AI Buddy Privacy Policy
It is to be noted that AI Buddy currently doesn't sell any SaaS services and only sells software hosted on the client's end to ensure privacy.
Last updated: May 8, 2025
1. Introduction
Agent GG ("Agent GG," "we," "our," or "us") is an AI‑powered productivity assistant delivered through web, desktop, and mobile applications (the "Services"). We are committed to protecting your privacy and handling your data transparently, in compliance with applicable regulations including (but not limited to) Canada's PIPEDA, the EU/UK GDPR, CalOPPA, and the CCPA/CPRA.
2. Data We Collect
| Category | Examples | Source | Lawful Basis* |
|---|---|---|---|
| Account Data | Name, email, password hash, authentication tokens | Provided by you | Contract |
| Profile & Usage Data | Preferred language, feature interaction logs, crash reports, screen recordings with consent | Automatic | Legitimate interest; consent where required |
| Content Data | Text, files, images, or audio you submit to chat with Agent GG | Provided by you | Contract |
| Device & Technical Data | IP, browser type, OS, device identifiers, cookies | Automatic | Legitimate interest |
| Payment Data (Pro tier only) | Cardholder name, last 4 digits, billing address (processed by Stripe) | Provided by you / Stripe | Contract; legal obligation |
*GDPR terminology. Equivalent bases apply under other laws.
3. How We Use Your Data
We use personal and non‑personal data to:
- Provide & secure the Services – authenticate you, generate AI responses, prevent fraud.
- Improve & develop features – aggregate analytics, A/B testing, debugging.
- Communicate with you – transactional emails, service announcements, marketing (opt‑in).
- Comply with law – tax, accounting, law‑enforcement requests, regulatory audits.
4. Retention
We retain personal data only as long as necessary for the purposes described in Section 3, unless a longer period is required by law or you request deletion (see Section 7).
5. Data Protection & Security
We employ:
- AES‑256 encryption at rest and TLS 1.3 in transit
- Zero‑trust network segmentation and least‑privilege IAM
- Annual SOC 2 Type II and penetration testing
- Automated model‑level redaction of PII before long‑term storage
6. Sharing & Disclosure
We never sell your data. Limited disclosures occur to:
| Recipient | Purpose | Safeguard |
|---|---|---|
| OpenAI LLC / Google Vertex | LLM inference | Data‑processing addenda; content not used to train public models |
| Stripe, Inc. | Payment processing | PCI‑DSS compliance |
| Sub‑processors (list maintained here) | Hosting, analytics, email | Standard Contractual Clauses / Canadian adequacy |
| Authorities | Law‑enforcement or legal process | Verified, narrow, and recorded requests |
7. Your Rights
- Access / Portability – obtain a copy of data we hold.
- Correction – update inaccurate information.
- Deletion – erase data, subject to legal exceptions.
- Objection & restriction – object to processing or request limitation.
- Withdraw consent – at any time (e.g., marketing).
Email privacy@agentgg.ai or use Settings › Privacy to exercise rights. We respond within 30 days.
8. Cookies & Similar Tech
We use functional cookies, local storage, and limited first‑party analytics. No third‑party ad tracking cookies are set. You can disable cookies in your browser; some features may not work.
9. Children's Privacy
Agent GG is not directed to children under 16. We do not knowingly collect their data. Parents may request deletion at privacy@agentgg.ai.
10. International Transfers
Data may be processed in Canada, the United States, or the EU. We rely on SCCs or equivalent adequacy decisions for cross‑border transfers.
11. Changes to This Policy
Material changes will be announced in‑app and via email at least 15 days before they take effect. Continued use after the effective date constitutes acceptance.
12. Contact
Md Sohan Haidear
Email: sohan.h777@gmail.com