Privacy Policy

Your privacy matters. Here's how we protect it.

Last Updated: December 31, 2025 | Effective: December 31, 2025

Your Data, Your Control

You retain full ownership of your data. Export or delete it anytime.

No Model Training

We never train our AI models on your data without explicit consent.

Transparent Practices

Clear disclosure of what we collect and how we use it.

Global Compliance

GDPR, CCPA, and international privacy law compliant.

1. Introduction

Unhype AI, Inc. ("Unhype," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at unhype.ai (the "Website") and use our AI agent building platform and related services (collectively, the "Services").

This Privacy Policy applies to all users of our Services, including:

  • Account Holders: Individuals or organizations who create accounts to build and manage AI agents
  • End Users: Individuals who interact with AI agents created using our platform
  • Website Visitors: Individuals who browse our Website without creating an account

By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

2. Information We Collect

We collect several types of information from and about users of our Services:

2.1 Personal Information

Personal information is data that can be used to identify you directly or indirectly. We may collect:

  • Identity Data: First name, last name, username, job title, and professional role
  • Contact Data: Email address, phone number, billing address, and business address
  • Account Data: Username, password (encrypted), account preferences, and settings
  • Financial Data: Payment card details, billing information (processed by our payment provider)
  • Profile Data: Your interests, preferences, feedback, and survey responses
  • Company Data: Company name, size, industry, and business information

2.2 Content and Agent Data

When you use our Services to create and manage AI agents, we process:

  • Agent Configurations: Settings, instructions, and parameters you define for your agents
  • Knowledge Base Data: Documents, files, and information you upload to train your agents
  • Conversation Data: Interactions between your agents and end users
  • Integration Data: Data exchanged through third-party integrations you configure

2.3 Technical and Usage Data

We automatically collect certain information when you access our Services:

  • Device Information: Device type, operating system, browser type and version, and unique device identifiers
  • Log Data: IP address, access times, pages viewed, links clicked, and referring URLs
  • Usage Data: Features used, actions taken, time spent on pages, and navigation patterns
  • Performance Data: Error logs, crash reports, and system performance metrics
  • Location Data: General location derived from IP address (country, region, city)

2.4 Sensitive Personal Information

We do not intentionally collect sensitive personal information such as racial or ethnic origin, political opinions, religious beliefs, health information, or biometric data. If your use case involves processing such data through our Services, you are responsible for ensuring appropriate consent and compliance with applicable laws.

3. How We Collect Information

We collect information through the following methods:

3.1 Direct Collection

  • When you create an account or update your profile
  • When you subscribe to our Services or make a purchase
  • When you contact us for support or inquiries
  • When you participate in surveys, promotions, or research
  • When you upload content or configure your agents

3.2 Automatic Collection

  • Through cookies, pixels, and similar tracking technologies
  • Through server logs and analytics tools
  • Through your browser or device when you access our Services

3.3 Third-Party Sources

  • From business partners and integration providers you connect
  • From publicly available sources (e.g., company websites, LinkedIn)
  • From single sign-on (SSO) providers when you use social login

4. How We Use Your Information

We use the information we collect for the following purposes:

4.1 Service Delivery

  • To create and manage your account
  • To provide, operate, and maintain our Services
  • To process your transactions and send billing information
  • To enable your AI agents to function as configured
  • To provide customer support and respond to inquiries

4.2 Service Improvement

  • To analyze usage patterns and improve our Services
  • To develop new features and functionality
  • To conduct research and analytics
  • To troubleshoot issues and fix bugs
  • To monitor and enhance security

4.3 Communication

  • To send service-related notifications and updates
  • To respond to your requests and inquiries
  • To send marketing communications (with your consent)
  • To provide product tips and best practices

4.4 Legal and Safety

  • To comply with legal obligations and regulations
  • To enforce our Terms of Service and other agreements
  • To protect our rights, privacy, safety, or property
  • To detect, prevent, and address fraud or security issues

6. Data Sharing and Disclosure

We may share your information in the following circumstances:

6.1 Service Providers

We engage trusted third-party service providers to perform services on our behalf, including cloud hosting, payment processing, analytics, email delivery, and customer support. These providers are contractually obligated to protect your information and use it only for the services they provide to us.

6.2 Business Transfers

If we are involved in a merger, acquisition, financing, bankruptcy, or sale of company assets, your information may be transferred as part of that transaction. We will notify you of any change in ownership or use of your personal information.

6.3 Legal Requirements

We may disclose your information if required by law, subpoena, or other legal process, or if we believe in good faith that disclosure is necessary to protect our rights, your safety or the safety of others, investigate fraud, or respond to a government request.

6.4 With Your Consent

We may share your information with third parties when you have given us your explicit consent to do so.

6.5 What We Never Do

  • We never sell your personal information to third parties
  • We never share your data for third-party advertising purposes
  • We never use your agent data to train general AI models without explicit consent
  • We never provide unauthorized access to your data to any third party

7. International Data Transfers

Unhype is headquartered in the United States, and we process and store data in the United States and other countries where our service providers operate. If you are located outside the United States, your information will be transferred to, stored, and processed in the United States or other countries.

For transfers from the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on:

  • Standard Contractual Clauses (SCCs): EU-approved contractual terms that provide adequate protection for personal data
  • Data Processing Agreements: Binding agreements with all sub-processors
  • Adequacy Decisions: Where the European Commission has determined a country provides adequate data protection

Enterprise customers may request data residency options in specific geographic regions. Contact us for more information.

8. Data Retention

We retain your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

8.1 Retention Periods

  • Account Data: Retained while your account is active and for 30 days after deletion request
  • Agent and Conversation Data: Retained according to your configured retention settings (default: 90 days for conversation logs)
  • Billing Data: Retained for 7 years for tax and accounting purposes
  • Usage Analytics: Aggregated and anonymized data may be retained indefinitely
  • Support Communications: Retained for 3 years after resolution

8.2 Data Deletion

When you delete your account or request data deletion, we will remove your personal information from our active systems within 30 days. Some information may be retained in encrypted backups for up to 90 days before permanent deletion. Certain data may be retained longer if required by law or for legitimate business purposes (e.g., fraud prevention).

9. Data Security

We implement comprehensive security measures to protect your information:

9.1 Technical Safeguards

  • Encryption: AES-256 encryption for data at rest; TLS 1.3 for data in transit
  • Access Controls: Role-based access control (RBAC) with principle of least privilege
  • Authentication: Multi-factor authentication (MFA) available for all accounts
  • Network Security: Firewalls, intrusion detection, and DDoS protection
  • Monitoring: 24/7 security monitoring and automated threat detection

9.2 Organizational Safeguards

  • SOC 2 Type II: Annual third-party security audits
  • Employee Training: Regular security awareness training for all staff
  • Background Checks: All employees with data access undergo background screening
  • Incident Response: Documented incident response procedures with defined notification timelines
  • Vendor Assessment: Security reviews for all third-party service providers

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we continuously work to enhance our security measures. For more details, visit our Security page.

10. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

10.1 General Rights

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information
  • Portability: Request a copy of your data in a portable format
  • Restriction: Request restriction of processing in certain circumstances
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent where processing is based on consent

10.2 How to Exercise Your Rights

You can exercise many of these rights directly through your account settings. For other requests, contact us at privacy@unhype.ai. We will respond to your request within 30 days (or sooner if required by applicable law).

We may need to verify your identity before processing your request. In some cases, we may be unable to fulfill your request due to legal obligations or legitimate business needs, and we will explain why.

11. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

11.1 Types of Cookies

  • Essential Cookies: Required for the Services to function (e.g., authentication, security)
  • Functional Cookies: Remember your preferences and settings
  • Analytics Cookies: Help us understand how you use our Services
  • Marketing Cookies: Track effectiveness of our marketing (only with consent)

11.2 Managing Cookies

You can manage cookie preferences through:

  • Our cookie consent banner when you first visit our Website
  • Your browser settings (note: disabling cookies may affect functionality)
  • Third-party opt-out tools for analytics and advertising cookies

11.3 Do Not Track

Our Services currently do not respond to "Do Not Track" signals. However, you can manage tracking through your cookie preferences and browser settings.

12. AI and Machine Learning

As an AI platform, we want to be transparent about how AI is used in our Services:

12.1 Your Agent Data

Our Commitment:

  • We do NOT use your agent data, knowledge bases, or conversation logs to train general AI models
  • Your data remains isolated and is used solely to power your specific agents
  • We do not share your data with AI model providers for training purposes

12.2 Third-Party AI Models

Our Services may utilize third-party AI models (e.g., language models) to power agent functionality. When processing your data through these models:

  • Data is transmitted securely using encryption
  • We have data processing agreements with all AI providers
  • Providers are contractually prohibited from using your data for training
  • We select providers who meet our security and privacy standards

12.3 Automated Decision-Making

Our AI agents assist with information processing and recommendations, but we design them to support human decision-making rather than make fully automated decisions with significant effects. You can configure human-in-the-loop workflows for sensitive operations.

13. Children's Privacy

Our Services are not intended for children under 16 years of age (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@unhype.ai. If we discover we have collected personal information from a child without parental consent, we will delete that information promptly.

14. Third-Party Services

Our Services may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party services you access.

Key third-party service categories we use include:

  • Cloud Infrastructure: Secure cloud hosting providers (SOC 2 certified)
  • Payment Processing: PCI DSS compliant payment processors
  • Analytics: Privacy-focused analytics providers
  • Communication: Email and notification service providers
  • AI Models: Large language model providers with data processing agreements

15. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

15.1 Your California Rights

  • Right to Know: Request disclosure of the categories and specific pieces of personal information we have collected
  • Right to Delete: Request deletion of your personal information
  • Right to Correct: Request correction of inaccurate personal information
  • Right to Opt-Out: Opt out of the sale or sharing of personal information
  • Right to Limit: Limit use of sensitive personal information
  • Non-Discrimination: We will not discriminate against you for exercising your rights

15.2 Sale of Personal Information

We do not sell your personal information as defined by the CCPA. We do not share your personal information for cross-context behavioral advertising purposes.

15.3 Exercising Your Rights

California residents can submit requests by emailing privacy@unhype.ai with the subject line "California Privacy Request." We will verify your identity and respond within 45 days.

16. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the General Data Protection Regulation (GDPR) and equivalent laws:

16.1 Your GDPR Rights

  • Access (Article 15): Obtain confirmation of processing and a copy of your data
  • Rectification (Article 16): Correct inaccurate or incomplete data
  • Erasure (Article 17): Request deletion ("right to be forgotten")
  • Restriction (Article 18): Restrict processing in certain circumstances
  • Portability (Article 20): Receive data in a structured, machine-readable format
  • Objection (Article 21): Object to processing based on legitimate interests
  • Automated Decisions (Article 22): Not be subject to solely automated decision-making

16.2 Data Controller

Unhype AI, Inc. is the data controller for personal information collected through our Services. Our contact details are provided in Section 18.

16.3 Supervisory Authority

You have the right to lodge a complaint with a supervisory authority in your country of residence if you believe our processing of your personal information violates applicable law.

17. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:

  • We will update the "Last Updated" date at the top of this page
  • For material changes, we will provide notice through email or a prominent notice on our Website
  • We will obtain your consent where required by law

We encourage you to review this Privacy Policy periodically. Your continued use of our Services after changes are posted constitutes acceptance of the updated policy.

18. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Privacy Inquiries

For privacy-related questions and data requests:

privacy@unhype.ai

Data Protection Officer

For GDPR-related inquiries:

dpo@unhype.ai

Mailing Address

Unhype AI, Inc.
Attn: Privacy Team
548 Market St, Suite 95389
San Francisco, CA 94104
United States

We aim to respond to all privacy inquiries within 30 days. For urgent matters or data breaches, please include "URGENT" in your subject line.

Terms of ServiceSecurityComplianceContact Us