ANDXORE AI PRIVACY POLICY

ANDXORE AI PRIVACY POLICY

This Privacy Policy describes how Botudio INC. ("Company," "we," "our," or "us") collects, uses, stores, and protects your personal information when you access and use our AI-powered services through our website at https://andxore.ai/ and/or our mobile and web applications (collectively, the "Platform").

We are committed to protecting your privacy in compliance with applicable data protection laws, including relevant international regulations such as the General Data Protection Regulation ("GDPR") where applicable

Scope and Acceptance

By accessing or using our Platform, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. This policy applies to all users, including customers, developers, and visitors who interact with our AI services, interfaces, or tools.

Definitions

For purposes of this Privacy Policy:

  • Personal Data: Any information that identifies or can reasonably be used to identify a natural person.

  • Data Controller: The legal entity that determines the purposes and means of processing personal data—in this case, _____.

  • Processing: Any operation performed on personal data, including collection, recording, organization, storage, adaptation, use, disclosure, or erasure.

  • Cookies: Small text files placed on your device to collect standard internet log information and visitor behavior data.

  • Usage Data: Information about how you interact with our services, including logs, access patterns, and behavioral analytics.

Personal Data We Collect

We may collect the following categories of personal data:

Information You Provide Directly

  • Identity Data: Full name, username, email address, organization name (if applicable)

  • Contact Data: Email address, phone number (if provided), mailing address, and communication preferences

  • Account Data: Login credentials, subscription details, and account settings

  • Communication Data: Content you provide through contact forms, support tickets, feedback, or direct communications

Information Collected Automatically

  • Technical Data: IP address, browser type and version, operating system, device identifiers, screen resolution, access times, and server logs

  • Usage Data: Pages visited, features used, session duration, click patterns, search queries, and interaction statistics

  • Performance Data: Error logs, crash reports, and diagnostic information

AI-Related Data

  • Input Data: Prompts, queries, uploaded files, and other content you submit to our AI services

  • Output Data: AI-generated responses and results

  • Processing Data: Metadata related to AI processing, including model versions used and processing times

How We Collect Your Data

We collect personal data through the following methods:

  • Direct Provision: Information you voluntarily provide during registration, service use, or communications

  • Automated Collection: Cookies, web beacons, and similar tracking technologies

  • Third-Party Integration: Services you authorize to connect with our Platform (with your explicit consent)

  • Business Communications: Interactions through email, phone, or other communication channels

Purposes and Legal Basis for Data Processing

Primary Purposes

We process your personal data for the following purposes:

  • Service Delivery: Creating and managing user accounts, providing AI services, and maintaining platform functionality

  • Service Improvement: Analyzing usage patterns, improving AI models, and enhancing user experience

  • Communication: Sending service-related notifications, updates, and responding to inquiries

  • Support: Providing technical assistance and customer service

  • Security: Protecting against fraud, unauthorized access, and ensuring platform security

  • Legal Compliance: Meeting regulatory requirements and responding to legal requests

Marketing Communications

With your explicit consent, we may send promotional materials, newsletters, and marketing communications. You may opt out at any time.

Legal Basis

We process personal data based on:

  • Consent: Where you have provided clear, informed consent

  • Contract Performance: When necessary to deliver services you have requested

  • Legal Obligation: To comply with applicable laws and regulations

  • Legitimate Interest: For fraud prevention, service optimization, and business operations 

Cookies and Tracking Technologies

Types of Cookies We Use

  • Essential Cookies: Required for basic platform functionality and security

  • Analytics Cookies: Help us understand how users interact with our services

  • Functional Cookies: Remember your preferences and settings

  • Performance Cookies: Monitor and improve service performance

Cookie Management

You can manage cookie preferences through your browser settings. Please note that disabling essential cookies may impact platform functionality and your user experience.

Data Sharing and Disclosure

Authorized Sharing

We do not sell, rent, or trade your personal data to third parties. However we may share personal data with:

  • Service Providers: Trusted third parties who assist in platform operations (cloud hosting, analytics, customer support)

  • Business Partners: When you explicitly authorize integration with third-party services

  • Legal Authorities: When required by law, court order, or to protect our legal rights

  • Business Transfers: In connection with mergers, acquisitions, or asset sales (with notice to affected users)

International Transfers

If personal data is transferred, we ensure appropriate safeguards are in place, including adequacy decisions, standard contractual clauses, or other approved mechanisms.

Data Retention

Retention Principles

We retain personal data only as long as necessary to:

  • Fulfill the purposes outlined in this Privacy Policy

  • Comply with legal, regulatory, or contractual obligations

  • Resolve disputes and enforce agreements

  • Maintain security and audit trails

Retention Periods

We retain your personal data for a period of up to 5 (five) years after your last use of the Platform or interaction with our services, unless a shorter retention period is required by law or you request deletion earlier. When data is no longer required, it is securely deleted or anonymized using industry-standard methods.

Your Privacy Rights

Under applicable data protection laws, you have the following rights:

Access and Portability

  • Request access to your personal data

  • Receive a copy of your data in a structured, machine-readable format

Correction and Completion

  • Request correction of inaccurate or incomplete personal data

Deletion and Restriction

  • Request deletion of your personal data (subject to legal retention requirements)

  • Request restriction of processing in certain circumstances

Objection and Consent Withdrawal

  • Object to processing based on legitimate interests

  • Withdraw previously given consent at any time

Complaint Rights

  • Lodge a complaint with the relevant data protection authority

Exercising Your Rights

To exercise these rights, contact us at: [_____]. We will respond within 30 days and may request verification of your identity to protect your data.

Data Security

Security Measures

We implement comprehensive security measures including:

  • Encryption: SSL/TLS encryption for data in transit and encryption for sensitive data at rest

  • Access Controls: Role-based access controls and multi-factor authentication

  • Network Security: Firewalls, intrusion detection systems, and regular security monitoring

  • Regular Audits: Periodic security assessments and vulnerability testing

  • Staff Training: Regular privacy and security training for our personnel

Your Responsibility

While we implement robust security measures, you are responsible for:

  • Maintaining the confidentiality of your login credentials

  • Using strong, unique passwords

  • Promptly reporting any suspected security incidents

Third-Party Services and Links

Our Platform may contain links to third-party websites, services, or applications. This Privacy Policy does not govern the privacy practices of these third parties. We recommend reviewing their privacy policies before providing any personal information.

Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children under 18. If we become aware that we have collected such data, we will take steps to delete it promptly.

Changes to This Privacy Policy

Updates

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors.

Notification

  • Minor Changes: Updated version posted on our website with a new effective date

  • Material Changes: We will provide notice through email, in-app notifications, or prominent website notices at least 30 days before the changes take effect

Continued Use

Your continued use of our Platform after changes become effective constitutes acceptance of the updated Privacy Policy.

Contact Information

Privacy Inquiries

For questions, concerns, or requests regarding this Privacy Policy or your personal data:

Email: kivanc@andx.ai

Company: Botudio INC

Address: 2035 Sunset Lake Rd , Newark 19702 DE

Phone: +1 (561) 938-4814

Response Time

We aim to respond to all privacy-related inquiries within 30 days. For urgent matters, please indicate the urgency in your communication.