Legal
Policy version history
Auditable change log for every Pulsus legal policy. Entries are append-only — old versions are available on request.
Rewrite under the 2026 multi-jurisdiction structure (GDPR/CCPA/KVKK/PIPL/DPDP/APPI). Explicit camera-frame on-device framing, 24-month measurement retention, 90-day chat transcript rolling window.
Rewrite. Added limitation of liability cap, indemnification, US arbitration + class waiver with 30-day opt-out, governing-law split per jurisdiction, assumption-of-risk clause.
Standalone page. FDA 21 CFR 880.6310 wellness safe-harbour language, cardiac + pregnancy exclusions, crisis resource numbers.
New policy for EU AI Act Art. 50 transparency (2 Aug 2026 effective). Covers memory tiers, GDPR Art. 22 human review, crisis routing, AI-composite testimonial labelling.
New policy with 5-bucket Consent Mode v2 map, server-side CAPI treated as cookie tracking for EU consent, GPC auto-respect for 12 US states.
New policy. 16+ global hard-gate via self-attestation modal; COPPA 22 Apr 2026 final rule avoidance posture.
New policy. Anti-reverse-engineer of rPPG pipeline, scraping prohibition, 3-strike enforcement ladder, DMCA agent.
New page. Named subprocessors (Stripe, Resend, Railway, PostHog, Sentry, Anthropic/OpenAI, FAL, Vercel, Meta) with transfer mechanisms.
New page. CCPA/CPRA Notice at Collection, Limit SPI + Do Not Sell/Share controls, GPC alignment, 2026 annual risk-assessment disclosure.
New TR-localised page. KVKK m.10 required disclosure, biyometrik veri açık rıza vurgusu, Standart Sözleşme aktarım mekanizması, haklarınız m.11.
New page. B2B DPA skeleton referencing SCCs, UK IDTA, Turkey Standart Sözleşme; actual PDF download placeholder pending counsel review.
Material changes trigger at least 30 days' advance notice to EU/UK users and reasonable notice to others, delivered via email or an in-app banner.