Privacy Policy

Last Updated: December 16, 2025

Our Commitment to AI Safety & Data Sovereignty

At OptiWork.ai, we understand that trusting an AI partner with your business data is a significant decision. This policy explicitly outlines how we handle data in the context of Large Language Models (LLMs) and automated agents.We do not use your proprietary data to train public AI models.

1. Information We Collect

We collect information to provide better services to all our users. The types of information we collect include:

  • Account Information: Name, email address, and business details provided during booking or onboarding.
  • Operational Data: Workflows, process documentation, and system access credentials necessary for automation setup.
  • Usage Data: Information about how you interact with our agents and dashboard, including logs and performance metrics.

2. AI & Data Processing Specifics

Zero Training Policy

Your data is processed via enterprise grade APIs (e.g., OpenAI Enterprise, Azure OpenAI) that contractually guarantee your inputs and outputs are NOT used to train their foundation models.

Data Residency

Unless otherwise requested, all data processing occurs on servers located within the United States. We can deploy local, private models for clients with strict data sovereignty requirements.

When you use our AI agents, text and file inputs are transiently processed to generate responses. We implement strict retention policies where raw input data is discarded after processing, retaining only the necessary metadata for billing and audit logs.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To build, deploy, and maintain your custom AI agents and automation workflows.
  • To detect and prevent fraud, abuse, and security incidents.
  • To communicate with you about service updates, security alerts, and support messages.
  • To improve our algorithms and agent performance (using anonymized, aggregated data only).

4. Data Sharing & Third Parties

We do not sell your personal data. We may share data with trusted third-party service providers solely for the purpose of delivering our services:

  • Cloud Infrastructure: AWS, Vercel, and Supabase for hosting and database services.
  • AI Model Providers: OpenAI, Anthropic, and Google (via enterprise APIs only).
  • Payment Processors: Stripe for secure billing and subscription management.

All third-party providers are vetted for SOC2 compliance and strict data protection standards.

5. Your Rights & Control

You have the right to:

  • Request a copy of all data we hold about your business.
  • Request complete deletion of your data ("Right to be Forgotten").
  • Opt-out of any non-essential data collection or analytics.
  • Export your agent configurations and workflow maps in a standard format.

6. Security Measures

We employ industry-standard security measures including AES-256 encryption at rest and TLS 1.3 in transit. Access to your data is restricted to authorized personnel on a need-to-know basis, enforced via Multi-Factor Authentication (MFA) and strict role-based access controls (RBAC).

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact our Data Protection Officer:

OptiWork.ai

Attn: Privacy Team

Email: privacy@optiwork.ai