Attrove

Privacy Policy

Effective June 3, 2024

Attrove is an AI-driven platform that seamlessly synthesizes information & communication, ensuring key insights and expertise are preserved and accessible so you can fuel productivity and continuity across your organization.

This Privacy Policy explains how we collect, use, disclose, and process your personal data when you use our website, App and other places where Attrove may act as a data controller and link to this Privacy Policy.

This Privacy Policy also describes your privacy rights. More information about your rights, and how to exercise them, is set out in the “Rights and Choices” section.

Collection of Personal Data

We collect the following categories of personal data.

Personal data you provide directly to us:

  • Identity and Contact Data: Attrove collects identifiers, such as your name and email address, when you sign up for an Attrove account, or to receive information on our Services. We may also collect indirect identifiers (e.g., “User123”).
  • Payment Information: We may collect your payment information if you choose to purchase access to Attrove’s products and services.
  • Inputs and Outputs: Our AI-powered Service allows you to prompt the Services in a variety of media including but not limited to the format of text (such as emails), files, and documents, and other materials along with the metadata and other information contained therein (“Inputs” or “Reflections”), which generate responses (“Generations”) based on your Inputs. If you include personal data in your Inputs, we will collect that information and this information may be reproduced in your Outputs.
  • Communication Information: If you communicate with us, we collect your name, contact information, and the contents of any messages you send.

Personal data we receive automatically from your use of the Services:

  • Device and Connection Information: Consistent with your device or browser permissions, your device or browser automatically sends us information about when and how you install, access, or use our Services. This includes information such as your device type, operating system information, browser information and web page referers, mobile network, connection information, mobile operator or internet service provider (ISP), time zone setting, IP address (including information about the location of the device derived from your IP address), identifiers (including device or advertising identifiers, probabilistic identifiers, and other unique personal or online identifiers).
  • Usage Information: We collect information about your use of the Services, such as the dates and times of access, browsing history, search, information about the links you click, pages you view, and other information about how you use the Services, and technology on the devices you use to access the Services.
  • Log and Troubleshooting Information: We collect information about how our Services are performing when you use them. This information includes log files. If you or your device experiences an error, we may collect information about the error, the time the error occurred, the feature being used, the state of the application when the error occurred, and any communications or content provided at the time the error occurred.
  • Cookies & Similar Technologies: We and our service providers use cookies, scripts, or similar technologies (“cookies”) to manage the Services and to collect information about you and your use of the Services. These technologies help us to recognize you, customize or personalize your experience, market additional products or services to you, and analyze the use of our Services to make it more useful to you.

How We Disclose Personal Data

Attrove may also disclose personal data in the following circumstances:

  • As part of a significant corporate event: If Attrove is involved in a merger, corporate transaction, bankruptcy, or other situation involving the transfer of business assets, Attrove will disclose your personal data as part of these corporate transactions.
  • Third-Party Websites and Services: Our Services may involve integrations with, or may direct you to, websites, apps, and services managed by third parties. By interacting with these third parties, you are providing information directly to the third party and not Attrove and subject to the third party’s privacy policy.

    If you access third-party services, such as social media sites or other sites linked through the Services (e.g., if you follow a link to our LinkedIn account), these third-party services will be able to collect personal data about you, including information about your activity on the Services. If we link to a site or service via our Services, you should read their data usage policies or other documentation. Our linking to another site or service doesn’t mean we endorse it or speak for that third party.
  • To comply with regulatory or legal requirements, safety and to enforce our terms: We may disclose personal data to governmental regulatory authorities as required by law, including for tax or accounting purposes, in response to their requests for such information or to assist in investigations. We may also disclose personal data to third parties in connection with claims, disputes or litigation, when otherwise required by law, or if we determine its disclosure is necessary to protect the health and safety of you or any other person, to protect against fraud or credit risk, or to enforce our legal rights or contractual commitments that you have made.
  • With an individuals’ consent: Attrove will otherwise disclose personal data when an individual gives us permission or directs us to disclose this information.

Rights and Choices

Subject to applicable law and depending on where you reside, you may have some rights regarding your personal data, as described further below. Attrove will not discriminate based on the exercising of privacy rights you may have.

To exercise your rights, you or an authorized agent may submit a request by emailing us at

[email protected]

. After we receive your request, we may verify it by requesting information sufficient to confirm your identity.

  • Right to know: You may have the right to know what personal data Attrove processes about you, including the categories of personal data, the categories of sources from which it is collected, the business or commercial purposes for collection, and the categories of third parties to whom we disclose it.
  • Access & data portability: OYou may have the right to request a copy of the personal data Attrove processes about you, subject to certain exceptions. In certain cases, and subject to applicable law, you have the right to port your information.
  • Deletion: You may have the right to request that we delete personal data collected from you and retained, subject to certain exceptions.
  • Correction: You may have the right to request that we correct inaccurate personal data Attrove retains about you, subject to certain exceptions. Please note that we cannot guarantee the factual accuracy of Outputs. If Outputs contain factually inaccurate personal data relating to you, you can submit a correction request and we will make a reasonable effort to correct this information—but due to the reliance on third-party integration for running large language models, it may not be possible to do so.
  • Objection: You may have a right to object to processing of your personal data, including profiling conducted on grounds of public or legitimate interest. We will no longer process the personal data in case of such objection unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or for the establishment, exercise or defense of legal claims.
  • Restriction: You have the right to restrict our processing of your personal data in certain circumstances.
  • Sale & targeted Attrove marketing of its products and services: Attrove does not “sell” your personal data as that term is defined by applicable laws and regulations.

Data Lifecycle and Data Retention

Attrove retains your personal data for as long as reasonably necessary for the purposes and criteria outlined in this Privacy Policy.

Aggregated or De-Identified Information

We may process personal data in an aggregated or de-identified form to analyze the effectiveness of our Services, conduct research, study user behavior, and enhance our AI-powered offerings. For instance:

  • When you submit Feedback and provide us permission, we disassociate Inputs and Outputs from your user ID to use them for training and improving our Output accuracy.
  • If our systems flag Inputs or Outputs for potentially violating our Acceptable Use Policy, we disassociate the content from your user ID to train our trust and safety classification models and internal generative models. However, we may re-identify the materials to enforce our Acceptable Use Policy with the responsible user if necessary.
  • To improve user experience, we may analyze and aggregate general user behavior and usage data. This information does not identify individual users.

Data Usage

At Attrove, we are transparent about how we handle the communication information you share with us, including emails, meetings, and chats. It is important to us that you understand and feel confident about our data usage practices.

Data Usage Practices:

  • Purpose of Data Collection: The communication information we collect is used solely to provide and enhance the services you receive from us. It allows us to personalize your experience and improve the quality of our interactions.
  • No AI Model Training: We do not use any of the communication information for training our AI models. Our commitment is to protect your privacy and ensure that the data you provide is not used for any form of AI model training.
  • Use of Existing AI Models: Any information processed is utilized within a context window for existing AI models, adhering to the Retrieval-Augmented Generation (RAG) methodology. This approach enhances the responsiveness and accuracy of our services without compromising your data's security.

Any data collected via third-party APIs is not used to develop, improve, or train generalized or non-personalized AI and machine learning models.

By using Attrove's services, you can trust that your personal communication information is used responsibly and exclusively for the purpose of enhancing the service we provide to you, without contributing to any external AI or ML model development.

Retention & Protection

At Attrove, we prioritize the confidentiality, integrity, and availability of your personal data. Recognizing the potential vulnerabilities inherent in information processing technology, we have implemented stringent security measures to enhance the protection of your personal data against unauthorized access, alteration, or destruction.

Security Measures in Place:

  • Encryption at Rest: All personal data stored in our databases is encrypted at rest using industry-standard encryption algorithms. This ensures that your data remains secure and inaccessible to unauthorized parties, even in the event of physical access to our storage systems.
  • Secure Storage of Credentials and Tokens: We use a highly secure key vault for storing login credentials and tokens required for authenticating external accounts. This key vault is fully encrypted, safeguarding sensitive information from unauthorized access.
  • Ongoing Risk Assessment: We continuously evaluate and update our security practices to adapt to new threats, ensuring that the safeguarding measures in place are robust and effective.
  • Commitment to Data Security: We are dedicated to protecting the personal data you entrust to us from loss, misuse, unauthorized access, or disclosure. Our team takes comprehensive steps to maintain the security of your data, reflecting our commitment to your privacy and trust.

While no system can guarantee absolute security, we at Attrove are committed to employing the best practices and technologies available to protect your personal data. We encourage you to stay vigilant and participate in protecting your personal information by using secure passwords and maintaining the confidentiality of your login credentials.

Children

Our Services are not directed towards, and we do not knowingly collect, sell, or share any information about, children under the age of 18. If you become aware that a child under the age of 18 has provided any personal data to us while using our Services, please email us at

[email protected]

and we will investigate the matter and, if appropriate, delete the personal data.

Changes to Our Privacy Policy

Attrove may update this Privacy Policy from time to time. We will notify you of any material changes to this Privacy Policy, as appropriate, and update the Effective Date at the top of

https://www.attrove.com/privacy

. We encourage you to review that page for updates when you access the Services.