Privacy Policy

This Privacy Policy explains how Iteronai (“we,” “us,” or “our”) collects, uses, and shares personal information when you visit our website, use the Iteronai document intelligence platform, or otherwise interact with us. It also describes the rights and choices available to you. By using the Service, you consent to the practices described here and in our Terms of Service.

We collect information in the following ways:

• Account data: Contact details, authentication identifiers, workspace affiliations, and billing preferences you or your administrator provide.
• Customer Content: Documents, transcripts, annotations, prompts, and feedback that you upload or generate inside the Service.
• Usage data: Log files, device and browser metadata, IP addresses, timestamps, and feature interactions collected automatically to secure and improve the Service.
• Payment data: Transaction records processed by our payment partners. We only store tokens or the minimal metadata needed to reconcile invoices.
• Support communications: Messages, attachments, or call recordings you send to our support or sales teams.

We use personal information to:

• Provide, maintain, and customize the Service for your workspace.
• Process documents to generate summaries, citations, and other outputs requested by you.
• Communicate about new features, security notices, and administrative updates.
• Monitor usage, prevent fraud or abuse, and ensure compliance with our policies.
• Conduct research and development; when possible we aggregate or de-identify data before using it to improve the Service.
• Fulfill legal obligations and enforce agreements, including billing and collections.

If you are located in the European Economic Area, United Kingdom, or Switzerland, we process personal data when one of the following applies:

• You provided consent, which you may withdraw at any time without affecting prior processing.
• The processing is necessary to perform our contract with you.
• We have a legitimate interest in operating, securing, and improving the Service, provided those interests are not overridden by your rights.
• We must comply with a legal obligation.

We do not sell personal information. We only share information with:

• Service providers who assist with hosting, storage, analytics, communications, customer support, or payment processing under strict contractual obligations.
• Integrations that you or your administrators authorize, such as identity providers or cloud drives.
• Legal reasons: When required by law, subpoena, or to protect Iteronai, our users, or the public from harm.
• Business transfers: In connection with a merger, acquisition, or asset sale, provided the recipient agrees to respect this Policy.

We employ industry-standard administrative, technical, and physical safeguards to protect personal information, including encryption in transit, access controls, continuous monitoring, and regular audits. Nevertheless, no system can be guaranteed 100% secure, and you share information at your own risk. Please notify us immediately if you suspect unauthorized access to your account.

We retain personal information for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Workspace administrators can configure retention periods for Customer Content. When data is no longer needed, we delete or anonymize it in accordance with our backup policies.

Depending on your location, you may have the right to access, correct, delete, or port your personal information, or to object to or restrict certain processing. You can exercise many of these rights through workspace settings. Additional requests can be sent to support@iteronai.com. We may need to verify your identity before fulfilling a request.

Marketing emails include an option to opt out. Even if you opt out of marketing, we may still send transactional or security-related communications.

Iteronai is headquartered in the United States and may process information on servers located in the U.S. or other countries. Whenever we transfer personal data internationally, we rely on lawful mechanisms such as Standard Contractual Clauses or other safeguards recognized by applicable law.

The Service is not directed to individuals under 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If we learn that a child has provided us with personal data, we will delete it and terminate the related account.

We may revise this Privacy Policy to reflect changes in technology, law, or our business practices. Material updates will be communicated via email or in-product notices, and the “Last updated” date will be revised. Your continued use of the Service after a change becomes effective signifies acceptance of the updated Policy.

For questions or concerns about this Privacy Policy or our data practices, contact us at support@iteronai.com. You may also write to Iteronai, Attn: Privacy, 548 Market Street, PMB 12345, San Francisco, CA 94104.