing usage and improving service quality
- Referring to AI Build conversation content / prompts internally for quality improvement and issue diagnosis (we do not provide them to third parties as training data for AI models)
- Detecting and preventing unauthorized use
- Compliance with applicable laws
3. Disclosure to Third Parties
We do not disclose your personal information to third parties except in the following cases:
- With your consent
- As required by law (court orders, law enforcement requests, etc.)
- When necessary to protect the life, body, or property of an individual
We do not sell or share personal information for advertising purposes.
Use of External Services (Processing on Our Behalf)
To provide the Service, we use the following external services. Each is a delegation of processing on our behalf; none is used for advertising or sold.
- AI providers (Anthropic / OpenAI, etc.): To generate output in AI Build, the content you enter is sent to AI providers. This is a delegation of generation processing, often routed through providers located overseas. The content sent is not used for advertising purposes.
- Google Analytics 4 (GA4) / Google Search Console: Used on public marketing pages (landing, pricing, support, and other surfaces accessible without sign-in) to understand site usage. GA4 does not run on signed-in surfaces (Console / AI Build / Settings / System Admin / Dashboard). In the future we plan to migrate to a self-hosted analytics platform (such as Matomo); this policy will be updated at that time.
- Sign-in with an external account (Google / Microsoft): If you choose "Continue with Google" or "Continue with Microsoft," we use the respective provider's OAuth to verify your identity. We receive only an account identifier and your email address (including its verification status where provided). We do not access your password, contacts, calendar, or similar data, and we do not store access tokens. After sign-in, authentication is handled by a session we issue. Microsoft supports both work/school and personal accounts.
4. Use of Cookies
The Service uses cookies for session management and maintaining user experience.
- Session cookies: Used to maintain login state. Deleted when the browser is closed.
- App authentication cookies: Used for access authentication to password-protected apps.
- Analytics cookies (public pages only): The Google Analytics 4 integration described above may set cookies such as `_ga`. These cookies are governed by Google's terms and are not set on signed-in surfaces.
We do not use cookies of our own for tracking or behavioral analysis, and we do not directly share cookie information with third parties.
5. Data Security
We implement the following measures to prevent leakage, loss, or damage of personal information:
- Password hashing
- HTTPS encryption for all communications
- Container network isolation per app
- Proper access log management and rotation
- Security scanning
6. Data Retention and Deletion
- After account withdrawal, your data will be deleted within a certain period. Restoration after withdrawal is not available to you as a user (we may retain data internally for a limited period for fraud prevention, recovery, and legal compliance).
- Access logs are retained for a specified period for safe operation and fraud prevention, then deleted.
- Information required to be retained by law will be kept for the prescribed period before deletion.
Notwithstanding the above, we will respond to a formal request to suspend use or erase your personal information (Section 7) after verifying your identity.
7. Your Rights
You may request the following from the Company:
- Notification of the purpose of use of your personal information
- Disclosure of your personal information
- Correction, addition, or deletion of your personal information
- Suspension of use or erasure of your personal information
Please contact us at the address below. We will respond within a reasonable period after verifying your identity.
8. Apps Deployed by Users
External services (such as Google Analytics or other tracking tools) used within Apps deployed on the Service are implemented at the discretion of the App's User. The Company is not involved in and assumes no responsibility for such services.
9. Amendments
The Company may amend this Policy as necessary. Any amendments will be promptly announced on the Service.
10. Contact
For inquiries regarding the handling of personal information, please contact:
Sola K.K.
9F, VORT Suehirocho II, 6-14-3 Sotokanda, Chiyoda-ku, Tokyo, Japan
Representative: Keisuke Yoshimura
Email: contact@sola-air.com
Effective: March 25, 2026 — Sola K.K.