Privacy Policy

Effective Date: August 31, 2023

We are a Yunoapp LLC (“Ask AI-bot Open Chat Assistant”, “We“, “Us“, “Company“), that respect your privacy rights and are committed to protecting your Personal Information. The purpose of this Policy is to familiarize you with the information about what your data we are processing as a Data Controller, what a legal basis of processing such information, with whom we can share your personal information, storage of your personal data and what rights you have in relation to it.

By accessing our Website at https://aichat-app.com/ or use our mobile application Ask AI-bot Open Chat Assistant or engage with any of our services (collectively referred to as the "Services," which encompass the Website and App “Ask AI-bot Open Chat Assistant”), you consent to the practices described in this Privacy Policy. If you have any questions or concerns regarding our practices or your personal information, please don't hesitate to contact us using the information provided at the end of this policy.

If you find any terms within this privacy notice that you do not consent to, we kindly ask that you cease using our Services promptly.

We encourage you to thoroughly review this privacy notice as it outlines how we handle the information we collect.

Please, pay attention that the Company and its service providers are based in the United States. Your country or jurisdiction may have different data privacy laws and protections than the United States.

1. Protection of Children's Privacy

1.1. Our Website and App is not intended for individuals under the age of 12, and we do not knowingly gather personal data from children within this age range. In the event that we become aware of a situation where a child under 12 has shared personal information with us without parental consent, we take immediate action to remove such information from our records.

2. What data we collect

2.1. Personal information you disclose to us

Communication Details

In the event of communication with us, we may gather your name, contact details, and the contents of any messages you transmit ("Communication Details").

2.2. Information automatically collected

Personal Information

When you visit, use, and interact with the Service, we may receive certain information about your visit, use, or interactions, your order information if you make a purchase through in-app purchase, and identifier for advertisers designated in your mobile device used in accessing our services (The Identifierfor Advertisers-IDFA).

Log data

We gather specific information that your mobile device transmits when utilizing our services, including a device identifier, user preferences, operating system details, and data about your interactions with our services via your device. Additionally, we accumulate particular data that your web browser conveys when you access our website, such as IP address, browser type, referring/exit pages, URLs, pages visited, and other pertinent information concerning your engagement with our services.

Analytics Usage

We employ several online analytics tools that utilize cookies to assist us in assessing user interactions with our Services and improving your experience while utilizing them such as Amplitude and AppsFlyer.

Location Data

We gather location-related data, encompassing details about your device's location, which can vary in terms of precision. The extent of data we collect is contingent on the nature and configuration of the device used to access our Services. For instance, we might utilize GPS and other technologies to amass geolocation data, providing insight into your present location based on your IP address.

Should you wish to abstain from the collection of this information, you have the option to decline access or deactivate the Location setting on your device. Nevertheless, it's important to note that opting out might result in limited access to certain features of our Services.

3. Purpose and legal basis for collecting and processing

3.1. We process your Personal Information for the subsequent objectives:

To provide and oversee access to the Services.
To enhance, maintain, or rectify any aspect of the Services, which might remain internal or be shared with pertinent third parties as required.
To apprise you of features or elements of the Services that we believe could capture your interest.
To address your inquiries, feedback, comments, or questions.
To transmit administrative information, such as updates regarding the Services or modifications to our terms, conditions, and policies.
To analyze your interactions with our Service.
To forge new programs and services.
To thwart fraud, criminal activities, or misuse of our Service, while concurrently safeguarding the security of our IT systems, architecture, and networks.
To adhere to legal obligations and legal procedures, and to safeguard our rights, privacy, safety, property, as well as those of our affiliates, you, and other third parties.

Aggregated Information. We have the capacity to compile and employ aggregated Personal Information to evaluate the efficacy of our Services, enhance and introduce features, conduct research (which may stay internal or be disseminated to pertinent third parties as necessary), and for similar endeavors. Additionally, we periodically analyze the overall behavior and attributes of our Services' users, sharing aggregated information such as general user statistics with third parties, publishing such data, or making it widely accessible. Aggregated information may be gathered through the Service, cookies, and other methods delineated within this Privacy Policy.

3.2. Our processing of your personal data is contingent upon a legal basis. This basis is determined by the purpose for which we have collected and intend to use your personal data. The legal grounds for processing your personal data include:

Consent: We will process your personal data if you have provided your explicit consent for us to do so.

Legal Obligation: When required to adhere to legal obligations, we may process your personal data.

Legitimate Business Interests: Processing may occur when it aligns with our legitimate business interests.

Specifically, personal data submitted through this website and collected from you, third parties, or public sources will be utilized for purposes grounded in the following legal foundations:

Communications - Legitimate Interest: If you have engaged with us via the Website or App or other means, we might process your personal data to facilitate effective communication, arrange meetings, calls, or virtual sessions. It's important to note that such communication could be recorded and stored within our corporate system.

Marketing and Public Relations - Consent: For visitors of our Website and User of App, we may employ cookies to conduct marketing research, analyze visitor characteristics, evaluate the efficacy of our marketing communications, tailor them to identified trends, plan future marketing initiatives, and create analytics and profiles for business insights. Additionally, for subscribers or potential subscribers, we may utilize the personal data you've provided to share promotional materials, announce service updates, deliver email notifications, and circulate newsletters.

We are committed to upholding the principles of data protection while ensuring transparent and lawful processing based on the appropriate legal grounds.

Automated Processing in accordance with our Legitimate Interest: For visitors of our Website and App, essential cookies and third-party services will automatically process data concerning your interactions with the site or app. This process assists us in gaining deeper insights into your preferences and enhancing your overall experience on our website.

Security Measures Based on our Legitimate Interest: For Website Visitors and App’s Users: In the case of visitors to our Website or use our App, we may engage in the processing of your personal data to uphold the security of the website or app, thwart fraudulent activities, safeguard our rights and interests, and extend protection to both our Company and third parties, as well as Intellectual Property rights.

4. How long we store your personal information

Your personal data will be retained only for the duration necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is stipulated or permitted by law.

Once we no longer have a legitimate business requirement to process your personal data, we will take appropriate action. This can involve either deletion or anonymization of the information. In circumstances where immediate deletion is not feasible, such as when data is stored in backup archives, we will securely store the information, ensuring it remains isolated from any additional processing. We will maintain this secure state until such time that deletion becomes viable.

We continually review our data retention policies to ensure they align with the principles of privacy legislation and other pertinent data protection regulations. If you have any questions or concerns about the retention of your data, please don't hesitate to contact us at [email protected].

5. Sharing your personal data with third parties

Affiliated Entities

We may share your personal data with companies affiliated with Yunoapp LLC. Such affiliated entities will adhere to the guidelines established in this Privacy Policy.

Contractual Partners

While we will not lease or sell your personal data to external parties, we may disclose it to our business partners, clients, suppliers, and subcontractors to fulfill contractual obligations or other agreements that arise within our regular interactions with you.

Furthermore, your personal data may be shared with our auditors, legal advisors, and other professional consultants or service providers.

Government Entities and Authorities

Personal data might be used and revealed to comply with court orders, legal processes, or laws. This encompasses responding to governmental or regulatory requests.

Third-Party Service Providers

We may share your personal information with the following third-party service providers

Name	Services	Type of shared data	Location	Privacy policy
AppsFlyer Ltd.	Analytics and marketing service provider	Tracker; Usage Data	USA	https://www.appsflyer.com/legal/privacy-policy/
Amplitude, Inc.	Analytics and marketing service provider	Tracker; Usage Data	USA	https://amplitude.com/privacy
Google Inc.	Firebase Cloud Messaging	IP addresses, mobile device UUID, the user's Powertech Multi-Factor Authentication ID, a function ID.	USA	https://firebase.google.com/support/privacy?hl=en
Facebook (Meta Platforms, Inc.)	Analytics and marketing service provider	Tracker; Usage Data	USA	https://www.facebook.com/business/m/privacy-and-data
TikTok Inc.	Analytics and marketing service provider	Tracker; Usage Data	USA	https://www.tiktok.com/community-guidelines/en/privacy-security/
AppLovin Corporation	App monetization solution	Device information	USA	https://www.applovin.com/privacy/

6. OpenAI Integration

Our App is powered by the OpenAI platform, which means that when you interact with our App and make requests, your input and queries are processed on the OpenAI platform. This is essential for providing the advanced features and services that our App offers.

7. Data Sharing with OpenAI

Please be aware that when you use our App, certain information, such as your input text and queries, may be shared with OpenAI to facilitate the processing of your requests. While we prioritize the security and confidentiality of your data, it's important to understand that OpenAI will process your data according to their own privacy practices and terms of service. We encourage you to review OpenAI's privacy policy to gain a full understanding of how they handle your information.

8. Push notifications

Periodically, We might send you push notifications through our App exclusively concerning updates to the App or notifications related to our services. You have the option to modify these communications and notifications via your device settings, enabling you to discontinue receiving them.

9. Ensuring the security of your personal information

We utilize a range of advanced security technologies and protocols to fortify it against unauthorized access, usage, or disclosure.

Nevertheless, it's vital to acknowledge that while we undertake rigorous measures to bolster data security, the nature of internet data transfers inherently carries some vulnerability. We strongly advise refraining from sharing your login credentials with any third parties, as this could expose your personal information to potential risks. By adhering to this precautionary measure, you contribute to safeguarding your data and ensuring a secure online environment.

10. Your privacy rights

As an individual whose personal data is processed by us, you have several rights under the General Data Protection Regulation (GDPR). These rights include:

The right to be informed about the collection and use of your personal data.
The right to access your personal data and obtain information about how it is being processed.
The right to have inaccurate personal data rectified and incomplete data completed.

Services such as Ask AI-bot Open Chat Assistant formulate responses by analyzing user input and predicting the most probable succeeding words. However, it's important to acknowledge that in certain instances, the words anticipated to follow may not always be the most accurate in terms of factual information. As a result, it's advisable not to depend solely on the factual precision of responses generated by our models.

If you observe any factual inaccuracies in Ask AI-bot Open Chat Assistant’s output concerning you and wish to rectify the inaccuracy, you are encouraged to send a correction request to [email protected].

The right to erasure (also known as the "right to be forgotten") under specific circumstances.
The right to restrict processing of your personal data.
The right to data portability, allowing you to obtain and reuse your personal data for your own purposes.
The right to object to processing based on legitimate interests or for direct marketing.
The right to avoid automated decision-making, including profiling.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within one month of receipt, in accordance with GDPR requirements. If you believe that your rights have been violated, you also have the right to lodge a complaint with a supervisory authority.

Please note that these rights are not absolute and may be subject to certain conditions or limitations under GDPR.

CALIFORNIA RESIDENT NOTICE

Under the California Consumer Privacy Act of 2018 (CCPA) California residents shall have the right to request: a) the categories of personal information that is processed; b) the categories of sources from which personal information is obtained; c) the purpose for processing of user personal data; d) the categories of third parties with whom we may share your personal information; e) the specific pieces of personal information that we might have obtained about a particular user provided that the data given in the request is reliable enough and allows to identify the user.

PERSONAL INFORMATION. All about the categories of information, its sources and purposes of processing is described above. Be informed that according to CCPA personal information does not include de-identified or aggregated consumer information.

DATA SHARING. Data sharing scope and basis are defined above. All third parties that are engaged in processing user data are service providers that use such information on the basis of agreement and pursuant to business purpose.

OPT-OUT OPTIONS. If you don’t want us to process your personal information any more, please contact us through [email protected]. Please be informed that such opt out may impact App’s further operation without functional data and you will be advised to remove the App from your device. If you don’t want us to share device identifiers and geolocation data with service providers, please check your device settings to opt out as described above.

REQUESTS. To submit a verifiable consumer request please contact us through the email [email protected]. When submitting a verifiable request, you should be ready to: a) Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative, which may include: name, address, city, state, and zip code and email address. We may use this information to surface a series of security questions to verify your identity. If you are making a request through an authorized agent acting on your behalf, such authorized agent must provide written authorization confirming or a power of attorney, signed by you; b) Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
We will not be able to respond to your request or provide you with personal information if we cannot: (i) verify your identity or authority to make the request; or (ii) confirm that personal information relates to you. We may ask you for additional information or documents to verify your identity. We may also carry out checks, including with third party identity verification services, to verify your identity before taking any action with your personal information. This is regarded as a safeguard measure to prevent disclosure of your personal information under a fake or scum request.
We ensure that personal information provided in a verifiable consumer request will be used only to verify the requestor’s identity or authority to make the request and not for any other purpose. We will keep it for the adequate term reasonably needed for the purpose described above and delete after the purpose is fulfilled.
We try to respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time, we will inform you of the reason and extension period in writing. Please note that we are only required to respond to two requests per customer each year.

CALIFORNIA PRIVACY RIGHTS.

The right of access means that you have the right to request that we disclose what Personal Information we have collected, used and disclosed about you in the past 12 months. Please, note that we shall not be required to provide personal information to you more than twice in a 12-month period.
The right to prohibit sale of information means that you have the right to request that we stop the processing of your data for direct marketing purposes either by asking us to cease processing all data about you or asking us not to send you direct marketing communications. We generally do not sell your Personal Information for profit.
The right of correction means that you have the right to request that we correct any inaccurate personal information that we maintain about you.
The right to non-discrimination means that you will not receive any discriminatory treatment when you exercise one of your privacy rights.
The right to opt out of automated decision-making technologies means your right not to be subject to a decision that is based solely on automated processing (where a decision is taken about you using an electronic system without human involvement) which significantly impacts your rights. No decision will be made by us about you solely on the basis of automated decision making which has a significant impact on you.
The right to restrict the use of your sensitive information means directly contacting us to stop such processing of your sensitive personal information for such purposes. We do not process any sensitive personal information to infer characteristics about you.
The right of deletion means that you have the right to request that we delete Personal Information collected or maintained by us, subject to certain exceptions. Please note that under the CCPA we are under no obligation to comply with your request if we need to maintain your information if we need it to, among other things: (a) complete the transaction for which the personal information was collected, or (b) fulfill the terms of a written warranty or product recall; (c) detect security incidents; protect against malicious, deceptive, fraudulent, or illegal activity; or prosecute those responsible for that activity; (d) debug to identify and repair errors that impair existing intended functionality; (e) comply with the California Electronic Communications Privacy Act; (f) enable solely internal uses that are reasonably aligned with the expectations of the consumer based on the consumer’s relationship with the business; (g) comply with a legal obligation. Otherwise use the personal information internally in a lawful manner that is compatible with the context in which the consumer provided the information, etc.
The rights to portability means your right to receive your personal information in an electronic and structured form to you or to another party.

SALE OF DATA. We do not sell any of your personal data to third parties.

COLORADO RESIDENT NOTICE

This section applies only to Colorado residents in addition to the rest of this Privacy Policy. We process personal data in compliance with the Colorado Privacy Act that requires us to disclose the following additional information related to our privacy practices.

If you are unable to access this Privacy Policy due to a disability or any physical or mental impairment, please contact us and we will provide you with the required information in an alternative format that you can access.

PERSONAL INFORMATION. All about the categories of information, its sources and purposes of processing is described above.

COLORADO PRIVACY RIGHTS.

The right of access means the right to know if a controller is processing the consumer’s data.
The right to portability provides the ability for you to receive the data in their right to access in a portable and machine-readable format, where technically feasible, that enables you to transmit the data to another entity without hindrance. Please note that you may only exercise the right to data portability twice per calendar year.
The right to opt-out means your right to object to the processing of your personal data for such purposes as (1) the sale of your personal data. Please note that we do not sell any of your personal data to third parties; (2) Targeted advertising, or (3) Profiling to help make decisions that produce legal or similarly notable effects concerning a consumer.
The right of correction means your right to request that we rectify inaccurate information about you.
The right of deletion means that you can ask us to delete or stop processing your personal data.
The right of appeal means that if you are not satisfied with resolving your privacy request, you can initiate an appeal procedure described below.

HOW TO EXERCISE YOUR PRIVACY RIGHTS. You can exercise any of your privacy rights specified above using any of the ways described in the Section “Contact information”. Please, specify clearly what you want to exercise and identify yourself. Please note that we are not required to comply with the request if we are unable to authenticate your request using commercially reasonable efforts.
If you send us a request we will reply to you within 45 calendar days free of charge, except that, for a second or subsequent request within a twelve-month period, we may charge a reasonable fee.
If we refuse to take action on your request, you can follow the appeal procedure within 30 days after receiving such refusal sending your appeal to this email [email protected]. adding in the subject of email “Appeal to answer on privacy request”.
We are obliged to consider your appeal within 45 after receipt of the appeal and inform you of any action taken or not taken in response to the appeal. We can extend this term by 60 additional days where reasonably necessary, taking into account the complexity and number of requests serving at this time.
If your appeal is denied, you may contact the Attorney General to submit a complaint by visiting the Office of the Attorney General’s website to complete an Online Consumer Complaint Form.

AUTHENTICATION. For the purpose of safeguarding your Personal Data against unauthorized access or deletion, we may need to authenticate your credentials before accepting a request pertaining to your rights. If you do not possess an account with us or if we suspect unauthorized access to your account, we may request additional personal information from you to verify your identity. If after these steps we are unable to verify your identity, we reserve the right to decline your rights request.

SALE OF DATA. We do not sell any of your personal data to third parties.

VIRGINIA PRIVACY NOTICE

The following section pertains exclusively to residents of Virginia. It outlines our practices regarding the collection, utilization, and sharing of Personal Data belonging to Virginia residents, in our capacity as a business operating under the Virginia Consumer Data Protection Act ("VCDPA"). Additionally, it outlines your rights in relation to your Personal Data. Please note that the term "Personal Data" used in this section holds the definition ascribed to it by the VCDPA, with the exception of information exempted from the VCDPA's scope.

PERSONAL INFORMATION. All about the categories of information, its sources and purposes of processing is described above.

VIRGINIA PRIVACY RIGHTS. As a resident of Virginia, we would like to inform you about your privacy rights, which are outlined below. While we respect and uphold these rights, it is important to note that they are not absolute, and there may be instances where we are unable to fulfill your request in accordance with applicable laws and regulations.

Correct inaccuracies in the consumer’s personal data that is collected by the controller.
Confirm if the controller is actually processing their personal data or request a copy of the personal data.
Delete personal data provided by or obtained about the consumer.
Obtain copies of the personal data collected by the controller.
Opt out of the processing of personal data for purposes of targeted advertising, the sale of personal data, or further profiling.
The right to restrict processing of your sensitive personal information. We do not process any sensitive personal information to infer characteristics about you.
You have the right to be free from discrimination related to your exercise of any of your Virginia privacy rights.
Appeal our valid refusal of your initial request. If we reject your request relating to any of the rights outlined in the above sections, you have the option to request a reconsideration of our decision.

HOW TO EXERCISE YOUR PRIVACY RIGHTS. You can exercise any of your privacy rights specified above using any of the ways described in the Section “Contact information”. Please, specify clearly what you want to exercise and identify yourself. Please note that we are not required to comply with the request if we are unable to authenticate your request using commercially reasonable efforts.
If you send us a request we will reply to you within 45 calendar days free of charge, except that, for a second or subsequent request within a twelve-month period, we may charge a reasonable fee.
If we refuse to take action on your request, you can follow the appeal procedure within 45 days after receiving such refusal sending your appeal to this email [email protected] adding in the subject of email “Appeal to answer on privacy request”.
We are obliged to consider your appeal within 45 after receipt of the appeal and inform you of any action taken or not taken in response to the appeal. We can extend this term by 60 additional days where reasonably necessary, taking into account the complexity and number of requests serving at this time.
If your appeal is denied, you may contact the Attorney General to submit a complaint by visiting the Office of the Attorney General’s website to complete an Online Consumer Complaint Form.

SALE OF DATA. We do not sell any of your personal data to third parties.

CONNECTICUT PRIVACY NOTICE

This notice outlines the manner in which we, acting as a "Controller" under Connecticut's Data Protection Act ("CTDPA"), collect, utilize, and disclose your personal data, as well as the rights you have concerning your personal data, including sensitive personal data. In this context, "personal data'' and "sensitive data'' carry the definitions provided in the CTDPA and do not encompass information excluded from the scope of the CTDPA.

PERSONAL INFORMATION. All about the categories of information, its sources and purposes of processing is described above.

REQUESTS. To submit a verifiable consumer request please contact us through the email [email protected]. Before processing most requests, we will need to verify your identity and confirm that you are a resident of the State of Connecticut. When submitting a verifiable request, you should be ready to: a) Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative, which may include: name, address, city, state, and zip code and email address. We may use this information to surface a series of security questions to verify your identity. If you are making a request through an authorized agent acting on your behalf, such authorized agent must provide written authorization confirming or a power of attorney, signed by you; b) Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
We will not be able to respond to your request or provide you with personal information if we cannot: (i) verify your identity or authority to make the request; or (ii) confirm that personal information relates to you. We may ask you for additional information or documents to verify your identity. We may also carry out checks, including with third party identity verification services, to verify your identity before taking any action with your personal information. This is regarded as a safeguard measure to prevent disclosure of your personal information under a fake or scum request.
We ensure that personal information provided in a verifiable consumer request will be used only to verify the requestor’s identity or authority to make the request and not for any other purpose. We will keep it for the adequate term reasonably needed for the purpose described above and delete after the purpose is fulfilled.
If you are submitting a request on behalf of a Connecticut resident, including a minor child, we will also need sufficient information to verify that the individual is the person about whom we collected personal data, and that you are authorized to submit the request on their behalf.
We try to respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time, we will inform you of the reason and extension period in writing. Please note that we are only required to respond to two requests per customer each year

CONNECTICUT PRIVACY RIGHTS. As a resident of Connecticut, we would like to inform you about your privacy rights, which are outlined below. While we respect and uphold these rights, it is important to note that they are not absolute, and there may be instances where we are unable to fulfill your request in accordance with applicable laws and regulations.

Right to know. You have the right to verify whether we are processing your personal data or not. Right to deletion. You have the right to request the deletion of your personal data under certain circumstances. If you make such a request, we will assess whether we are legally obligated to comply or if there are reasons that limit the scope of the deletion. If there are any reasons, we will provide you with an explanation in our response.
Right to access. The right to access and obtain a copy of personal data you previously provided to us, in a readily usable format that allows you to transmit the information to another entity without hindrance, to the extent technically feasible.
The right to opt out of the processing of personal data for purposes of targeted advertising, the sale of personal data, or further profiling.
The right to ppt out of profiling. You have the right to choose not to have your personal data processed for profiling purposes that could lead to decisions with significant legal or similar effects on you. If you wish to exercise this right, you can opt out of such profiling activities.
The right to appeal our valid refusal of your initial request. If we reject your request relating to any of the rights outlined in the above sections, you have the option to request a reconsideration of our decision.

HOW TO EXERCISE YOUR PRIVACY RIGHTS. You can exercise any of your privacy rights specified above using any of the ways described in the Section “Contact information”.
If we refuse to take action on your request, you can follow the appeal procedure within 45 days after receiving such refusal sending your appeal to this email [email protected] adding in the subject of email “Appeal to answer on privacy request”. If your appeal is denied, you may contact the Attorney General to submit a complaint by visiting the Office of the Attorney General’s website to complete an Online Consumer Complaint Form.

11. Changes to this Policy

This privacy notice is subject to periodic updates. An updated version will be identifiable by the revised "Last Revised" date and will become effective as soon as it is accessible. Should substantial modifications be made to this privacy notice, we may inform you by prominently displaying a notice of these changes or by directly sending you a notification. We urge you to regularly review this privacy notice to stay informed about how we are safeguarding your information.

12. Contact Us

If you would like to ask something regarding this Privacy Policy or exercise any of your privacy rights, please contact us any time at [email protected] or via mail address: Yunoapp LLC, 18401 COLLINS AVE, SUNNY ISLES BEACH, FL 33160, USA.