PRIVACY POLICY

a) "Personal Information" means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular individual or household.

b) "Account Information" means information provided during account registration and management.

c) "Service Usage Information" means data collected about how you interact with our Service.

d) "Interview Data" means recordings, transcripts, and related information collected during interviews conducted through our Service.

e) "Interview Subject" means any individual participating in interviews conducted through the Service who is not a user of the Service.

f) "User" or "you" means any individual or entity that registers for and uses the Service.

a) Account Credentials:

- For direct registration: Your first name, last name, email address, and password (stored in encrypted form).

- For Google OAuth registration: Your email address (password authentication is handled by Google and not stored by us).

b) Billing Information: Company name, billing address, and payment information. Credit card data is processed securely through our payment processing partner, Stripe, and we do not store complete credit card numbers on our servers.

c) Company Information: Company size, industry, website URL, and other business details you choose to provide.

d) Account Preferences: Custom settings, notification preferences, branding options, and other configuration choices.

e) Communication Data: Records of communications between you and our customer support team.

a) Access Logs: Dates and times of access, pages visited, features used, and session duration.

b) Device Information: Device type, operating system, browser type and version, screen resolution, and other technical identifiers.

c) Location Data: General location information derived from IP addresses (not precise geolocation).

d) Network Information: IP addresses, referring URLs, and exit pages.

e) Performance Metrics: Load times, error rates, and system performance indicators.

f) Feature Usage Patterns: How you configure and use the AI agents, frequency of interviews, and interaction patterns.

- Maintain and improve our Service

- Troubleshoot technical issues

- Monitor and ensure security

- Analyze usage patterns to enhance features

- Optimize performance and user experience

- Detect and prevent fraudulent or abusive activity

- Generate aggregated, non-identifying analytics

a) Audio Recordings: Complete audio files of interviews conducted through our platform.

b) Transcripts: Text transcriptions of interview conversations.

c) AI Agent Configuration Data: Custom instructions, scripts, and prompts used to configure the AI agent.

d) Interview Metadata: Duration, completion status, timestamps, question sequences, and other operational data.

e) Performance Analytics: Response times, question effectiveness, interview completion rates, and similar metrics.

f) Derived Insights: Patterns, sentiment analysis, and other analytical outputs generated from interviews.

- Provide the core interview Service functionality

- Generate transcripts and reports for users

- Improve AI agent performance through aggregate learning

- Enhance the natural language capabilities of our system

- Generate usage statistics and performance metrics

- Analyze effectiveness of different interview approaches (in anonymized, aggregated form)

- Develop and improve AI agent empathy and responsiveness

a) Encryption: All data transmitted between your browser and our Service is encrypted using TLS/SSL technology. Sensitive stored data is encrypted at rest using industry-standard encryption methods.

b) Access Controls: Role-based access control systems limit data access to authorized personnel only. Multi-factor authentication is required for administrative access.

c) Infrastructure Security: Our hosting environment employs advanced firewall protection, intrusion detection systems, and regular security patching.

d) Monitoring: We maintain 24/7 monitoring systems to detect and respond to unusual activity that could indicate security incidents.

a) Security Policies: Comprehensive information security policies governing data handling practices.

b) Personnel Practices: Background checks for employees with data access, security awareness training, and confidentiality agreements.

c) Regular Assessments: Periodic vulnerability assessments and security reviews of our systems and practices.

d) Incident Response: Documented procedures for promptly addressing and remediating security incidents.

a) Access Rights: You can access and download interview transcripts, AI-generated summaries, key insights, and key quotes directly through your dashboard. Audio recordings and raw account data are not available for download.

b) Export Capabilities: Export interview data in common formats for your own records or analysis.

c) Specific Deletion: Delete specific interviews, recordings, or other data components individually.

d) Data Correction: Update and correct your account information and preferences.

1. Cancel any active subscription and pay any outstanding balances.

2. Request account deletion through your dashboard settings or by contacting support@useresonant.com.

3. Upon verification of your identity and account ownership, we will:

- Delete your payment information from our payment processor

- Remove your account and all associated data from our active systems

- Permanently delete all company information, agent configurations, and interview data

4. Deletion Timeline: We will process your deletion request within 14 days. Once complete, deletion is permanent and cannot be reversed.

a) Account Information is retained for as long as you maintain an active account.

b) Interview Data is retained for the duration of your account.

c) Service Usage Information may be retained in anonymized form indefinitely for analytical purposes.

d) Communication records may be retained for up to seven years for business continuity, support quality, and legal compliance purposes.

a) Process data only as instructed by our users through the Service interface and settings.

b) Maintain appropriate technical and organizational security measures.

c) Enable prompt data deletion upon request through self-service tools or support channels.

d) Assist users with their data protection obligations through documentation, tools, and support.

e) Process data in accordance with applicable laws and our contractual commitments.

f) Do not use interview data for purposes beyond those specified in this Policy.

a) Consent Management: Obtaining valid, documented consent from interview subjects before conducting interviews, including specific consent for:

- Participation in an AI-conducted interview

- Recording of voice and conversation

- Processing of personal information shared during the interview

- Any specific uses of the interview data you intend

b) Transparency: Providing appropriate privacy notices to interview subjects that clearly explain:

- That they will be speaking with an AI agent

- What data will be collected

- How their data will be used

- Who will have access to their information

- How long their data will be retained

- How they can exercise their rights regarding their data

c) Rights Fulfillment: Managing and responding to interview subjects' data rights requests, including:

- Access to their interview recordings and transcripts

- Correction of inaccurate information

- Deletion of their data

- Withdrawal of consent

d) Regulatory Compliance: Ensuring your use of our Service complies with all applicable data protection laws and regulations, including industry-specific requirements that may apply to your business.

e) Data Minimization: Configuring interviews to collect only the information necessary for your legitimate business purposes.

f) Security: Maintaining appropriate security for any downloaded or exported interview data.

a) Provide technical means to access, export, and delete specific interview data.

b) Process data subject requests you relay to us within a reasonable timeframe.

a) Infrastructure Providers: Cloud hosting, storage, and computing services.

b) Payment Processors: To process subscription fees and other payments.

c) Analytics Providers: To help us understand Service usage patterns.

d) Customer Support Tools: To assist with support requests and communications.

a) We will update the "Last Updated" date at the top of this Policy.

b) We will notify you of material changes through:

- A prominent notice in your dashboard

- Email notification to your registered email address

- In-app notifications when you next log in

c) For significant changes, we will provide at least 30 days' notice before the changes take effect.

a) Essential Cookies: Required for the Service to function properly.

b) Functional Cookies: Remember your preferences and settings.

c) Analytics Cookies: Help us understand how users interact with our Service.

a) Investigate the incident and take remedial measures

b) Notify affected users without undue delay

c) Provide information about the breach, including the categories of data affected and steps we are taking to address the incident

d) Comply with all legal notification requirements

Resonant Systems LLC

support@useresonant.com