Privacy Policy

Your privacy is fundamental to everything we build. This policy explains how we collect, use, and protect your information.

Last updated: December 17, 2025 • Effective: December 17, 2025

1. Introduction

Aether AI, Inc. ("Aether AI," "we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy describes how we collect, use, disclose, and safeguard information when you use the Aether AI Support platform, including our website, APIs, widgets, and related services (collectively, the "Service").

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

Our Commitment: We believe privacy is a fundamental right. We design our systems with privacy in mind, minimize data collection, and never sell your personal information.

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, and authentication credentials (via Google OAuth or email/password). For business accounts, we may also collect company name, billing address, and payment information.

Usage Data

We automatically collect information about your use of the Service, including:

  • Log data (IP address, browser type, pages visited, timestamps)
  • Feature usage and interaction patterns
  • Performance metrics and error logs

Customer Support Data

As a support platform, we process data on your behalf, including:

  • Conversations between you and your end users via the chat widget
  • Support tickets and their contents
  • Knowledge base documents you upload
  • End user identifiers you choose to pass to our widget

AI Training Data

Important: We do NOT use your customer conversations or knowledge base content to train our general AI models. Your data is used exclusively to provide AI responses within your own account.

3. How We Use Your Information

1

Service Delivery

To provide, maintain, and improve our platform features

2

AI Responses

To generate contextual AI responses using your knowledge base

3

Support

To respond to your inquiries and provide customer support

4

Analytics

To understand usage patterns and improve user experience

5

Security

To detect, prevent, and address technical or security issues

6

Communications

To send service updates, security alerts, and promotional content (with consent)

7

Billing

To process payments and manage subscriptions

8

Legal Compliance

To comply with legal obligations and enforce our terms

4. Data Sharing & Disclosure

🔒 We never sell your personal information to third parties.

We may share information in the following limited circumstances:

Service Providers

We work with trusted third parties who help us operate our service, including cloud hosting (Google Cloud), payment processing (Stripe), email delivery (Resend), and analytics. These providers are bound by strict data protection agreements.

AI Providers

To generate AI responses, we send conversation context to our AI providers (OpenAI, Anthropic). We use API configurations that prevent your data from being used for model training. Data is transmitted securely and not stored by these providers beyond the request lifecycle.

Legal Requirements

We may disclose information if required by law, subpoena, or other legal process, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you via email or prominent notice on our website before your information is transferred and becomes subject to a different privacy policy.

5. Data Security

We implement comprehensive security measures to protect your information:

Encryption in Transit

All data transmitted using TLS 1.3

Encryption at Rest

AES-256 encryption for stored data

Access Controls

Role-based access with MFA for team members

Infrastructure

SOC 2 compliant cloud infrastructure

Monitoring

24/7 security monitoring and alerting

Audits

Regular third-party security assessments

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we continuously work to enhance our security posture.

6. Data Retention

We retain different types of data for different periods:

Data TypeRetention Period
Account InformationUntil account deletion + 30 days
Conversation HistoryBased on plan tier (90 days - unlimited)
Support TicketsBased on plan tier (1 year - unlimited)
Knowledge BaseUntil deletion by user
Audit Logs2 years (Enterprise: customizable)
Billing Records7 years (legal requirement)

You may request deletion of your data at any time by contacting us or through your account settings. Some data may be retained longer if required by law.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

Access

Request a copy of your personal data

Correction

Request correction of inaccurate data

Deletion

Request deletion of your data ("right to be forgotten")

Portability

Receive your data in a portable format

Restriction

Request restriction of processing

Objection

Object to processing based on legitimate interests

Withdraw Consent

Withdraw consent where processing is consent-based

Complaint

Lodge a complaint with a supervisory authority

To exercise any of these rights, please contact us at privacy@aetherai.support. We will respond within 30 days.

8. International Data Transfers

Our Service is operated from the United States. If you are located outside the US, please be aware that your information will be transferred to, stored, and processed in the US and other countries where our service providers operate.

We ensure appropriate safeguards are in place for international transfers, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Data Processing Agreements with all sub-processors
  • Compliance with applicable data protection laws

9. Cookies & Tracking Technologies

We use cookies and similar technologies for the following purposes:

Essential Cookies

Required

Required for authentication, security, and basic functionality. Cannot be disabled.

Analytics Cookies

Optional

Help us understand how users interact with our service. We use privacy-focused analytics that don't track across sites.

Preference Cookies

Optional

Remember your preferences like theme settings and language.

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect functionality.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Address

Aether AI, Inc.
Operated by KumoKodo.ai
United States

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we will provide additional notice via email or in-product notification.

We encourage you to review this page periodically for the latest information on our privacy practices.