DIYAI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our conversational AI agent software and related services (collectively, the "Service").
We take your privacy seriously and have implemented robust measures to ensure the security and confidentiality of your data. By accessing or using our Service, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.
Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the Service.
We collect several types of information from and about users of our Service, including:
We may collect personally identifiable information, such as:
We automatically collect certain information when you access or use our Service:
When you use our AI agent to manage customer communications, we process:
We use the information we collect for various business and operational purposes:
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Providing and improving the Service | Personal information, usage data, communication data | Performance of contract |
| Processing transactions | Personal information, billing information | Performance of contract |
| Customer support | Personal information, communication data | Legitimate interest |
| Marketing and communications | Personal information, usage data | Consent or legitimate interest |
| AI training and improvement | Usage data, communication data (anonymized) | Legitimate interest |
| Security and fraud prevention | Personal information, usage data | Legal obligation, legitimate interest |
While we may use anonymized data to improve our AI models, you can opt out of having your data used for training purposes at any time through your account settings or by contacting our support team.
We implement robust security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction:
All data is encrypted in transit using TLS and at rest using AES-256 encryption standards.
Strict access controls and authentication mechanisms limit data access to authorized personnel only.
Our services run on AWS infrastructure with comprehensive security protocols and compliance certifications.
Continuous monitoring systems detect and respond to suspicious activities and potential security threats.
Despite our best efforts, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. You are responsible for maintaining the confidentiality of your account credentials.
Depending on your location, you may have certain rights regarding your personal information:
You can request copies of your personal information that we hold.
You can ask us to correct inaccurate personal information or complete incomplete information.
You can ask us to delete your personal information in certain circumstances.
You can ask us to limit the processing of your information in certain circumstances.
You can ask us to transfer your information to another organization or to you.
You can object to the processing of your personal information in certain circumstances.
To exercise any of these rights, please contact us using the information provided in the "Contact Information" section. We will respond to your request within 30 days.
We may need to verify your identity before processing your request. In some cases, we may have legal grounds to deny your request, but we will explain our reasoning if this occurs.
We may share your information with third parties in the following circumstances:
We may employ third-party companies and individuals to facilitate our Service, provide the Service on our behalf, perform Service-related tasks, or assist us in analyzing how our Service is used.
These third parties have access to your personal information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
If DIYAI is involved in a merger, acquisition, or asset sale, your personal information may be transferred. We will provide notice before your personal information is transferred and becomes subject to a different Privacy Policy.
We may disclose your personal information if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).
We may share your personal information with third parties when we have obtained your explicit consent to do so.
Our current key third-party service providers include:
We are committed to complying with applicable data protection laws and regulations:
For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR). This includes:
For healthcare customers in the United States, we offer HIPAA-compliant services:
For California residents, we comply with the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):
If you have any questions about this Privacy Policy or our data practices, please contact us:
123 AI Boulevard, Suite 500
San Francisco, CA 94105
privacy@diyai.com
+1 (800) 555-DIYAI
Data Protection Officer: Jane Smith
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top of this Privacy Policy.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
For significant changes, we will provide a more prominent notice, which may include email notification to our registered users.
If you have questions about our privacy practices or need assistance, our team is here to help.
Contact our privacy team