Chaai LLC Privacy Policy

Effective Date: July 27, 2025
Version: v1.0

BY USING OR ACCESSING OUR SERVICES OR BY PROVIDING PERSONAL DATA TO US ON OR THROUGH THESE SERVICES, YOU ACKNOWLEDGE YOUR UNDERSTANDING OF THE COLLECTION, USE, AND DISCLOSURE OF THAT INFORMATION IN ACCORDANCE WITH THIS PRIVACY POLICY.

This Privacy Policy sets forth the privacy practices and policies of Chaai, LLC (“Chaai,” “us,” or “we”). Chaai is the controller of any Personal Data submitted to our Services and is committed to respecting and protecting your privacy and helping you make the most of your time with our Services within a trusted environment. You must only use the Services if you have read and understood the terms of this Privacy Policy in effect at the time of your use. This Privacy Policy should be read in conjunction with our Terms of Service (the “Terms of Service”). Capitalized terms used in this Privacy Policy not defined herein shall have the meaning ascribed to them in the Terms of Service.

---

Table of Contents

1. Overview of Our Services
2. Revisions to the Privacy Policy
3. What Information We Collect
4. Cookies and Tracking
5. How We Use Your Personal Data
6. Limits on Use of Your Google User Data
7. Who We Share Your Data With
8. Retention and Deletion of Your Data
9. Children
10. Your Preferences and Privacy Rights
11. Security
12. California Residents
13. European Residents
14. Access from Outside the United States
15. Contact

---

1. Overview of Our Services

Chaai builds AI-powered virtual assistants — including Calyn (calendar assistant), Dina (meal planner), and Tera (task manager) — that work together to help you manage your daily life (collectively, the “Services”). To provide these Services, we may need to collect and use certain Personal Data from you. Your privacy is paramount to us, and this Privacy Policy explains how we collect, protect, use, and share that information. Some features are powered by third-party AI providers such as OpenAI. See Section 7.2 for details.

For purposes of this Privacy Policy, “Personal Data” means any information relating to an identified or identifiable natural person, as defined by applicable law.

---

2. Revisions to the Privacy Policy

We may revise this Privacy Policy from time to time to reflect changes to our Services or legal, regulatory, or operational requirements. If we make a material change, we will provide advance notice before such changes go into effect. If you object to any changes, you may stop using our Services. Your continued use of our Services after any changes go into effect indicates your acknowledgment and acceptance of those changes.

---

3. What Information We Collect

When you use our Services, we may collect the following types of Personal Data:

• Account Information. When you sign up for an account, we collect your name, email address, and other identifying information.
• Information You Voluntarily Provide. You may provide information about yourself and other members of your household when using the Services (e.g., meal preferences, family calendar sharing, notes). You may also enable device-level settings such as access to your calendar, camera, photo library, or location.
• Interactions with Our Assistants. Your interactions with our assistants (Calyn, Dina, and Tera) are stored locally on your device. We retrieve relevant information from your personal store only when executing requests using AI services like the OpenAI API. We use AI models provided by OpenAI via secure API calls. Your data submitted through the API is not used to train OpenAI’s models, and is only retained temporarily by OpenAI for abuse monitoring and safety purposes. AI responses are generated in real time and not stored by OpenAI beyond this limited retention window. While most interaction data remains on your device, certain anonymized metadata (such as task type, timestamps, or device logs) may be sent to our servers to support improvements, crash analytics, or service reliability.
• Product Usage Data. We collect information about how you use our Services, such as your actions in the app. This helps us improve performance and diagnose issues.

---

4. Cookies and Tracking

We do not use cookies or tracking technologies in our mobile or web applications. Any data collected is strictly for providing and improving our Services and is not used for advertising or behavioral profiling.

---

5. How We Use Your Personal Data

We may use your Personal Data for the following purposes:

• To provide and personalize our Services. For example, scheduling a meal via Dina may add a time block to your calendar through Calyn.
• To understand and troubleshoot issues. We use feedback and error reports to improve the reliability of our assistants.
• To promote features. We may occasionally notify you of new features or tools that may be useful via email or app notifications.
• To protect our systems and users. This includes preventing fraud, enforcing terms, and maintaining security.
• To support collaboration between assistants. For example, Tera may schedule a grocery run based on a meal planned in Dina and available time in Calyn.
• To carry out your instructions. All AI-powered processing happens in response to user actions.
• To verify and respond. We may verify you are an authorized user or respond to support inquiries.

---

6. Limits on Use of Your Google User Data

Chaai LLC’s use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements for Workspace APIs and the Limited Use requirements for Photos APIs.

We only use your Google Calendar data to perform actions you explicitly request, such as scheduling or canceling events, or finding available time.

• We do not use Google user data for advertising purposes.
• We do not allow humans to read your Google user data unless required by law or with your explicit consent (e.g., for troubleshooting).
• We do not share your Google user data with third parties unless necessary to fulfill your request.
• We only use the data to provide or improve user-facing features that are visible and relevant to you within Calyn and other Chaai LLC services.

---

7. Who We Share Your Data With

We do not rent, sell, or disclose your Personal Data except in the following cases:

7.1 Chaai Partners

We work with third parties to fulfill user requests, including AI platforms such as OpenAI. We only share relevant data when needed to execute your request — for example, when parsing an email or generating a calendar event.

From time to time, we may integrate with additional third-party services (such as calendar, email, database, or messaging providers) solely to deliver the functionality you have requested. We will only share the minimum necessary data and in accordance with this Policy.

7.2 AI Providers and OpenAI Use

Chaai uses OpenAI’s API under terms that do not allow submitted data to be used for training OpenAI’s models.

Inputs submitted via the API may be temporarily retained (for up to 30 days) by OpenAI to monitor for abuse and ensure operational safety, as described in OpenAI’s API Data Usage Policy. Chaai only sends the minimum necessary data to fulfill your request — such as:

• Your instructions
• Google Calendar data (e.g. event title, time, location)
• Uploaded images (e.g. photos of meals or handwritten calendars)
• Other relevant data on your device (e.g., saved meals, contact info)

Chaai does not store this data on OpenAI’s servers beyond the API call. We do not use OpenAI or similar providers to store user history or profile information.

From time to time, we may rely on additional AI providers under similar contractual and policy protections. Their use will remain consistent with the terms of this Privacy Policy.

7.3 Links to Third-Party Services

Our Services may include links to third-party calendar platforms or services (such as Apple Calendar or Google Calendar). These services are governed by their own privacy policies, and we are not responsible for the privacy practices of those external sites or platforms.

---

8. Retention and Deletion of Your Data

We retain your Personal Data only as long as necessary to provide the Services or comply with legal requirements. You may request deletion at any time by contacting us. If you stop using the Services, your data may be deleted after a reasonable period of inactivity. In addition, certain data stored locally on your device — including interaction history — may be automatically cleared on a periodic basis to conserve space and protect your privacy. Anonymized data may be retained for research, analytics, or service improvement.

---

9. Children

Our Services are not intended for children under 18. We do not knowingly collect Personal Data from anyone under 18. If we learn that we have done so, we will delete it promptly.

---

10. Your Preferences and Privacy Rights

You can control communications such as:

• Push Notifications. Disable in your mobile settings.
• Location Services. Opt out in your phone’s location settings.

In accordance with applicable law, you may also:

• Request access to your Personal Data
• Correct or delete inaccurate data
• Limit or object to processing
• Receive your data in a portable format
• Withdraw consent at any time

To exercise your rights, email us at team@getcha.ai. We may need to verify your identity before proceeding.

---

11. Security

We take appropriate measures to safeguard your data. However, no system is completely secure. You are responsible for keeping your login credentials safe and notifying us of any unauthorized use.

In the unlikely event of a data breach that affects your personal data, we will notify you and any applicable authorities as required by law.

---

12. California Residents

California residents may request a list of third parties to whom we’ve disclosed Personal Data for their marketing purposes in the past calendar year. You may also opt out of such sharing by contacting us.

---

13. European Residents

If you are located in the European Economic Area (EEA) or the United Kingdom, we process your personal data under one or more of the following legal bases:

• Consent: When you have given clear consent to process your data for a specific purpose.
• Contractual Necessity: When the processing is necessary to fulfill a contract with you (e.g., providing our Services).
• Legitimate Interests: When we process data for our legitimate interests, provided your rights and freedoms do not override them (e.g., service reliability or product improvement).
• Legal Obligation: When processing is required to comply with a legal obligation.

Chaai LLC is based in California, USA, and may transfer your data internationally. We use safeguards to protect data transferred outside your jurisdiction. You also have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.

---

14. Access from Outside the United States

If you use our Services from outside the U.S., your data may be transferred to servers in countries with different data protection laws. We will ensure safeguards are in place for such transfers.

---

15. Contact

For privacy-related questions or data requests, contact us at:
📧 team@getcha.ai