Privacy Policy

Last Updated: May 6, 2026

1. Information We Collect

1.1 Information You Provide

• Account Information: Name, email address, company name, billing address, and payment information when you create an account or subscribe to our Services.
• Customer Content: Any data, text, files, prompts, queries, or other materials you submit to the Services (as defined in our Terms of Service).
• Communications: Information you provide when contacting us (e.g., support requests, emails, contact form submissions).
• Professional Services Data: Information provided in connection with consulting engagements or custom integrations.

1.2 Information Collected Automatically

• Usage Data: Pages visited, features used, actions taken, timestamps, frequency of use, and performance metrics.
• Device and Browser Information: IP address, browser type, operating system, device identifiers, and screen resolution.
• Cookies and Tracking Technologies: We use cookies, local storage, and similar technologies to maintain sessions, remember preferences, and analyze usage patterns.
• Log Data: Server logs that record requests, errors, referring URLs, and related technical information.

1.3 Information from Third Parties

• Payment Processors: We receive transaction confirmation and limited billing details from Stripe or other payment providers.
• Third-Party Providers: We may receive usage or error data from providers such as xAI and Telnyx in connection with delivering the Services.

2. How We Use Your Information

We use the information we collect for the following purposes:

• Provide, operate, maintain, and improve the Services
• Process transactions and send billing-related communications
• Respond to your inquiries and provide customer support
• Send administrative notices (e.g., service updates, security alerts)
• Monitor and analyze usage trends to improve user experience
• Detect, prevent, and address fraud, abuse, and security issues
• Comply with legal obligations and enforce our Terms of Service
• Generate anonymized, aggregated Usage Data for analytics and service improvement

3. How We Share Your Information

We do not sell your personal information. We may share information in the following circumstances:

• Third-Party Service Providers: With vendors who assist us in operating the Services (e.g., cloud hosting, payment processing, email delivery, analytics). These providers are contractually obligated to protect your data and use it only for the purposes we specify.
• Third-Party AI and Communications Providers: Customer Content may be processed by Third-Party Providers (including xAI and Telnyx) as necessary to deliver the Services. Their use of such data is governed by their respective privacy policies.
• Legal Requirements: When required by law, court order, subpoena, or governmental request, or to protect our rights, property, or safety.
• Business Transfers: In connection with a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the successor entity.
• With Your Consent: We may share information for other purposes with your explicit consent.

4. Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements. When no longer needed, we will securely delete or anonymize your data. Specific retention periods:

• Account data: Retained for the duration of your account plus 30 days after deletion request.
• Billing records: Retained for up to 7 years for tax and legal compliance.
• Usage logs: Retained for up to 12 months, then anonymized or deleted.
• Customer Content: Deleted upon account termination unless otherwise required by law.

5. Data Security

We implement commercially reasonable administrative, technical, and physical safeguards to protect your information, including:

• Encryption of data in transit (TLS/SSL) and at rest where applicable
• Access controls and authentication mechanisms
• Regular security assessments and monitoring
• Secure infrastructure hosted on reputable cloud platforms

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your Access Credentials.

6. Cookies and Tracking

We use the following types of cookies:

Type	Purpose	Duration
Essential	Authentication, session management, security	Session / up to 30 days
Functional	Preferences, language, UI state	Up to 1 year
Analytics	Usage patterns, performance metrics	Up to 1 year

You can control cookies through your browser settings. Disabling essential cookies may affect functionality.

7. Your Rights and Choices

7.1 All Users

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Deletion: Request deletion of your personal data (subject to legal retention requirements).
• Data Portability: Request your data in a structured, machine-readable format.
• Opt-Out of Marketing: Unsubscribe from marketing emails at any time via the link in the email or by contacting us.

7.2 California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (as amended by the CPRA):

• Right to know what personal information we collect, use, and disclose
• Right to delete your personal information
• Right to opt-out of the sale or sharing of personal information — we do not sell your personal information
• Right to non-discrimination for exercising your privacy rights
• Right to correct inaccurate personal information
• Right to limit the use of sensitive personal information

To exercise these rights, contact us at privacy@simplysemantics.com.

7.3 European Economic Area, UK, and Swiss Residents (GDPR)

If you are located in the EEA, UK, or Switzerland, you have rights under the General Data Protection Regulation (GDPR) or equivalent legislation:

• Right of access, rectification, erasure, restriction, and portability
• Right to object to processing based on legitimate interests
• Right to withdraw consent at any time (where processing is based on consent)
• Right to lodge a complaint with your local supervisory authority

Legal Bases for Processing: We process personal data based on: (a) performance of a contract (providing the Services); (b) legitimate interests (security, fraud prevention, service improvement); (c) consent (where required); and (d) legal obligations.

International Transfers: Your data may be transferred to and processed in the United States. We rely on Standard Contractual Clauses (SCCs) or other approved mechanisms to safeguard cross-border transfers.

8. Children's Privacy

The Services are not directed to individuals under 16 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 16, we will promptly delete it. If you believe a child has provided us with personal information, please contact us at privacy@simplysemantics.com.

9. Third-Party Links and Services

The Services may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices or content of those third parties. We encourage you to review their privacy policies before providing any information.

10. Recording and Communications

As described in our Terms of Service (Section 6A), communications made through the Services (including calls, messages, and chats) may be recorded, transcribed, and stored. Please refer to our Terms of Service for full details on recording consent obligations.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website with a revised "Last Updated" date, and where required, by email or in-product notification. Your continued use of the Services after changes take effect constitutes acceptance of the updated policy.

12. Contact Us