Privacy Policy

Last updated: January 15, 2025

1. Introduction

Tailore ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

This policy complies with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable data protection laws.

2. Information We Collect

2.1. Information You Provide

  • Account Information: Name, email address, company name, password
  • Payment Information: Processed securely through Stripe (we do not store full payment card details)
  • Website Content: Content from websites you request us to analyze for chatbot creation
  • Support Communications: Messages, inquiries, and feedback you send to us

2.2. Automatically Collected Information

  • Usage Data: How you interact with the Service, features used, time spent
  • Chat Logs: Conversations between users and chatbots
  • Technical Data: IP address, browser type, device information, operating system
  • Analytics Data: Page views, click patterns, session duration

2.3. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Maintain your session and authentication state
  • Remember your preferences
  • Analyze Service usage and improve functionality
  • Provide personalized experiences

You can control cookies through your browser settings, but this may limit Service functionality.

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve the Service
  • Process transactions and send related information
  • Send administrative information, updates, and security alerts
  • Respond to your comments, questions, and requests
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations
  • Send marketing communications (with your consent, which you can withdraw)

4. Legal Basis for Processing (GDPR)

We process your personal data based on:

  • Contract Performance: To fulfill our agreement to provide the Service
  • Legitimate Interests: To improve the Service, ensure security, and prevent fraud
  • Consent: For marketing communications and optional features
  • Legal Obligations: To comply with applicable laws and regulations

5. Data Sharing and Disclosure

We do not sell your personal information. We may share data with:

  • Service Providers: Third-party vendors who perform services on our behalf (e.g., Stripe for payments, Resend for emails, OpenAI for AI features)
  • Legal Requirements: When required by law, court order, or government regulation
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you explicitly authorize sharing

All third-party service providers are contractually obligated to protect your data and use it only for specified purposes.

6. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • Encryption in transit (TLS/SSL) and at rest
  • Secure password hashing (bcrypt)
  • Regular security assessments and updates
  • Access controls and authentication
  • Secure API key storage with Fernet encryption

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Data Retention

We retain your data for as long as necessary to:

  • Provide the Service
  • Comply with legal obligations
  • Resolve disputes and enforce agreements

When you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law.

Chat logs and analytics data may be retained for up to 90 days after account deletion for service improvement purposes, then permanently deleted.

8. Your Rights (GDPR & CCPA)

You have the following rights regarding your personal data:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Restriction: Request limitation of processing
  • Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent for processing that requires it
  • Opt-Out: Opt out of sale of personal information (we do not sell data)

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Compliance with GDPR requirements for international transfers
  • Verification that third-party processors maintain adequate data protection

10. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. Third-Party Services

Our Service integrates with third-party services:

These services have their own privacy policies. We encourage you to review them.

12. California Privacy Rights (CCPA)

California residents have additional rights:

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information
  • Right to opt-out of sale of personal information (we do not sell data)
  • Right to non-discrimination for exercising privacy rights

To exercise these rights, contact us at [email protected].

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the new policy on this page
  • Updating the "Last updated" date
  • Sending an email notification for significant changes

Your continued use of the Service after changes constitutes acceptance of the updated policy.

14. Data Protection Officer

For questions about data protection, contact our Data Protection Officer:

Email: [email protected]
Subject: Data Protection Inquiry

15. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: [email protected]
Website: tailore.dev
Address: Available upon request

16. Supervisory Authority

If you are located in the European Economic Area (EEA) and believe we have not addressed your privacy concerns, you have the right to lodge a complaint with your local data protection supervisory authority.

Terms of Service | Contact Us