Privacy Policy

This Privacy Policy explains how SOPSai, operated by [LEGAL_ENTITY_NAME], collects, uses, shares, and protects information when you use SOPSai websites, applications, and related services.

This policy is written for a private beta product. It may be updated as SOPSai adds features, vendors, or commercial terms.

We collect account information such as name, email address, authentication details, workspace name, and settings you provide when creating or using an account.

We also collect product usage information, device and browser information, log data, and limited diagnostic information needed to operate, secure, maintain, and improve SOPSai.

Customers retain ownership of SOPs, notes, transcripts, tags, departments, and other content they upload, generate, edit, or create in SOPSai.

SOPSai uses customer content to provide, secure, maintain, support, and improve the service. SOPSai does not sell customer SOP content.

Users should not submit sensitive regulated data unless their agreement with SOPSai permits it and the workspace has appropriate controls for that data.

• Provide, operate, maintain, and improve SOPSai.
• Authenticate users and manage workspaces.
• Generate, save, organize, search, and display SOPs and related content.
• Respond to support, privacy, deletion, and export requests.
• Monitor service reliability, prevent abuse, and protect the security of the service.
• Communicate about product updates, beta feedback, and account-related notices.

When AI features are used, SOPSai may send user-provided notes, transcripts, SOP content, instructions, and related context to AI service providers to generate SOP drafts or other requested output.

AI output is generated from user prompts and available context. Users should review AI-generated content for accuracy, completeness, and suitability before relying on it.

SOPSai does not promise zero data retention by AI providers unless that configuration is available and contractually agreed for the applicable workspace.

We may share information with service providers that help us host, secure, operate, support, analyze, and improve SOPSai. These providers are expected to process information only for the purposes we authorize.

We may also disclose information if required by law, to protect rights and safety, to prevent abuse, or as part of a business transaction such as a merger, acquisition, financing, or sale of assets.

SOPSai uses subprocessors for hosting, authentication, database infrastructure, AI processing, and, when enabled, payments. A current first-draft list is available on the Subprocessors page.

We retain account data, workspace data, customer content, logs, and related records for as long as needed to provide the service, comply with legal obligations, resolve disputes, enforce agreements, and maintain security.

Retention periods may vary based on account status, workspace configuration, support needs, backups, and legal requirements.

SOPSai uses administrative, technical, and organizational measures designed to protect information, including workspace-based access controls and database row-level security policies.

No online service can guarantee absolute security. Customers are responsible for using strong passwords, limiting access to authorized users, and reviewing content before sharing it.

Customers can create, update, archive, and manage SOP records and workspace content through the product. Additional export and deletion controls may be added as SOPSai matures.

Workspace owners or authorized administrators are responsible for managing user access and ensuring content is appropriate for the workspace.

To request access, correction, export, or deletion of personal information or workspace content, contact [SUPPORT_OR_PRIVACY_EMAIL]. We may need to verify your identity and authority before completing a request.

Deletion requests may be limited where retention is required for legal, security, fraud-prevention, billing, backup, or dispute-resolution purposes.

SOPSai may use cookies, local storage, and similar technologies for authentication, session management, preferences, analytics, and service reliability.

Some browser settings allow you to block or delete cookies, but doing so may affect login, workspace access, or product functionality.

Depending on your location and whether applicable privacy laws apply to SOPSai, you may have rights to request access, correction, deletion, portability, or information about certain uses and disclosures of personal information.

California residents may have rights under California privacy laws, including rights to know, delete, correct, opt out of certain sharing or sales, and limit certain uses of sensitive personal information where applicable. SOPSai does not sell customer SOP content.

To exercise rights, contact [SUPPORT_OR_PRIVACY_EMAIL]. We will respond as required by applicable law after appropriate verification.

SOPSai is not intended for children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided information to SOPSai, contact us so we can review and take appropriate action.

We may update this Privacy Policy as SOPSai changes. The updated version will be posted with a new effective date, and material changes may be communicated through the service or by email when appropriate.

Questions or requests about this Privacy Policy can be sent to [SUPPORT_OR_PRIVACY_EMAIL]. Legal entity: [LEGAL_ENTITY_NAME].