Privacy Policy

This Privacy Policy explains how Askasia Technology LLP ("we", "our", "us") collects, uses, and protects information when you use the Askasia platform as a partner or as a Tenant on a partner's deployment. Please read this policy carefully.

1. Information we collect

Partner account data: When you register as a partner we collect your name, email address, organisation name, and billing information.

Usage and operational data: We collect logs of AI worker runs, cost entries, audit trail events, and performance metrics necessary to operate and improve the Platform. This includes IP addresses, session timestamps, and browser/device identifiers.

Tenant data: Data created by Tenants within a partner's workspace (leads, tickets, emails, outputs) is owned by the Tenant. We process this data as a data processor on the partner's behalf.

2. How we use your information

We use the information we collect to:

• Provision and operate your partner account and Tenant workspaces
• Provide, secure, and improve the Platform
• Calculate and bill for usage
• Communicate with you about your account, updates, and support requests
• Comply with legal obligations

We do not use Tenant data to train AI models. We do not sell data to third parties.

3. Tenant data isolation

Every Tenant workspace is isolated in its own PostgreSQL schema. Data from one Tenant cannot be accessed by another Tenant or by any other partner on the Platform. Isolation is enforced at the database level, not just the application level.

4. Data sharing

We share data only with sub-processors necessary to operate the Platform (cloud infrastructure, email delivery, payment processing). All sub-processors are bound by confidentiality obligations and GDPR-compliant data processing agreements where applicable. A list of sub-processors is available on request.

5. International transfers

The Platform is hosted on infrastructure which may be located outside your country of residence. Where we transfer data internationally, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) or adequacy decisions recognised by the relevant data protection authority.

6. Data retention

Partner account data is retained for as long as your account is active, plus 30 days after termination to allow data export. Tenant workspace data is deleted 30 days after workspace closure. Audit logs are retained for the period specified in your partner plan (90 days for Starter and Growth; 13 months for Enterprise).

7. Your rights

Depending on your location, you may have the right to access, correct, delete, or port your personal data, or to object to or restrict how we process it. To exercise any of these rights, contact us using the details below. We will respond within 30 days.

8. Cookies

The Platform uses essential session cookies for authentication and security. The marketing site may use analytics cookies (Google Analytics, Plausible) if configured by the partner. Partners are responsible for obtaining appropriate consent from their Tenants for any analytics cookies set on their branded domain.

9. Security

We use industry-standard security measures including schema-level database isolation, encrypted connections (TLS), bcrypt-hashed credentials, and JWT-based authentication with short-lived access tokens. We conduct regular security reviews and will notify affected partners of any material data breach within 72 hours of discovery.

10. Children's privacy

The Platform is not directed to individuals under the age of 16. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected such data, please contact us and we will delete it promptly.

11. Changes to this policy

We may update this Privacy Policy from time to time. We will notify partners of material changes by email or via the partner console. The revised policy will carry an updated "Last updated" date at the top of this page.

12. Contact

Privacy questions or data requests? Contact us at info@askasia.in.