Privacy Policy

1. Introduction

Tact AI, Inc. ("Tact", "we", "us", or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services.

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, and password (stored as a secure hash). If you sign in via Google or Microsoft, we receive your name, email, and profile picture from those providers.

Calendar Data

With your explicit consent, we access your calendar events to provide meeting preparation, follow-up automation, and relationship intelligence features. We process event titles, times, attendees, and descriptions. We do not access calendar data without your authorization.

Meeting Data

If you enable meeting intelligence features, we may process meeting transcripts and recordings (with all participants' consent) to generate summaries, action items, and follow-up drafts.

Usage Data

We automatically collect information about how you interact with our platform, including pages visited, features used, and device information (browser type, operating system, IP address).

3. How We Use Your Information

We use collected information to:

• Provide, maintain, and improve our services
• Generate meeting briefings, summaries, and follow-up suggestions
• Track relationship health and surface actionable insights
• Send service-related communications
• Detect and prevent fraud or security issues
• Comply with legal obligations

4. Data Sharing

We do not sell your personal data. We may share information with:

• Service providers who help us operate our platform (hosting, analytics, email delivery), bound by confidentiality agreements
• AI model providers for processing meeting content and generating insights, under strict data processing agreements that prohibit training on your data
• Legal authorities when required by law, regulation, or legal process

5. Data Storage and Security

Your data is stored on secure servers provided by Vercel, Railway, and other infrastructure partners. We use encryption in transit (TLS 1.3) and at rest. We implement access controls, audit logging, and regular security reviews.

6. Data Retention

We retain your account data for as long as your account is active. Meeting data and calendar data are retained as needed to provide our services. You can request deletion of your data at any time. Upon account deletion, we remove your personal data within 30 days, except where retention is required by law.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Object to or restrict processing of your data
• Data portability (receive your data in a structured format)
• Withdraw consent at any time

To exercise these rights, contact us at privacy@usetact.io.

8. Cookies

We use essential cookies to maintain your session and preferences. We do not use third-party advertising cookies. Analytics cookies are only used with your consent.

9. International Transfers

Your data may be processed in countries outside your jurisdiction. We ensure appropriate safeguards are in place, including standard contractual clauses where applicable.

10. Children's Privacy

Our services are not directed to individuals under 16. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or through our platform. Continued use after changes constitutes acceptance.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Tact AI, Inc.
Email: privacy@usetact.io