2.1. Introduction
This Privacy Policy explains how ZoniteAI collects, uses, stores, shares, and protects personal information when you use Argus, our AI evaluation platform.
Argus may process recordings, transcripts, evaluation reports, and related data. Because this information may include personal information about employees, teachers, students, agents, customers, reviewers, or other participants, privacy and responsible data handling are important to us.
By using Argus, you agree to the practices described in this Privacy Policy.
2.2. Who This Policy Applies To
This Privacy Policy applies to:
- Visitors to our website.
- Customers and prospective customers.
- Authorized Users of the Platform.
- Individuals whose information may be included in recordings, transcripts, evaluations, reports, or uploaded files.
In many cases, our Customer controls why and how personal information is processed. In those cases, ZoniteAI acts as a service provider or processor, and the Customer is responsible for providing notices, obtaining consent, and responding to certain privacy requests.
2.3. Information We Collect
We may collect the following categories of information:
A. Account and Contact Information
- Name.
- Email address.
- Phone number.
- Company or organization name.
- Job title or role.
- Login credentials or authentication information.
- Billing or administrative contact details.
B. Customer Content
Depending on how the Customer uses Argus, we may process:
- Audio or video recordings.
- Live or recorded conversations.
- Transcripts.
- Evaluation rubrics and checklists.
- AI generated reports, scores, summaries, and recommendations.
- Notes and reviewer comments.
- Metadata such as date, duration, participants, session type, reviewer, teacher, agent, customer, or department.
- Uploaded documents, files, or supporting materials.
C. Usage and Technical Information
- IP address.
- Device type.
- Browser type.
- Operating system.
- Log data.
- Pages visited.
- Features used.
- Session duration.
- Error logs.
- Performance data.
- Cookie and analytics identifiers.
D. Payment and Subscription Information
If you subscribe to a paid plan, payment may be processed by third party payment providers. We may receive limited payment information such as payment status, transaction ID, subscription status, plan type, invoice details, and billing history. We do not intentionally store full card numbers unless expressly supported and required through a secure payment provider.
E. Communications
If you contact us, request a demo, submit a form, or communicate with support, we may collect your message, contact details, and related correspondence.
2.4. How We Use Information
We use information to:
- Provide, operate, and maintain Argus.
- Create and manage accounts.
- Process recordings, transcripts, rubrics, and evaluations.
- Generate AI assisted reports, scores, summaries, and recommendations.
- Provide dashboards, analytics, and quality assurance workflows.
- Respond to support requests and customer communications.
- Process payments, subscriptions, invoices, and account administration.
- Improve product functionality, reliability, security, and user experience.
- Monitor usage, detect errors, prevent abuse, and protect the Service.
- Comply with legal, regulatory, tax, accounting, and security obligations.
- Send service related notices and, where permitted, marketing communications.
2.5. Legal Bases for Processing
Depending on the applicable law and context, we may process personal information based on:
- Your consent.
- The performance of a contract.
- Compliance with legal obligations.
- Legitimate business interests, such as providing and securing the Service.
- The instructions of our Customer when we act as a processor or service provider.
Customers are responsible for ensuring that they have a valid legal basis to upload and process recordings, transcripts, participant information, and evaluation data in Argus.
2.6. AI Processing
Argus uses AI features to transcribe, analyze, summarize, classify, score, and generate evaluation outputs.
AI processing may involve sending Customer Content to third party infrastructure providers, transcription providers, or AI model providers, depending on the configuration of the Service.
We aim to use reasonable safeguards when processing Customer Content through AI systems. However, Customers should not upload information that they are not authorized to process or that is not necessary for the intended evaluation purpose.
2.7. Sensitive Information
Argus may process sensitive information if it appears in recordings, transcripts, or uploaded content. This may include information related to employment performance, education, health, personal opinions, customer complaints, financial details, or other sensitive topics.
Customers should avoid uploading sensitive information unless it is necessary, lawful, and supported by appropriate consent, notice, or legal authorization.
2.8. How We Share Information
We may share information with:
- Cloud hosting and storage providers.
- AI model, transcription, and speech processing providers.
- Analytics and monitoring providers.
- Email, communication, and customer support providers.
- Payment processors and billing providers.
- Security, fraud prevention, and infrastructure vendors.
- Professional advisors such as lawyers, accountants, or auditors.
- Authorities, courts, regulators, or law enforcement when legally required.
- Business successors in connection with a merger, acquisition, financing, restructuring, or sale of assets.
We do not sell personal information in the traditional sense. We do not intentionally disclose Customer Content to third parties for their independent advertising purposes.
2.9. International Data Transfers
We may process and store information in countries other than your country of residence, including through cloud infrastructure and third party service providers. Our primary cloud infrastructure runs in the United States.
Where required, we use appropriate safeguards for international data transfers, such as contractual protections, security measures, and provider due diligence.
2.10. Data Retention
We retain information for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, enforce agreements, maintain security, and support legitimate business purposes.
Retention periods may vary depending on the type of data, Customer configuration, subscription plan, legal requirements, and backup systems.
Customers may request deletion or export of Customer Content, subject to contractual terms, technical limitations, backup retention, and legal obligations.
2.11. Data Security
We use reasonable technical and organizational measures designed to protect information from unauthorized access, loss, misuse, alteration, or disclosure.
Security measures may include access controls, encryption, logging, monitoring, secure infrastructure, role based permissions, and internal procedures.
No system is completely secure. Customers and Authorized Users are responsible for using strong passwords, protecting login credentials, managing user permissions, and promptly reporting suspected security incidents.
2.12. Your Privacy Rights
Depending on your location and applicable law, you may have rights to:
- Access your personal information.
- Correct inaccurate or incomplete information.
- Delete certain information.
- Object to or restrict certain processing.
- Request data portability.
- Withdraw consent where processing is based on consent.
- Request information about how your data is processed.
- File a complaint with a competent authority.
If your information was processed by Argus on behalf of one of our Customers, we may direct your request to that Customer or help the Customer respond.
To exercise privacy rights, contact us at privacy@zoniteai.com. We may need to verify your identity before responding.
2.13. Customer Controlled Data
When a Customer uploads recordings, transcripts, participant details, rubrics, or evaluation data, the Customer is generally responsible for:
- Providing privacy notices to participants.
- Obtaining consent where required.
- Determining the lawful purpose of processing.
- Managing access permissions.
- Responding to internal employee, student, customer, or participant privacy requests.
- Deciding how long Customer Content should be retained.
2.14. Children and Minors
Argus is not intended for personal use by children. If a Customer uses Argus in an educational or training context involving minors, the Customer is responsible for obtaining all required parental, institutional, or legal authorization and for complying with applicable child privacy and education laws.
2.15. Marketing Communications
We may send marketing communications to business contacts who request information, subscribe to updates, or interact with us. You may opt out of marketing emails at any time by using the unsubscribe link or contacting us.
Even if you opt out of marketing communications, we may still send service related messages, such as account, security, billing, or legal notices.
2.16. Cookies and Tracking Technologies
We use cookies and similar technologies as described in our Cookie Preference page. Some cookies are necessary for the Service to work. Others are used for analytics, preferences, or marketing only where permitted or with consent where required.
2.17. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If changes are material, we may notify you by email, in the app, or by website notice.
The updated Privacy Policy will be effective when posted, unless a later effective date is stated.
2.18. Contact Us
For privacy questions or requests, contact us at:
ZoniteAI
Email: privacy@zoniteai.com
Address: San Salvador, El Salvador