Chipp Privacy Policy

We are excited to have you. Learn more about Privacy at Chipp

Privacy Policy for Chipp

Last updated: August 3, 2025

Privacy Policy for Chipp

  • Introduction

  • Who We Are

  • What Data We Collect

  • How We Collect Data

  • How We Use Data

  • Legal Bases for Processing

  • How We Share Data

  • International Data Transfers

  • Data Retention

  • Cookies and Tracking Technologies

  • Data Security

  • Security Breach Notification

  • Your Rights – United States (California Consumer Privacy Act CCPA/CPRA)

  • Your Rights – European Union (General Data Protection Regulation)

  • Your Rights – United Kingdom (UK GDPR)

  • Exercising Your Rights

  • Children’s Privacy

  • Links to Other Websites

  • Changes to This Privacy Policy

  • Contact Us

  • Supervisory Authorities


  • Introduction

Welcome to Chipp. We are a technology platform based in the United States, serving clients and users globally. This Privacy Policy explains how we collect, use, store, transfer, and protect your personal information when you interact with our platform, website, and related services. We value your privacy and are committed to handling your data responsibly and transparently, in accordance with applicable data protection

laws, including the General Data Protection Regulation (GDPR), the UK GDPR, and the California Consumer Privacy Act (CCPA/CPRA).

  • Who We Are

Chipp, Inc. (“we”, “us” and/or “ours”) is a technology company based in the United States, providing digital services to users worldwide. All data processing is conducted under our direct authority and in accordance with this Privacy Policy. If you have questions about this policy or our data practices, please contact us at  info@chipp.ai.

  • What Data We Collect

We collect and process various categories of personal data to provide, maintain, and improve our services. The types of data we collect depend on your interactions with our platform and the choices you make regarding your privacy settings.

  • Information You Provide Directly

When you interact with our platform, you may provide personal data such as your name, email address, profile photograph, account credentials, and contact details. If you make purchases or subscribe to paid features, your payment information (such as card details) is processed securely by our third-party payment processor (Stripe); we do not store or retain your full payment card information. Additionally, we collect information you submit through communications with us, responses to surveys, feedback forms, and any other content you voluntarily provide via our services.

  • Information Collected Automatically

When you access or use our platform, we automatically collect certain technical and usage information. This includes your Internet Protocol (IP) address, device identifiers, browser type and version, operating system, language preferences, access times, referring URLs, and information about your activity on our platform (such as pages viewed, features used, and actions taken). We utilize analytics technologies, such as cookies (See our cookie policy here) and similar tracking tools, as well as third-party analytics providers, to help us understand how users interact with our services and to enhance your experience.

  • Information from Third Parties

We may receive personal data about you from third-party sources as necessary to provide our services. This may include information from authentication providers (such as Google or other single sign-on services), payment processors, business partners, and service providers who support our operations. The data received from these third parties is processed in accordance with this Privacy Policy and applicable data protection laws.

  • Sensitive Data

We do not intentionally collect sensitive personal data, such as information revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic or biometric data, health information, or data concerning a person’s sex life or sexual orientation (“special categories of personal data” under the GDPR), unless required by law or with your explicit consent when you are building a Chipp. If you believe you have inadvertently provided such information, please contact us so we can take appropriate action.

  • How We Collect Data

We collect personal data through a combination of direct interactions, automated technologies, and third-party sources, as described below.

  • Direct Collection from You

We collect information that you provide to us directly when you interact with our platform. This includes data submitted during account registration, profile creation, use of our services, completion of forms or surveys, participation in promotions or events, and when you communicate with us via email, support channels, or other means.

  • Automated Collection

When you access or use our website or platform, we automatically collect certain information about your device and usage through the use of cookies, web beacons, pixels, and similar tracking technologies. These tools enable us to gather data such as your IP address, device type, browser characteristics, operating system, referring URLs, and information about your interactions with our services. We also use analytics providers to help us understand user behavior and improve our offerings.

  • Collection from Third Parties

We may receive personal data about you from third-party sources in order to facilitate your use of our services or to enhance our platform. This includes information obtained from authentication providers (such as when you sign in using Google or other single

sign-on services), payment processors, business partners, and service providers who assist us in delivering, maintaining, or improving our services. The data we receive from these third parties is processed in accordance with this Privacy Policy and applicable data protection laws.

We ensure that all methods of data collection are conducted in compliance with relevant legal requirements, and we provide you with appropriate notice and choices regarding the use of your personal data.

  • How We Use Data

In Short: We use the personal data we collect for a variety of purposes, all of which are necessary to provide, maintain, and enhance our services, to fulfill our contractual and legal obligations, and to protect both our users and our platform.

We use your data to establish and manage your account, including facilitating account creation, authentication, and secure access to our services. Your information is also used to process payments and transactions, which are handled securely through our third-party payment processor (Stripe). We do not store your full payment card details.

We rely on your data to provide customer support, respond to your inquiries, and address any issues or requests you may have. To improve our platform and user experience, we analyze usage data and trends using analytics tools, which help us understand how our services are accessed and used.

We may use your contact information to send you service-related communications, such as updates about your account, changes to our terms or policies, and important notifications regarding the operation of our services. With your consent, we may also send you marketing communications about new features, products, or promotions. You may withdraw your consent to receive marketing communications at any time.

We process personal data as necessary to comply with applicable legal obligations, resolve disputes, enforce our terms and policies, and protect our rights and interests. Additionally, we use data to detect, investigate, and prevent fraudulent activities, unauthorized access, and other security threats to our platform and users.

Where required by law, we will obtain your explicit consent before using your information for certain purposes, such as direct marketing or processing special categories of personal data. We ensure that all uses of your data are consistent with applicable data protection laws, including the GDPR, UK GDPR, and relevant US privacy regulations.

  • Legal Bases for Processing

In Short: We only process your personal data when we have a valid legal basis to do so, as required by applicable data protection laws such as the GDPR and UK GDPR.

For users in the European Union, United Kingdom, and other jurisdictions with similar data protection requirements, we process your personal data on one or more of the following legal grounds:

We may process your personal data where you have given us your explicit consent for a specific purpose. For example, we will seek your consent before sending you direct marketing communications or before processing any special categories of personal data. You may withdraw your consent at any time, and this will not affect the lawfulness of processing based on consent before its withdrawal.

Processing may be necessary for the performance of a contract to which you are a party, or to take steps at your request prior to entering into such a contract. This includes providing you with access to our platform, managing your account, processing payments, and delivering customer support.

We may process your personal data where it is necessary for us to comply with a legal obligation to which we are subject. This includes obligations under applicable laws and regulations, such as tax, accounting, anti-fraud, or responding to lawful requests from public authorities.

In certain cases, we process your personal data based on our legitimate interests, provided that such interests are not overridden by your fundamental rights and freedoms. Our legitimate interests may include operating, maintaining, and improving our services; ensuring the security and integrity of our platform; preventing fraud and abuse; conducting business analytics; and communicating with users about updates or changes to our services. When we rely on legitimate interests, we carefully assess and balance our interests against your privacy rights and provide you with the opportunity to object to such processing where required by law.

In rare circumstances, we may process your personal data to protect your vital interests or those of another person, for example in emergency situations where health or safety is at risk.

If we process your personal data for purposes that are not described above or that are incompatible with the original purpose, we will inform you and, where required, seek your consent.

If you have questions about the specific legal basis for any particular processing activity, or if you wish to exercise your rights under applicable data protection laws, you may contact us at any time using the contact details provided in this Privacy Policy.

  • How We Share Data

In Short: We do not sell your personal information. We share your data only when necessary to deliver our services, comply with legal obligations, or protect our rights and interests.

We may share your personal data with third parties under the following circumstances:

We engage trusted service providers to support the operation of our platform and the delivery of our services. This includes vendors such as Stripe for payment processing, PostHog for analytics, and reputable cloud hosting providers. These service providers act on our behalf and are contractually obligated to protect your personal data, process it only for the purposes we specify, and comply with applicable data protection laws.

We may disclose your personal data to legal or regulatory authorities, courts, or law enforcement agencies if required to do so by law, regulation, legal process, or governmental request. Such disclosures may be necessary to comply with our legal obligations, respond to lawful requests, or protect the rights, property, or safety of our company, users, or others.

In the event of a business transaction such as a merger, acquisition, reorganization, or sale of all or a portion of our assets, your personal data may be transferred to the acquiring entity or successor as part of the transaction. In such cases, we will ensure that your data continues to be protected in accordance with this Privacy Policy and applicable law, and we will notify you of any material changes to the ownership or use of your personal data.

We may share your personal data with third parties when you have provided your explicit consent for us to do so. In such cases, we will clearly explain the purpose and scope of the data sharing at the time we request your consent, and you may withdraw your consent at any time.

We take appropriate measures to ensure that any third parties with whom we share your data provide an adequate level of protection and process your data in accordance with applicable data protection laws, including the GDPR and UK GDPR where relevant.

If you have questions about the specific third parties with whom your data may be shared, or if you would like more information about our data sharing practices, please contact us using the details provided in this Privacy Policy.

  • International Data Transfers

In Short: Your personal data may be transferred to, stored, and processed in countries outside of your jurisdiction, including the United States and other locations where our service providers or partners operate.



To provide our services efficiently and securely, we may transfer your personal data to countries that may not have the same level of data protection laws as your home country. This includes transfers to the United States, where our primary operations and some of our service providers are located, as well as to other countries as necessary for the operation of our platform.



For users located in the European Economic Area (EEA), United Kingdom (UK), or Switzerland, we implement appropriate safeguards to ensure that your personal data remains protected in accordance with applicable data protection laws. These safeguards may include the use of Standard Contractual Clauses (SCCs) approved by the European Commission or the UK Information Commissioner’s Office, which contractually require recipients of your data to provide a level of protection essentially equivalent to that guaranteed within the EEA or UK. Where applicable, we may also rely on other recognized transfer mechanisms, such as adequacy decisions or binding corporate rules.



Additionally, we participate in and comply with the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework, and the Swiss-U.S. Data Privacy Framework as set forth by the U.S. Department of Commerce. These frameworks provide further assurances that personal data transferred from the EU, UK, and Switzerland to the United States is handled in accordance with established privacy principles and legal requirements.

If you would like more information about the specific safeguards we use for international data transfers, or if you wish to obtain a copy of the relevant contractual terms, please contact us using the details provided in this Privacy Policy.

  • Data Retention

In Short: We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by applicable law.

We will keep your personal data for the duration of your relationship with us and as long as your account remains active. Once your data is no longer needed for the purposes for which it was collected, or if you request deletion of your account, we will take appropriate steps to securely delete or anonymize your personal data. In some cases, we may be required to retain certain information for a longer period to comply with legal, regulatory, tax, accounting, or other statutory obligations, to resolve disputes, or to enforce our agreements.

If your personal data is stored in backup archives that are not immediately accessible, it will be securely stored and isolated from any further processing until deletion is possible in accordance with our standard backup retention schedules.

You have the right to request the deletion of your account and associated personal data at any time. Upon receiving such a request, we will promptly take steps to delete your data from our active systems, subject to any legal or contractual retention requirements.

For more information about your rights or to request deletion, please contact us using the details provided in this Privacy Policy.

We regularly review our data retention practices to ensure that we do not retain personal data longer than necessary.

  • Cookies and Tracking Technologies

In Short:

We use cookies and similar tracking technologies to enhance your experience, analyze usage, and support the functionality of our platform.

We utilize cookies, web beacons, pixels, and other tracking technologies to provide essential site functionality, remember your preferences, analyze how our services are used, and continuously improve our platform. Some cookies are necessary for the operation of our website, while others help us understand user behavior, personalize content, and deliver relevant communications.

You have the ability to manage your cookie preferences at any time through your browser settings. Most browsers allow you to refuse or accept cookies, delete existing cookies, or receive a notification before a cookie is stored. Please note that disabling or blocking certain cookies may impact the performance, functionality, and availability of some features on our platform.

For more detailed information about the types of cookies and tracking technologies we use, the purposes for which we use them, and your choices regarding cookies, please refer to our Cookie Policy, which is available on our website.

If you have any questions about our use of cookies or tracking technologies, or if you wish to exercise your rights regarding your personal data, please contact us using the details provided in this Privacy Policy.

  • Data Security

In Short: We are committed to protecting your personal data and employ industry-standard security measures to safeguard it against unauthorized access, disclosure, alteration, or destruction.

We implement a comprehensive set of technical and organizational security measures designed to protect your personal data throughout its lifecycle. These measures include, but are not limited to, data encryption both in transit and at rest, secure server infrastructure, strict access controls, multi-factor authentication, and regular security assessments and reviews. Our systems are monitored for vulnerabilities, and we apply timely updates and patches to address emerging threats.

Access to personal data is restricted to authorized personnel who require it to perform their job functions, and all such personnel are subject to confidentiality obligations. We also require our service providers and partners to adhere to robust security standards and to process your data only as instructed by us.

While we strive to use commercially reasonable means to protect your personal data, no method of transmission over the Internet or method of electronic storage is completely secure. Therefore, we cannot guarantee absolute security. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the appropriate authorities as required by law.

For more detailed information about our security practices and technical specifications, please refer to our  Data Security Policy.

If you have any questions or concerns about the security of your personal data, please contact us using the details provided in this Privacy Policy.

  • Security Breach Notification

In Short: If your personal data is affected by a security breach, we will notify you promptly and transparently, in accordance with applicable legal requirements.

In the event of a security incident that results in the unauthorized access, disclosure, alteration, or destruction of your personal data, we will assess the potential impact and, where required by law, notify you without undue delay. Our notification will include a description of the nature of the breach, the categories and approximate number of individuals and data records affected, the likely consequences of the breach, and the measures we are taking or propose to take to address the breach and mitigate its possible adverse effects.

We are committed to full cooperation with relevant authorities, including the Federal Trade Commission (FTC) in the United States, as well as data protection authorities in the European Union, United Kingdom, and other applicable jurisdictions. Where required, we will also notify the appropriate supervisory authorities within the legally mandated timeframes, such as within 72 hours under the GDPR and UK GDPR, unless the breach is unlikely to result in a risk to your rights and freedoms.

We maintain and regularly test our incident response procedures to ensure we can respond swiftly and effectively to any data security incident. If you have any questions or concerns about our breach notification practices, please contact us using the details provided in this Privacy Policy.

  • Your Rights – United States (California Consumer Privacy Act CCPA/CPRA)

In Short: If you are a user in the United States, and especially if you are a California resident, you have specific rights regarding your personal information under applicable state and federal privacy laws.

We are committed to providing transparency and control over your personal information. Depending on your state of residence, you may have the following rights:

You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources from which we collected it, the purposes for which we use it, and the categories of third parties with whom we share or disclose it. You may also request details about any sale or sharing of your personal information, although we do not sell your data.

You have the right to request the deletion of your personal information that we have collected and retained, subject to certain exceptions as permitted by law (such as when the information is necessary to complete a transaction, detect security incidents, comply with legal obligations, or for other internal uses consistent with your relationship with us).

You have the right to request the correction of inaccurate personal information that we maintain about you.

You have the right to opt out of the sale or sharing of your personal information for cross-context behavioral advertising. While we do not sell your personal information, you may still exercise this right if you have concerns about how your data is used.

You have the right not to receive discriminatory treatment for exercising any of your privacy rights. We will not deny you goods or services, charge you different prices, or provide a different level or quality of service because you exercised your rights.

Where applicable, you have the right to limit the use and disclosure of sensitive personal information, as defined by California law.

To exercise any of these rights, please contact us at [insert contact email]. We may need to verify your identity before fulfilling your request, which may involve requesting additional information from you. You may also designate an authorized agent to make a request on your behalf, provided that the agent is properly authorized and we are able to verify both your and the agent’s identity and authority.

For more information about our data practices, including the categories of personal information we collect and the purposes for which we use it, please refer to the relevant sections of this Privacy Policy.

  • Your Rights – European Union (General Data Protection Regulation)

In Short: If you are located in the European Union, you have specific rights regarding your personal data under the General Data Protection Regulation (GDPR).

As an EU data subject, you are entitled to exercise the following rights with respect to your personal data:

You have the right to request confirmation as to whether we process your personal data and, if so, to access a copy of the data we hold about you, along with information about how and why it is processed.

You have the right to request the correction of inaccurate or incomplete personal data concerning you.

You have the right to request the erasure of your personal data (“right to be forgotten”) in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected, or if you withdraw your consent and there is no other legal ground for processing.

You have the right to request the restriction of processing of your personal data in specific situations, for example, if you contest the accuracy of the data or object to our processing.

You have the right to object to the processing of your personal data where the processing is based on our legitimate interests or for direct marketing purposes. We will cease processing your data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms.

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller where the processing is based on consent or contract and carried out by automated means (“right to data portability”).

Where we rely on your consent as the legal basis for processing your personal data, you have the right to withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

To exercise any of these rights, please contact us at info@chipp.ai. We may need to verify your identity before fulfilling your request to protect your privacy and security.

You also have the right to lodge a complaint with your local data protection authority if you believe that your rights have been violated. Contact details for EU data protection authorities can be found at: https://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm.

For more information about your rights or our data processing practices, please refer to the relevant sections of this Privacy Policy.

  • Your Rights – United Kingdom (UK GDPR)

In Short: If you are located in the United Kingdom, you have specific rights regarding your personal data under the UK General Data Protection Regulation (UK GDPR), which are substantially similar to those provided under the EU GDPR.

As a UK data subject, you have the following rights with respect to your personal data: You have the right to request access to the personal data we hold about you and to receive information about how we process it.

You have the right to request the correction of inaccurate or incomplete personal data.

You have the right to request the erasure of your personal data (“right to be forgotten”) in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected or if you withdraw your consent and there is no other legal ground for processing.

You have the right to request the restriction of processing of your personal data in specific situations, for example, if you contest the accuracy of the data or object to our processing.

You have the right to object to the processing of your personal data where the processing is based on our legitimate interests or for direct marketing purposes.

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller where the processing is based on consent or contract and carried out by automated means (“right to data portability”).

Where we rely on your consent as the legal basis for processing your personal data, you have the right to withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

To exercise any of these rights, please contact us at info@chipp.ai. We may need to verify your identity before fulfilling your request to protect your privacy and security.

You may also contact our UK representative or lodge a complaint with the Information Commissioner’s Office (ICO) at https://ico.org.uk/ if you believe your rights have been violated.

For more information about your rights or our data processing practices, please refer to the relevant sections of this Privacy Policy.

  • Exercising Your Rights

In Short: You can exercise your privacy rights by contacting us directly. We are committed to responding to your requests in accordance with applicable data protection laws.

To exercise any of your rights described in this Privacy Policy, please email us at info@chipp.ai. In order to protect your privacy and security, we may need to verify your identity before fulfilling your request. This verification process may require you to provide certain information so we can confirm your identity and your relationship with us.

We aim to respond to all legitimate requests within the timeframes required by applicable law. If your request is particularly complex or if you have made multiple requests, our response may take longer, but we will keep you informed throughout the process.

If you are not satisfied with our response or the way we have handled your personal data, you may have the right to lodge a complaint with your local data protection authority. For more information on how to contact the appropriate authority, please refer to Section 21 of this Privacy Policy.

If you have any questions about your rights or how to exercise them, please contact us using the details provided above.

  • Children’s Privacy

In Short: Our platform is not intended for use by children under the age of 18, and we do not knowingly collect personal data from children under 13.

We are committed to protecting the privacy of children. In accordance with the Children’s Online Privacy Protection Act (COPPA) in the United States, as well as applicable data protection laws in other jurisdictions, our services are not directed to, and we do not knowingly collect or solicit personal data from, children under the age of 13.

If we become aware that we have inadvertently collected personal data from a child under 13, we will take immediate steps to delete such information from our records.

If you are a parent or legal guardian and believe that your child under the age of 13 has provided us with personal data, please contact us at [insert contact email] so that we can take appropriate action.

For users in the European Union, United Kingdom, or other jurisdictions with higher age thresholds for consent, we do not knowingly collect personal data from children under the age required by applicable law (18 years of age).

If we learn that we have collected personal data from a child below the relevant age threshold, we will promptly delete it.

  • Links to Other Websites

In Short: Our website may contain links to third-party websites or services that are not operated or controlled by us.

This Privacy Policy applies solely to the data practices of Chipp and our platform. If you follow a link to a third-party website or service, please be aware that we are not responsible for the privacy practices, content, or security of those external sites.

We encourage you to review the privacy policy of any website or service you visit before providing any personal data.

We do not endorse or make any representations about third-party websites, and your use of such sites is at your own risk. If you have any questions about the data practices of a third-party site, please contact them directly.

  • Changes to This Privacy Policy

In Short: We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons.

We regularly review and update this Privacy Policy to ensure it remains accurate and up to date. Any changes will be posted on this page, and the “Last Updated” date at the top of the policy will be revised accordingly. If we make material changes that significantly affect your rights or the way we process your personal data, we will provide additional notice—such as by sending you an email notification or displaying a prominent notice on our platform—prior to the changes taking effect.

We encourage you to review this Privacy Policy periodically to stay informed about how we collect, use, and protect your personal data. Your continued use of our services after any changes to this Privacy Policy constitutes your acceptance of those changes.

If you have any questions about changes to this Privacy Policy, please contact us using the details provided in this document.

  • Contact Us

In Short: If you have any questions, concerns, or requests regarding this Privacy Policy or the way we handle your personal data, please contact us.

You can reach us by email at  info@chipp.ai. 

You may also contact us by mail at our physical address:

Chipp, 1744 8th St S, Fargo, ND 58103, USA

We are committed to responding to your inquiries promptly and addressing any concerns you may have about your privacy or our data practices.

  • Supervisory Authorities

If you are not satisfied with our response, you have the right to contact your local data protection authority.

  • EU users: Contact your national data protection authority.

  • UK users: Information Commissioner’s Office (ICO): https://ico.org.uk/

  • California users: California Attorney General: https://oag.ca.gov/privacy/ccpa

CHIPP’S AI USE AND AI PRODUCTS

Use of AI and AI Products

In Short: Chipp offers a range of AI-powered products and features, all of which are powered by trusted third-party AI providers. We are committed to transparency, responsible AI use, and compliance with applicable regulations, including the EU AI Act.

Our AI Products:

Chipp provides access to a suite of AI-driven tools and services designed to help users automate tasks, generate content, analyze data, and enhance productivity. These products include, but are not limited to, content generation assistants, workflow automation tools, data analysis modules, and customer support bots. All AI functionalities on our platform are powered by third-party providers, including OpenAI, Anthropic, and Google Cloud AI.

When you use our AI products, the data you provide—such as text, files, images, or other inputs—may be processed by these third-party AI systems to generate outputs or perform requested actions. We do not use your data to train any AI models unless you have given explicit consent or unless it is necessary to improve the service and is permitted by law. We require all third-party AI vendors to adhere to strict data protection and confidentiality standards.

Compliance with the EU AI Act and Other Regulations:

Chipp is committed to ensuring that the use of AI on our platform complies with the requirements of the EU Artificial Intelligence Act (AI Act), the UK GDPR, and other applicable data protection and AI regulations. In accordance with the EU AI Act and its annexes, we do not offer or support any AI practices that are prohibited under Article 5, including but not limited to:

  • AI systems that deploy manipulative, deceptive, or exploitative techniques likely to cause significant harm to individuals.

  • AI systems used for social scoring that result in unjustified or disproportionate treatment in unrelated social contexts.

  • AI systems that perform profiling or risk assessment for predicting criminal offenses based solely on personality traits or characteristics.

  • AI systems that create or expand facial recognition databases through untargeted scraping of facial images from the internet or CCTV footage.

  • AI systems for emotion recognition in workplaces or educational settings, except where permitted for medical or safety reasons.

  • AI systems that perform biometric categorization to infer sensitive characteristics such as race, political opinions, religious beliefs, or sexual orientation.

  • Real-time remote biometric identification systems in publicly accessible spaces for law enforcement, except under the strict conditions and safeguards set out in the AI Act.

We regularly review our AI integrations and the practices of our third-party providers to ensure ongoing compliance with these and other legal requirements. Where required, we implement additional safeguards, conduct risk assessments, and provide transparency to users regarding the operation and limitations of AI systems on our platform. 

Responsible AI Use

We are committed to the following principles regarding AI use:

  • Transparency: We clearly inform users when they are interacting with AI systems and provide information about how these systems work and the data they process.

  • User Control: You retain ownership of your data and outputs generated by our AI tools, subject to our Terms of Service. You may choose which features to use and can opt out of certain AI-driven functionalities where applicable.

  • Privacy and Security: All data processed by our AI systems, through third-party providers, is handled in accordance with this Privacy Policy and applicable data protection laws. We implement technical and organizational measures to safeguard your data.

  • No Automated Decisions with Legal or Significant Effects: We do not use AI to make automated decisions that produce legal or similarly significant effects on individuals without meaningful human involvement, unless required or permitted by law and with appropriate safeguards in place.

  • Continuous Improvement: We regularly review and update our AI integrations to ensure they operate as intended, are free from bias to the extent possible, and comply with ethical and legal standards.

If you have questions or concerns about our use of AI and AI products, or if you wish to exercise your rights in relation to AI-driven processing, please contact us using the details provided in this Privacy Policy.