Privacy Policy

1. Introduction and Scope

Welcome to Aiplicity ("we," "our," or "us"). We are committed to protecting your privacy and ensuring that your personal information is handled in a safe, transparent, and responsible manner. This Comprehensive Privacy Policy outlines how we collect, process, use, store, and protect your data when you access or use our Platform-as-a-Service (PaaS), websites, mobile applications, AI SEO bots, CRM systems, social media automation tools, and any related services (collectively, the "Services").

By registering for an account or using our Services, you explicitly consent to the data practices described in this document. If you disagree with any aspect of this policy, you must discontinue your use of the Services immediately.

2. Definitions

For the purposes of this Privacy Policy:

• "Personal Data" means any information relating to an identified or identifiable natural person.
• "Processing" means any operation performed on Personal Data, such as collection, recording, organization, structuring, storage, adaptation, or deletion.
• "Controller" means the entity that determines the purposes and means of the processing of Personal Data. Aiplicity acts as a Controller for account data.
• "Processor" means the entity which processes Personal Data on behalf of the Controller. Aiplicity acts as a Processor for data you input into our AI systems.

3. Information We Collect

We collect various types of information to provide, secure, and improve our Services:

• Account & Billing Information: Full name, corporate email address, phone number, billing address, tax identification numbers, and encrypted payment details processed via our PCI-DSS compliant payment gateways.
• Connected Account Data: When you connect third-party platforms (e.g., Meta, Google Analytics, LinkedIn, Salesforce), we collect OAuth tokens, webhook data, and API responses necessary to perform automation tasks.
• Automated Usage Data: IP addresses, browser fingerprinting, device identifiers (MAC/IMEI), operating systems, referral URLs, page views, and clickstream data.
• AI Processing Data: Text prompts, uploaded images, datasets, CRM contacts, and campaign copies you submit to our proprietary or third-party AI engines for processing.

4. How We Use Your Data

Your data is strictly utilized for the following core operational and business purposes:

• Service Delivery: To execute automated workflows, generate AI content, route CRM leads, and manage your active subscriptions.
• Security & Fraud Prevention: To detect malicious activities, DDoS attacks, account takeovers, and fraudulent transactions.
• Product Improvement: To analyze user behavior and optimize our UI/UX and backend algorithms.
• AI Model Training: Aiplicity may use anonymized, aggregated telemetry data to fine-tune our internal AI models. We strictly do not use your private business data or PII to train public foundational models.
• Communication: To send critical service updates, technical notices, security alerts, and administrative messages.

5. Third-Party AI and API Integrations

Aiplicity functions as an integration hub and relies heavily on third-party APIs (including but not limited to OpenAI API, Anthropic API, Meta Graph API, and Google Cloud APIs). By utilizing our Services, you acknowledge and agree that:

• Your data may be securely transmitted to and processed by these third-party AI providers in real-time to execute your requested tasks (e.g., generating an email reply).
• We have executed Data Processing Agreements (DPAs) with these providers ensuring they do not retain your input data for their own model training (Zero Data Retention policies where applicable).
• You remain solely responsible for complying with the respective Terms of Service of any third-party platform you connect to your Aiplicity account.

6. Data Retention Policies

We retain your Personal Data only for as long as your account is active, or as reasonably necessary for the purposes set out in this Privacy Policy. Specific retention periods include:

• Active Accounts: Data is retained indefinitely while your subscription remains active.
• Cancelled Accounts: Upon account deletion, all connected API tokens, automated workflows, and personal identifiers are permanently wiped from our active databases within thirty (30) days.
• Compliance Retention: Billing and financial transaction records are retained for up to seven (7) years to comply with international tax and accounting laws.
• Server Logs: Automated server access logs are retained for ninety (90) days for security auditing before being permanently deleted.

7. Data Security and Encryption

Protecting your data is our highest priority. We employ enterprise-grade security measures, including:

• Encryption at Rest: All databases and backup volumes are encrypted using AES-256 encryption.
• Encryption in Transit: All communications between your client and our servers are secured using TLS 1.3.
• Access Controls: Strict Role-Based Access Control (RBAC) and Multi-Factor Authentication (MFA) are enforced for all Aiplicity employees accessing infrastructure.
• Vulnerability Management: Routine penetration testing and automated vulnerability scanning of our PaaS infrastructure.

8. Cookies and Tracking Technologies

Our platform uses cookies and similar tracking technologies (such as web beacons and pixel tags) to maintain session states, enhance security, and analyze web traffic. Our cookies include:

• Strictly Necessary Cookies: Essential for authentication, security, and core platform functionality. Cannot be disabled.
• Performance Cookies: Used to understand how users interact with our platform (e.g., Google Analytics).
• Functionality Cookies: Remember your preferences, such as language or dark mode settings.

You can manage your cookie preferences through your browser settings or our dedicated Cookie Consent Manager.

9. International Data Transfers

Aiplicity operates globally. Your information may be transferred to, and maintained on, servers located outside of your state, province, or country where the data protection laws may differ. If you are located in the EEA or UK, we ensure that standard contractual clauses (SCCs) are in place to safeguard your data during international transfers to our US or India-based servers.

10. Your Privacy Rights (GDPR, CCPA & DPDP)

Depending on your geographic location, you possess specific legal rights regarding your Personal Data:

• Right to Access & Portability: You may request a structured, machine-readable export of all Personal Data we hold about you.
• Right to Rectification: You may request corrections to any inaccurate or incomplete data.
• Right to Erasure ("Right to be Forgotten"): You may request the permanent deletion of your data from our systems.
• Right to Restrict Processing: You may request that we temporarily halt the processing of your data under certain conditions.
• Right to Opt-Out (CCPA): You can opt out of the "sale" or "sharing" of your personal information. Note: Aiplicity does not, and will never, sell your Personal Data to data brokers.

To exercise any of these rights, please submit a formal request to our Data Protection Officer at privacy@aiplicity.com. We will respond to all authenticated requests within 30 days.

11. Children's Privacy

Aiplicity's Services are strictly intended for B2B use and adult professionals. We do not knowingly collect, solicit, or maintain Personal Data from anyone under the age of 18. If we become aware that a minor has provided us with Personal Data without verifiable parental consent, we will take immediate steps to delete such information.

12. Data Breach Notification Protocol

In the unlikely event of a verified data breach that compromises your Personal Data, Aiplicity will notify you and the relevant supervisory authorities within 72 hours of discovery. We will provide information regarding the nature of the breach, the data affected, and the mitigation steps being taken.

13. Disclosures for Legal and Regulatory Compliance

We may be required to disclose your Personal Data if legally compelled to do so by a valid subpoena, court order, or warrant issued by a recognized judicial authority. We will attempt to notify you of such legal demands unless prohibited by law.

14. Changes to This Policy

Aiplicity reserves the right to modify, amend, or update this Privacy Policy at any time. Material changes will be communicated to you via email or through a prominent notice on our platform dashboard at least 15 days prior to the changes taking effect. Your continued use of the Services after the effective date constitutes acceptance of the revised policy.

15. Contact Information and DPO

If you have any questions, concerns, or legal requests regarding this Privacy Policy, please contact our designated Data Protection Officer (DPO):

Aiplicity Technologies Pvt. Ltd.
Attn: Data Protection Officer
Email: privacy@aiplicity.com
Address: Baner IT Park, Pune, Maharashtra 411045, India
Phone: +91 800-AIPLICITY (Business Hours Only)