Privacy Policy

Last updated: June 8, 2026 · Version 2.0

This Privacy Policy describes how Amiara Inc., a company registered at 1401 Lavaca Street, Unit #7167, Austin, TX 78701 ("Amiara," "we," "us," or "our"), collects, uses, shares, and protects information when you visit our website at amiara.ai (the "Site") and use the Amiara platform — an AI-powered growth platform that connects your business data to surface diagnoses, recommendations, and actions (the "Platform," and together with the Site and related features, the "Services").

By accessing or using the Services, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and sharing of your information as described herein. If you do not agree with this Privacy Policy, please do not use the Services.

1. Information We Collect

1.1 Account and Contact Information

We collect information that you provide directly to us, including:

• Name, email address, and (where you provide it) phone number.
• Company name, job title, and professional role.
• Account credentials, which are created and managed through our third-party authentication provider.
• Billing address and payment information (payment card details are processed by our third-party payment processor and are not stored on our servers).
• Any other information you choose to provide when contacting us, completing forms, or participating in surveys.

1.2 Business Data You Provide or Connect

The Platform works by connecting to your business data. Depending on how you use it, you may upload, enter, or connect:

• Contact and customer records — including the names, email addresses, and related details of the people, leads, and customers in your business.
• Transaction, revenue, and other commercial records you upload or import.
• Data from third-party tools you choose to connect, such as your CRM (for example, HubSpot).
• Documents and files you upload, such as spreadsheets, PDFs, and presentations.
• Content from websites you ask us to analyze, such as your own site or competitors' sites.
• Offers, pricing, goals, constraints, and other business context you enter into the Platform.

Some of this business data may include personal information about people other than you (such as your own customers and contacts). You are responsible for ensuring you have the right to share that information with the Platform, and for doing so in accordance with applicable law. With respect to this business data, Amiara generally acts as a processor that handles the data on your behalf and on your instructions — see Section 5.4.

1.3 AI Interaction Data

We collect data generated through your interactions with the Platform's AI features, including:

• Inputs: prompts, questions, instructions, and materials you submit to the assistant and agents.
• Outputs: AI-generated diagnoses, recommendations, analyses, content, and other responses.
• Conversation history and interaction logs with the assistant and agents.
• Usage patterns, including which features and agents you use and how frequently.
• Feedback and ratings you provide on AI-generated content.

1.4 Usage Data

We automatically collect information about how you interact with the Services, including:

• Pages and features accessed, actions taken, and time spent on the Platform.
• Session duration, frequency of use, and navigation patterns.
• Subscription tier, credit consumption, and feature utilization.
• Referring URLs, search terms, and entry/exit pages.

1.5 Device and Technical Information

We collect technical information from your devices, including:

• IP address, browser type and version, and operating system.
• Device identifiers, screen resolution, and language preferences.
• Time zone setting and general geographic location (derived from IP address).

1.6 Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect information about your browsing activities. For more details, see Section 7 below.

2. How We Use Your Information

We use the information we collect for the following purposes:

• Provide and Operate the Services: To deliver the Platform, process your Inputs, generate Outputs, and connect to the third-party tools you authorize.
• Process Payments: To manage subscriptions, process billing, and handle credit allocations through our third-party payment processor.
• Operate and Improve Our AI Features: To generate Outputs, your Inputs are processed by third-party AI model providers (see Section 3). We do not use your business data to train AI models. We do use operational and trace data — including through our observability tools — to monitor, debug, evaluate, and improve how the Platform uses, prompts, and orchestrates these models, and the quality of the Outputs they produce.
• Generate Business Insights: To produce diagnoses, recommendations, analyses, and other guidance through the Platform.
• Personalize Your Experience: To customize the Platform's interactions, recommendations, and content based on your business profile and usage patterns.
• Communicate with You: To send transactional emails (account confirmations, billing receipts, service updates), as well as marketing communications where you have provided consent or where permitted by law.
• Ensure Security: To detect, prevent, and respond to fraud, abuse, security incidents, and other harmful activities.
• Comply with Legal Obligations: To fulfill our legal and regulatory obligations, respond to legal process, and protect our rights.
• Create Aggregated Analytics: To generate anonymized and aggregated insights about Platform usage and performance.

3. How We Share Your Information

We do not sell your personal information. We share information with the third-party service providers ("sub-processors") that help us operate the Platform, and in the limited circumstances described below.

3.1 Sub-Processors

We rely on the following sub-processors to provide the Services. Each receives only the data necessary for its function and is bound by contractual obligations to protect it:

• Clerk — authentication and user and organization management (name, email, account identifiers).
• Neon — managed database hosting where your account and business data are stored.
• Anthropic — AI model provider that processes your Inputs to generate Outputs. Anthropic does not use data submitted through its API to train its models.
• OpenAI — AI model provider (failover and embeddings) that processes your Inputs to generate Outputs. OpenAI does not use data submitted through its API to train its models.
• Cloudflare — AI gateway that routes and meters AI requests, and object storage (R2) for files and assets you upload.
• Stripe — payment processing and subscription billing. Amiara does not store your full payment card numbers.
• Resend — delivery of transactional and service emails.
• HubSpot — CRM integration, used only when you choose to connect your HubSpot account, to read and sync the CRM data you authorize.
• Exa — web research used to gather public market and competitor information.
• Firecrawl — retrieval of content from websites you ask us to analyze.
• Reducto and Mistral — text and data extraction from documents and files you upload.
• PostHog — product analytics about how the Platform is used.
• Langfuse — observability and tracing of AI interactions to monitor and improve quality.
• Vercel and DigitalOcean — hosting and delivery of the Platform and its supporting services.

We may update our sub-processors as the Platform evolves. We will reflect material changes in this Privacy Policy, and you may request the current list at any time by contacting us at support@amiara.ai.

3.2 Legal Requirements

We may disclose your information if we believe in good faith that disclosure is necessary to: (a) comply with applicable law, regulation, or legal process; (b) respond to a valid governmental request; (c) protect the rights, property, or safety of Amiara, our users, or the public; or (d) detect, prevent, or address fraud, security issues, or technical problems.

3.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any such transfer and any choices you may have regarding your information.

4. Data Retention

We retain your information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law. Specifically:

• Account Data: Retained while your account is active and for a reasonable period thereafter to fulfill legal, accounting, and business requirements.
• AI Interaction Data: Retained to provide the Services, maintain your history, and improve how the Platform uses AI models. As stated in Section 2, we do not use your business data to train AI models.
• Business Data: Retained while your account is active. You may request export or deletion of your Business Data, including upon account termination, by contacting us at support@amiara.ai. We will process such requests within a reasonable timeframe, subject to applicable legal retention requirements.
• Payment Records: Retained as required by applicable tax and financial regulations.
• Usage and Analytics Data: Retained in anonymized or aggregated form for analytics and service improvement purposes.

5. Your Privacy Rights

5.1 All Users

Regardless of your location, you may exercise the following rights by contacting us at support@amiara.ai:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request correction of inaccurate or incomplete personal information.
• Deletion: Request deletion of your personal information, subject to legal retention requirements.
• Data Portability: Request a copy of your data in a structured, commonly used, machine-readable format.
• Opt-Out of Marketing: Unsubscribe from marketing communications by clicking the "unsubscribe" link in any marketing email or by contacting us.

We will respond to your request within a reasonable timeframe and in accordance with applicable law.

5.2 California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including:

• Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the categories of sources, the business purposes for collection, and the categories of third parties with whom we share your information.
• Right to Delete: You have the right to request deletion of your personal information, subject to certain exceptions.
• Right to Correct: You have the right to request correction of inaccurate personal information.
• Right to Opt-Out of Sale or Sharing: We do not sell or share your personal information for cross-context behavioral advertising as defined by the CCPA/CPRA.
• Right to Limit Use of Sensitive Personal Information: You may request that we limit our use of sensitive personal information to purposes necessary to provide the Services.
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To exercise these rights, contact us at support@amiara.ai or submit a request through your account settings. We may verify your identity before processing your request. You may also designate an authorized agent to submit a request on your behalf.

5.3 Other State Privacy Laws

Residents of Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), and other states with comprehensive privacy laws may have additional rights, including the right to access, correct, delete, and obtain a copy of their personal data, and the right to opt out of certain processing activities. To exercise these rights, please contact us at support@amiara.ai.

5.4 Data Processing Roles (Controller and Processor)

For the personal information relating to your own account and your use of the Services (such as your name, email, and usage data), Amiara acts as a controller. For the business data you upload or connect — including any personal information about your own customers, leads, and contacts — Amiara acts as a processor that handles that data on your behalf and on your documented instructions, and you remain the controller. If your organization requires a Data Processing Agreement (DPA) to govern this relationship, please contact us at support@amiara.ai.

6. Children's Privacy

The Services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will take steps to delete such information promptly. If you believe we have inadvertently collected information from a child under 13, please contact us immediately at support@amiara.ai.

7. Cookies and Tracking Technologies

We use the following types of cookies and tracking technologies:

• Strictly Necessary Cookies: Essential for the operation of the Site and Platform, including authentication, session management, and security. These cookies cannot be disabled.
• Functional Cookies: Enable enhanced functionality and personalization, such as remembering your preferences and settings.
• Analytics Cookies: Help us understand how users interact with the Services. We use PostHog for product analytics and, on our Site, Amplitude and Google Analytics.
• Marketing Cookies: Used to deliver relevant advertisements and measure the effectiveness of our marketing campaigns, including through the Meta Pixel.

Managing Cookies. You can manage cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. However, disabling certain cookies may affect the functionality of the Services.

Do Not Track Signals. Some browsers offer a "Do Not Track" (DNT) feature. At this time, we do not respond to DNT signals. We will update this Privacy Policy if our practices change in the future.

8. International Data Transfers

The Services are operated from the United States, and your information is processed and stored in the United States. Some of our sub-processors may process data in other countries. If you access the Services from outside the United States, you understand and consent to the transfer of your information to the United States and other jurisdictions, where data protection laws may differ from those in your jurisdiction. By using the Services, you consent to such transfer and processing.

9. Security Measures

We implement commercially reasonable administrative, technical, and physical security measures designed to protect your personal information, including:

• Encryption of data in transit and at rest.
• Access controls and authentication mechanisms to limit data access to authorized personnel.
• Regular security assessments and vulnerability testing.
• Incident response procedures for potential security events.
• Employee training on data protection and security practices.

However, no method of electronic transmission or storage is completely secure. While we strive to protect your information, we cannot guarantee its absolute security. You are responsible for maintaining the confidentiality of your account credentials.

10. Data Breach Notification

In the event of a confirmed data breach that affects your personal information, we will notify affected users within seventy-two (72) hours of confirmation, or as otherwise required by applicable law. Our notification will include the nature of the breach, the categories of data affected, the remedial measures we have taken or plan to take, and contact information for further inquiries.

11. Third-Party Links

The Site and Platform may contain links to third-party websites, services, or applications that are not owned or controlled by Amiara. This Privacy Policy does not apply to such third-party services. We are not responsible for the privacy practices or content of any linked third-party sites. We encourage you to review the privacy policies of any third-party services before providing them with your information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will post the updated Privacy Policy on the Site and update the "Last updated" date at the top of this page. For material changes, we will provide additional notice, such as by email or through a prominent notice on the Site. Your continued use of the Services after the effective date of any changes constitutes your acceptance of the updated Privacy Policy.

13. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Amiara Inc.
Stephen Kelly
1401 Lavaca Street
Unit #7167
Austin, TX 78701
Email: support@amiara.ai

Copyright 2026 Amiara Inc. All Rights Reserved.