We keep your name, email and company so you can use our system. We place cookies on your browser to make our system faster. We may use your name and email to send you information about our system. Please keep your personal information up to date. We do not and will not sell Your Data, individually or in aggregated form. You may stop receiving information from us at any time. You may access your personal data at any time. You are responsible for maintaining the privacy of data you enter into our system. We keep your data very private on our cloud providers. At present, we use AWS. x.ai is a U.S. company. We follow the laws of all the countries where we operate, and follow GDPR requirements. If you need more information, see the sections below.
Effective Date: 1/31/2020
Table of Contents
- Information We Collect and Receive
- How We Use the Information We Collect
- How We Share And Disclose Information
- Other Access to or Disclosure of Your Information
- Security and Information Protection
- Payment Information
- Your Controls and Choices
- No Children Under Age 13
- International Transfer of Data
- Contact Us
- x.ai Subprocessors
- Privacy Shield Notice
We understand that by choosing x.ai, you are placing some of your important data in our hands. We are only in business if you trust us, so your privacy means everything to us! Here are the key things you should know:
Information We Collect and Receive
Our primary goals in collecting information are to provide and improve our Services, to administer your use of the Services and to enable you to enjoy and easily navigate our Services. We collect and use this information to provide, improve and protect our Services.
A. Information Related to Your Account and Interaction with x.ai.
Registration and Contact Information. We collect certain “Personally Identifiable Information” from you when you sign up to our Services, that can be used to identify you, such as your name, email address, mailing address, telephone number, and any other information that we deem relevant for the purpose of providing you with our Services or which you provided to use voluntarily. This category also includes information tied to your identity that you provide us through other means, such as emails to our support service.
Payment Information. When you purchase the Services, we will also collect transaction information, which may include your credit card information, billing and mailing address, and other payment-related information (“Payment Information”). We describe how Payment Information may be collected and processed in Section 7.
Technical, Usage and Location Information. Whenever you visit our Site, we may collect ”Non-identifying Information” from you, such as your referring URL, browser, operating system, cookie information, and Internet Service Provider. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, this information alone cannot usually be used to identify you.
Other Information. We receive additional information provided to us when submitted to our Sites or if you participate in a focus group, contest, activity or event, apply for a job, or otherwise communicate with x.ai.
x.ai’s use of information received, and x.ai’s transfer of information to any other app, from Google APIs will adhere to Google’s Limited Use Requirements.
B. Information Related to Our Service.
Calendar and Email Information. In order to perform the Services, we ask for visibility into your calendar, but you can revoke our access to your calendar at any time. x.ai is by design exposed to emails we are explicitly copied on through the Services. We do not have access to your inbox, read your attachments or forward thread text to third parties.
How We Use the Information We Collect
We use your information in the following ways:
- to provide, update, maintain, improve and protect our Services, including to operate certain features and functionality of the Services, to prevent or address service errors (for example, by remembering your calendar information), security or technical issues, analyze and monitor usage, trends and other activities.
- For billing, account management and other administrative matters, we share and use Payment Information as described in Section 7.
- to respond to your support requests, comments and questions.
- to control unauthorized use or abuse of the Services, if we have a good faith belief, or have received a complaint alleging, that Your Data is in violation of our Acceptable Use Guidelines.
- to communicate directly with you, including by sending you newsletters, promotions and special offers or information about new products and services. You may, at any time, request to opt-out of receiving future emails or notifications from us, by contacting us.
How We Share And Disclose Information
We do not and will not sell Your Data, individually or in aggregated form. We may share or transfer your personal information to third parties only in the following limited circumstances:
We will display your Account information on your https://my.x.ai profile page and elsewhere through the Services in accordance with the preferences you set in your Account. You can review and revise your Account information at any time.
Other Access to or Disclosure of Your Information
We restrict access to any data and content you transmit to x.ai or is otherwise made available via the Services to x.ai employees, payment processors, contractors and agents who need to know that information in order to perform the Services. All of these individuals are subjected to strict contractual confidentiality obligations and may be disciplined or terminated if they fail to meet these obligations.
Security and Information Protection
We take security seriously. We take various steps to protect information you provide to us from loss, misuse, and unauthorized access or disclosure. These steps take into account the sensitivity of the information we collect, process and store, and the current state of technology. We use commercially reasonable and industry-standard physical, managerial, and technical safeguards to preserve the integrity and security of your information. To learn more about our current practices and policies regarding data privacy, security and confidentiality, please see x.ai/security.
Your Controls and Choices
Opt-Outs. x.ai provides you with the opportunity to choose (opt out) whether your personal information is to be disclosed to a third party or to be used for a purpose that is incompatible with the purpose(s) for which it was originally collected or subsequently authorized. You may exercise your choice by contacting us at: firstname.lastname@example.org. If you decide to opt-out, we may not be able to provide certain features of the Services to you.
Communication Preferences. If you receive commercial email from us, you may unsubscribe at any time by following the instructions contained within the email. You may also opt-out from receiving commercial e-mail from us, and any other promotional communications that we may send to you from time to time by sending your request to us by e-mail at email@example.com or by writing to us at the address given at the end of this policy. Additionally, we may allow you to view and modify settings relating to the nature and frequency of promotional communications that you receive from us.
Please be aware that if you opt-out of receiving commercial e-mail from us, it may take up to ten business days for us to process your opt-out request, and you may receive commercial e-mail from us during that period. Additionally, even after you opt-out from receiving commercial messages from us, you will continue to receive administrative messages from us regarding our Service.
No Children Under Age 13
International Transfer of Data
- E.U.-U.S. Privacy Shield and Swiss-U.S. Privacy Shield. To comply with European Union and Swiss data protection laws, x.ai self-certified under the E.U.-U.S. Privacy Shield and the Swiss-U.S. Privacy Shield. These frameworks were developed to enable companies to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States. For more information, including the types of Information covered, see x.ai’s EU-U.S. and Swiss-U.S. Privacy Shield Policy. To learn more about the Privacy Shield Program, please see https://www.privacyshield.gov/welcome.
200 Broadway, 3rd Floor,
New York, NY 10038
Security, Privacy and Compliance Information for x.ai
x.ai currently uses third party subprocessors to provide infrastructure services, and to help us provide customer support and email notifications. Prior to engaging any third party subprocessor, x.ai performs diligence to evaluate their privacy, security and confidentiality practices, and executes an agreement implementing its applicable obligations.
x.ai may use the following Subprocessors to host Your Data or provide other infrastructure that helps with delivery of our Services:
|Entity Name||Purposes||Entity Country|
|Amazon Web Services, Inc||Cloud Service Provider||United States|
|MongoDB Inc.||Database Hosting||United States|
|Datadog||Infrastructure Monitoring||United States|
|NewRelic||Infrastructure Monitoring||United States|
x.ai may use the following subprocessors to perform other Service functions:
|Entity Name||Purposes||Entity Country|
|Google Inc.||Cloud Service Provider||United States|
|Mailgun Technologies, Inc.||Cloud-based Email Notification Services||United States|
|Squarespace||Hosting of Public Website||United States|
|Salesforce||CRM & Sales Administration Services||United States|
|Customer.io||Cloud-based CRM Services||United States|
|Intercom, Inc.||Cloud-based CRM Services||United States|
|Survey Monkey||Conduct surveys and user research||United States|
|LaunchDarkly||Beta testing support||United States|
For Data Transfer from the EU and Switzerland into the United States: EU-US Privacy Shield Framework and Swiss-US Privacy Shield Framework Notice
In particular, if x.ai transfers to its service providers any personal information that x.ai received in reliance on its Privacy Shield certification, x.ai is responsible for the third parties’ processing of that personal information, unless x.ai proves that it is not responsible for the event giving rise to the damage.
With respect to the Personal Information received or transferred pursuant to the Privacy Shield Framework, x.ai is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, x.ai may be required to disclose Personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
x.ai acknowledges the right of EU and Swiss individuals to access their personal data pursuant to the Privacy Shield. Individuals wishing to exercise this right may do so by contacting us at firstname.lastname@example.org.
Contacting Us, Complaints and Dispute Resolution
In compliance with the Privacy Shield Principles, x.ai, inc commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to Privacy Shield. European Union and Swiss individuals with Privacy Shield inquiries or complaints should first contact us email at email@example.com. We will work to resolve your issue and will respond within 45 days of receipt.
x.ai has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers for more information and to file a complaint. This service is provided free of charge to you.
If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Privacy Shield Annex 1 at https://www.privacyshield.gov/article?id=ANNEX-I-introduction