'/%3e%3cpath%20id='Union'%20d='M20.0431%2015.6466C20.0662%2015.6697%2020.0877%2015.6946%2020.1059%2015.7219C20.1114%2015.7301%2020.1148%2015.7396%2020.1197%2015.7481C20.1632%2015.8222%2020.1895%2015.908%2020.1895%2016.0001C20.1895%2016.1281%2020.1407%2016.2561%2020.0431%2016.3537L16.3536%2020.0432C16.1584%2020.2381%2015.8416%2020.2381%2015.6464%2020.0432C15.4513%2019.848%2015.4515%2019.5314%2015.6464%2019.3361L18.4825%2016.5001H12.3105C12.0346%2016.4999%2011.8108%2016.276%2011.8105%2016.0001C11.8105%2015.7241%2012.0345%2015.5003%2012.3105%2015.5002H18.4825L15.6464%2012.6642C15.4512%2012.4689%2015.4512%2012.1523%2015.6464%2011.9571C15.8417%2011.7618%2016.1583%2011.7618%2016.3536%2011.9571L20.0431%2015.6466Z'%20fill='var(--fill-0,%20black)'/%3e%3c/g%3e%3c/svg%3e)
Privacy Policy
Last Updated: January 2025
This Privacy Policy describes how Ohtani Technologies Limited ("we", "us", or "our") collects, uses, and shares information when you use our platform and services.
1. Information We Collect
1.1 Account Information
When you create an account, we collect:
- •Identity information: First name, last name, username
- •Contact information: Email address(es)
- •Authentication data: Password (encrypted), two-factor authentication status
- •Profile information: Profile image URL
- •Organization data: Organization membership, role, and permissions
This information is collected and managed through our authentication provider, Clerk.
1.2 User-Generated Content
When you use our services, you are sending the following to our services:
- •Chat conversations: Messages you send and AI-generated responses
- •Documents and files: Files you upload to the platform
- •Custom preferences: AI response detail level, custom instructions
- •Projects: Project names and organization of your content
1.3 Usage Information
We automatically collect information about how you use our services:
- •Interaction data: Features used, pages visited, actions taken
- •Company views: Which companies you view and when
- •Session information: Session duration, timestamps
- •Technical data: Browser type, device information, IP address
1.4 Cookies and Local Storage
We use cookies and local storage for:
| Cookie/Storage | Purpose | Duration |
|---|---|---|
| Theme preference | Remembers your light/dark mode setting | 1 year |
| Sidebar state | Remembers sidebar expanded/collapsed state | Session |
| Cookie consent | Stores your tracking preferences | Persistent |
| Authentication | Maintains your logged-in session | Session |
2. How We Use Your Information
We use collected information to:
- •Provide our services: Process your requests, generate AI responses, store your documents
- •Personalize your experience: Apply your preferences and custom instructions
- •Improve our platform: Analyze usage patterns, fix bugs, develop new features
- •Ensure security: Detect fraud, prevent abuse, maintain platform integrity
- •Communicate with you: Send service-related notifications
3. Third-Party Services
3.1 Clerk (Authentication)
We use Clerk for user authentication and account management. Clerk processes:
- •Account credentials and login information
- •Session management and security tokens
- •Organization membership data
- •Two-factor authentication
For more information, see Clerk's Privacy Policy.
3.2 Datadog (Monitoring & Analytics)
We use Datadog for application monitoring and analytics:
What we collect:
- •Session recordings (with privacy masking enabled)
- •Performance metrics and error tracking
- •User interactions and navigation patterns
- •API request/response times
Privacy protections:
- •All text, images, and sensitive content are automatically masked in session recordings
- •On our marketing site, tracking requires explicit consent
- •We do not track authentication flows on third-party domains
User identification sent to Datadog:
- •User ID (anonymized identifier)
- •Session ID
- •Organization ID and role
For more information, see Datadog's Privacy Policy.
3.3 Amazon Web Services
AWS hosts our web and server-side services, as well as our databases and AI tooling.
Uploaded files are stored primarily in AWS S3:
- •Files are stored in private buckets with access controls
- •Files are organized by organization to ensure data isolation
- •Metadata stored includes: original filename, upload date, uploader ID
For more information, see AWS Privacy Policy.
3.4 FactSet (Financial Data)
We use FactSet to retrieve financial data for analysis. No personal information is shared with FactSet by our service.
4. Data Sharing
We do not sell your personal information. We share data only:
- •With service providers: Third-party services listed above that help operate our platform
- •For legal compliance: When required by law, legal process, or government request
- •For safety: To protect rights, safety, and property of users and the public
- •With your consent: When you explicitly authorize sharing
5. Data Security
We implement security measures including:
- •Encryption: Data encrypted in transit (TLS) and at rest
- •Authentication: Secure login with mandatory two-factor authentication
- •Access controls: Role-based permissions and organization isolation
- •Content Security Policy: Strict browser security headers to prevent attacks
- •Secure file handling: Pre-signed URLs with short expiration times
6. Data Retention
- •Account data: Retained while your account is active
- •Chat conversations: Stored indefinitely unless you delete them
- •Uploaded files: Retained until you delete them
- •Usage analytics: Retained according to Datadog's retention policies
- •Cookies: Expire according to the durations listed in Section 1.4
7. Your Rights and Choices
7.1 Access and Portability
You can:
- •View your profile information in your account settings
- •Access your chat history and uploaded files through the platform
- •Request a copy of your personal data by contacting us
7.2 Correction and Deletion
You can:
- •Update your profile information through Clerk's account management
- •Delete individual chats and files through the platform
- •Request account deletion by contacting us
7.3 Cookie Preferences
- •On our marketing site, you can accept or decline analytics cookies via the cookie banner
- •You can clear cookies through your browser settings
8. International Data Transfers
Your data is primarily stored in the United Kingdom. It may also be transferred to and processed in the European Union, where our cloud providers operate specific tools.
We ensure appropriate safeguards are in place for international transfers, such as private VPC peering, which prevents data from being transferred over the open internet.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- •Posting the updated policy with a new "Last Updated" date
- •Sending notification through the platform (for significant changes)
10. Contact Us
If you have questions about this Privacy Policy or your personal data, contact us at postmaster@ohtani.io.
Summary Table
| Data Type | Collected By | Purpose | Retention |
|---|---|---|---|
| Account info | Clerk | Authentication | While account active |
| Chat messages | Ohtani | AI service delivery | Until deleted |
| Files | AWS S3 | Document storage | Until deleted |
| Usage data | Datadog | Analytics & monitoring | Per Datadog policy |
| Preferences | Ohtani | Personalization | While account active |
| Cookies | Browser | Functionality | 1 year max |