Privacy Policy

AiSMOS, Inc. (“AiSMOS,” “we,” “us,” or “our”) operates the AiSMOS AI Sales & Marketing Operating System platform (the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our platform.

By accessing or using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please discontinue use of the Service.

Account Information: When you register, we collect your name, email address, company name, job title, and password. This information is required to create and manage your account.

Usage Data: We automatically collect information about how you interact with the Service, including pages visited, features used, AI agents executed, task inputs and outputs, and timestamps.

Payment Information: We use Stripe, Inc. to process payments. We do not store your full credit card number or CVV — Stripe handles all payment data in accordance with PCI-DSS standards.

Integration Data: When you connect third-party tools (e.g., HubSpot, Gmail, Apollo), we collect the data necessary to operate those integrations on your behalf, including OAuth tokens and API credentials (stored encrypted at rest).

AI Inputs & Outputs: The inputs you provide to AI agents (prospect data, company context, etc.) and the outputs generated are stored to power task history, workflow memory, and vector recall.

Device & Technical Data: We collect IP addresses, browser type, operating system, referring URLs, and other technical identifiers through cookies and server logs.

We use collected information to: provide and improve the Service; authenticate users and enforce account security; process payments and manage subscriptions; send transactional emails (account notices, task completions, billing alerts); respond to support requests; analyze usage patterns to improve product features; and comply with legal obligations.

We do not sell your personal information to third parties. We do not use your AI task inputs or outputs to train our models without your explicit consent.

Service Providers: We share data with trusted vendors who help us operate the platform, including Stripe (payments), Anthropic / OpenAI (AI inference), Qdrant (vector memory), Amazon Web Services (cloud infrastructure), and Postmark (email delivery). All vendors are bound by data processing agreements.

Legal Requirements: We may disclose your information if required by law, regulation, court order, or governmental authority, or to protect the rights and safety of AiSMOS, our users, or the public.

Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity, subject to the same privacy protections.

We retain your account data for as long as your account is active. Task logs and AI outputs are retained for 90 days by default. Vector memory data is retained until you deprovision your account or explicitly request deletion. You may request deletion of your data at any time by contacting privacy@aismos.ai.

We implement industry-standard security measures including AES-256 encryption at rest, TLS 1.3 in transit, role-based access controls, and regular security audits. API credentials and OAuth tokens are stored in encrypted form and never logged in plaintext.

No method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we are committed to protecting your data using commercially reasonable means.

Depending on your jurisdiction, you may have the right to: access the personal data we hold about you; correct inaccurate data; request deletion (“right to be forgotten”); restrict or object to processing; data portability; and withdraw consent at any time.

To exercise any of these rights, email privacy@aismos.ai. We will respond within 30 days.

We use cookies and similar tracking technologies to maintain sessions, remember preferences, and analyze traffic. For detailed information, see our Cookie Policy. You can control cookies through your browser settings or our cookie consent banner.

The Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will delete it promptly.

We may update this Privacy Policy periodically. We will notify you of material changes via email or an in-app notice at least 30 days before the change takes effect. Continued use of the Service after the effective date constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy, please contact our Data Protection Officer at: