Privacy Note

At CASPAI ("we," "our," or "us"), we are committed to protecting the privacy of our users ("you" or "your"). This Privacy Policy outlines how we collect, use, and safeguard your personal data when you use our services.

Welcome to CASP AI! Your privacy is important to us. This Privacy Policy outlines how CASP AI (“we,” “us,” or “our”) collects, uses, discloses, and safeguards your personal data when you interact with our platform and services. By using our services, you agree to the practices described in this Privacy Policy.

Introduction

CASP AI is an innovative platform that enhances productivity by enabling users to interact with their data using personalized chatbots and advanced retrieval-augmented generation (RAG) search engines. Our services provide seamless access to and interaction with your emails, drives, calendars, and other personal data through a few clicks, simplifying your workflows. We do not train any AI models on your data without your explicit consent. Our goal is to empower you to interact with your data in a private, secure, and convenient way.

We do not use data obtained through Google Workspace APIs to develop, improve, or train generalized AI or machine learning models. All data accessed through Google Workspace APIs is processed solely to provide the authorized services as outlined in our platform functionality and is not retained for any other purposes.

Compliance with Google Workspace API User Data Policy

CASP AI strictly adheres to Google’s Workspace API User Data Policy, including the Limited Use Policy. This means:

  • We do not transfer, sell, or use Google Workspace API user data to create, train, or improve AI/ML models beyond the specific user’s personalized model for their appropriate use case.
  • We do not integrate with third-party AI/ML services that use user data returned from Google Workspace APIs to train or improve generalized AI/ML models.
  • Any AI/ML functionalities in our platform are strictly limited to enhancing individual user experience without using their data for broader AI/ML training purposes.
  • We use only stable open source libraries available in python for all data manipulation, no third party tools would be used for either translation, transcription, extraction or any other aspects.
  • We do not develop, improve, train or finetune any generalized/ non-personalized AI/ML models. We use mainly self-hosted LLM models for answer summarisation.
  • We support only self-hosted LLMs, such as Qwen 2.5, LLaMA 3.1, or privately hosted LLMs, to interact with Google data rather than using any private generalized/non-personalized AI/ML models.

If we make any changes to our AI/ML integration policies, we will clearly describe what Google user data (if any) is used and ensure compliance with Google’s policies. Our homepage and associated pages do not advertise connections with any third-party services that use user data for generalized AI/ML training.

What is Personal Data?

Personal data refers to any information that identifies or relates to an identifiable individual. This includes but is not limited to:

  • Contact information such as name, email address, and phone number.
  • Files, documents, and other data stored in your email, drives, or calendar.
  • Metadata associated with your interactions on the platform.

Google Drive API Data Privacy Policy

Our application integrates with Google Drive and requests read-only access (https://www.googleapis.com/auth/drive.readonly) to retrieve files that users explicitly select and authorize. We strictly comply with Google’s API Services User Data Policy and ensure the following:

1. Limited Data Access & Usage
  • We only access files that users explicitly grant permission for.
  • Our application does not create, modify, or delete any files on Google Drive.
  • Data is retrieved solely for the purpose of providing our services and is not used beyond the intended scope.
2. Compliance with Google’s Policies
  • We adhere to Google’s Workspace API User Data Policy (Learn More).
  • We follow Google's Limited Use Policy, ensuring data is not shared, sold, or used for advertising.
  • All Google Drive data is processed securely and is not stored on our servers unless explicitly necessary for service functionality.
3. Data Security & Protection
  • All interactions with Google Drive API use OAuth 2.0 authentication for secure access.
  • We use encryption and industry-standard security measures to protect user data.
  • Users can revoke access at any time via Google Account Settings (Manage Permissions).
4. Data Retention & Deletion
  • We do not permanently store Google Drive data unless required for a specific service function.
  • Any temporarily stored data is deleted within [Specify Retention Period] unless legally required.
  • Users can request data deletion at any time by contacting us at [Your Contact Email].
How We Collect Personal Data
Personal Data You Provide

We collect the following categories of information that you submit directly through our platform:

  • Account Information: Includes name, email address, and login credentials for creating and managing your account.
  • Data Access: With your authorization, we collect and process information from your emails, drives, and calendars to provide personalized services.
  • Inquiry and Feedback Information: Any messages, queries, or feedback submitted through our contact forms or other communication channels.
Personal Data from Third Parties

If you integrate third-party authentication services (e.g., Atlassian, Slack, Dropbox, Google, or Microsoft), we may receive information such as your name, email, and basic profile details. This data is used solely for authentication and personalization purposes.

Automatically Collected Information

We may collect data automatically when you interact with our platform, such as:

  • IP addresses, browser types, and device information.
  • Usage statistics, including pages viewed, time spent on the platform, and actions taken.
  • Cookies and tracking technologies to enhance user experience and monitor performance.
How We Use Your Personal Data

We use your personal data for the following purposes:

  • Service Delivery: To enable interaction with your data via chatbots and RAG search engines.
  • User Support: To address queries and provide assistance.
  • Account Management: To manage your profile, preferences, and interactions.
  • Compliance and Security: To enforce our Terms of Service, comply with legal obligations, and protect against fraud or unauthorized access.
How We Share Your Personal Data

We value your privacy and do not sell or share your personal data with third parties for any purpose. All data remains strictly within our in-house storage database and private enterprise VPN. We ensure that your data never leaves the VPN environment. However, we may share your data under these circumstances:

  • Legal Compliance: When required by law or to protect our rights and interests.
  • Business Transfers: In connection with a merger, sale, or other business transaction, with strict privacy protections in place.
Data Security

We implement robust security measures to protect your personal data from unauthorized access, loss, or misuse. These measures include encryption, secure access controls, and regular security assessments. Despite our best efforts, no method of transmission over the internet or electronic storage is completely secure.

Your Rights and Choices

You have the following rights regarding your personal data:

  • Access and Rectification: Request access to or correction of your personal data.
  • Data Deletion: Request the deletion of your data, subject to applicable laws.
  • Consent Management: Withdraw consent for specific data processing activities.

To exercise your rights, please contact us at privacy@caspai.com.

Cookies and Tracking Technologies

We use cookies to enhance user experience, analyze platform usage, and deliver personalized content. You can manage your cookie preferences through your browser settings. Disabling cookies may impact certain platform functionalities.

Children’s Privacy

Our services are not directed at individuals under the age of 13, and we do not knowingly collect personal data from children. If we become aware of such collection, we will delete the data promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The latest version will always be available on our website, and we encourage you to review it periodically.

Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

Email: privacy@caspai.com
Website: www.caspai.com

Empower Your Business with AI-Driven Insights

Unlock the full potential of your data. Leverage cutting-edge AI solutions to drive smarter decisions and stay ahead in the competitive landscape.

Request a Demo