Privacy Policy

How Jarvis handles and protects your data

1. Introduction

Jarvis ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services.

Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our platform.

2. Information We Collect

2.1 Information You Provide

  • Account Information: When you sign up, we collect your email address, password, and basic profile information.
  • Documents: Any documents or knowledge base entries you upload or create are stored and associated with your account.
  • Chat History: Conversations with Jarvis are stored to provide context and improve responses.
  • Feedback: Any feedback, suggestions, or bug reports you submit.

2.2 Information Collected Automatically

  • Usage Data: We collect information about how you interact with our platform (pages visited, features used, time spent).
  • Device Information: Browser type, operating system, IP address, and device identifiers.
  • Cookies: We use cookies and similar tracking technologies to enhance your experience.
  • Logs: Server logs recording requests, errors, and performance metrics.

2.3 Information from Third Parties

  • Salesforce Integration: If you connect your Salesforce org, we receive authorized data to provide guidance.
  • Authentication Providers: If you use OAuth, we receive basic profile information.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Delivery: To provide, maintain, and improve our services.
  • Personalization: To tailor content and recommendations based on your usage patterns.
  • Communication: To send service updates, security alerts, and support responses.
  • Analytics: To understand platform usage, identify trends, and optimize performance.
  • Security: To detect, prevent, and address fraud, abuse, and security incidents.
  • Legal Compliance: To comply with applicable laws and regulations.
  • Research: To conduct research and development to improve our services (anonymized data only).

4. Information Sharing

4.1 No Sale of Personal Data

We do not sell, trade, or rent your personal information to third parties.

4.2 Third-Party Service Providers

We share information with vendors who assist us in operating our platform and providing services:

  • Supabase: Database and authentication services
  • Claude (Anthropic): AI-powered responses to your queries
  • Cloud Hosting: Infrastructure providers ensuring platform availability
  • Analytics: Tools to measure platform usage and performance

These providers are contractually obligated to use your information only as necessary to provide their services and to maintain confidentiality and security.

4.3 Legal Requirements

We may disclose your information when required by law (e.g., subpoena, court order) or if we believe in good faith that such disclosure is necessary to:

  • Comply with legal obligations
  • Protect our rights and property
  • Prevent or investigate possible wrongdoing
  • Protect the safety of our users or the public

4.4 Business Transitions

If Jarvis is involved in a merger, acquisition, bankruptcy, or asset sale, your information may be transferred as part of that transaction. We will provide notice before your information becomes subject to a different privacy policy.

5. Data Security

We implement appropriate technical and organizational safeguards to protect your personal information against unauthorized access, alteration, disclosure, or destruction.

  • Encryption: Data is encrypted in transit (TLS/SSL) and at rest.
  • Access Controls: Only authorized personnel have access to personal information.
  • Authentication: Strong password requirements and optional two-factor authentication.
  • Monitoring: Continuous monitoring for unauthorized access attempts.
  • Incident Response: Documented procedures for responding to security breaches.

However, no security system is impenetrable. We cannot guarantee absolute security, and you use our platform at your own risk.

6. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

  • Account Data: Retained while your account is active and for 30 days after deletion for recovery purposes.
  • Chat History: Retained for 12 months to provide context, then archived or deleted.
  • Documents: Retained as long as you maintain your account.
  • Usage Logs: Retained for 90 days for security and analytics purposes.
  • Legal/Compliance: Retained as required by applicable law.

7. Your Rights and Choices

7.1 Access and Portability

You have the right to access your personal information and request a copy in a portable format. Contact us at privacy@jarvis.dev.

7.2 Correction and Deletion

You can update your account information at any time. You can request deletion of your account and associated data, subject to legal retention requirements.

7.3 Marketing Communications

You can opt out of promotional emails by clicking the unsubscribe link in any email or adjusting your notification preferences in your account settings.

7.4 Cookie Management

You can disable cookies in your browser settings, though some features may not function properly.

7.5 Region-Specific Rights

Depending on your location, you may have additional rights under applicable privacy laws (e.g., GDPR, CCPA):

  • GDPR (EU/UK): Right to object, restrict processing, withdraw consent.
  • CCPA (California): Right to know, delete, opt-out of sale.
  • Other Jurisdictions: Similar rights may apply. Contact us for details.

8. Children's Privacy

Our platform is not intended for individuals under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware that we have collected information from a child under 13, we will delete such information immediately and terminate the child's account.

9. International Data Transfers

Your information may be transferred to, stored in, and processed in countries other than your country of residence. These countries may have data protection laws that differ from your home country. By using our platform, you consent to such transfers.

We implement appropriate safeguards such as Standard Contractual Clauses to protect your information during international transfers.

10. Third-Party Links

Our platform may contain links to third-party websites and services. This Privacy Policy does not apply to external sites. We are not responsible for the privacy practices of third-party services, and we encourage you to review their privacy policies before providing any information.

11. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes via email or by posting the updated policy on our platform. Your continued use of our platform after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: privacy@jarvis.dev

Address: Jarvis, Inc.

Response Time: We aim to respond to all privacy inquiries within 30 days.

Last Updated: January 2026