Privacy Policy

Last updated: March 20, 2026

We at Prizmi LLC ("Prizmi," "we," "us," or "our"), a Delaware limited liability company, are strongly committed to respecting your privacy and keeping secure any information you share with us. This Privacy Policy explains how we collect, use, disclose, and process your personal data when you use Prizmi's software, platform, desktop applications, messaging integrations, and related tools, including the website at prizmi.ai (collectively, the "Service"). Please read this Privacy Policy carefully. By accessing or using the Service, you acknowledge that you have been informed of our practices with regard to your personal information.

1. Personal Data We Collect

A. Information You Provide Directly

  • Account Information: When you sign up, we collect your username, email address, and password (stored as a cryptographic hash, never in plain text).
  • Payment Information: If you purchase credits, your payment details are collected and processed by our payment processor, Stripe. We do not store your full credit card number on our servers.
  • Messages and Commands: When you interact with the AI assistant, we collect the messages you send and the commands you request. Your messages and the data we store to support your experience are encrypted using strong, per-user encryption. Even in the event of a database breach, your conversations remain protected.
  • Device Information You Configure: Computer names, allowed folder paths, allowed website domains, and other permissions you configure in the desktop application.
  • Contact Information: If you contact us through our support form, we collect your name, email address, and the contents of your message.
  • Phone number (SMS): If you add or verify a mobile phone number, we store it (typically in E.164 format) and use it to send you verification codes when you request them, to provide SMS-related features you enable, and—where the product is designed to do so—to route replies. We may associate your number with SMS usage and billing.
  • SMS content and metadata: If you use Text Messaging (SMS), we process the content of SMS you send or receive through the Service, associated phone numbers, timestamps, delivery status, and related metadata as needed to operate the feature, including security, billing, and support. We may encrypt message content at rest as described in Section 3.
  • Feedback: Any feedback, ideas, or suggestions you provide about the Service.

B. Information We Collect Automatically

  • Device and Browser Information: Device type, browser type, operating system, and related technical data when you access the Service.
  • Log Information: IP address (stored only as a salted cryptographic hash for privacy), browser settings, error logs, and interaction data.
  • Usage Data: Information about how you use the Service, including pages visited, features used, and timestamps. We collect this through our event system, which uses hashed identifiers rather than raw personal data.
  • Cookies: We use cookies and similar technologies to operate the Service. See Section 7 for details.
  • Desktop Application Data: The Prizmi Desktop application reports its version, connection status, and heartbeat data to enable service delivery. It does not transmit your file contents, browsing history, or clipboard data unless you explicitly request the assistant to perform an action involving those items.

C. Information We Do Not Collect

We do not knowingly collect sensitive or special category personal information such as genetic data, biometric data, health information, or religious information. We do not knowingly collect information from or direct the Service to children under the age of 18.

2. How We Use Personal Data

We use your personal data to:

  • Provide, maintain, and improve the Service, including processing your requests through the AI assistant.
  • Create and manage your account, facilitate payments, and respond to inquiries.
  • Send your messages and commands to AI model providers for processing (see Section 5).
  • Deliver deferred tasks when your device comes back online and execute recurring tasks you have scheduled.
  • Communicate with you about the Service, including sending verification emails, password reset emails, and service updates.
  • Prevent fraud, abuse, security incidents, and enforce our Terms of Service.
  • Comply with legal obligations and protect the rights, safety, and property of our users and Prizmi.

Important: We do NOT use your messages, commands, or other personal data to train AI models. Your data is used solely to provide the Service to you.

3. Data Encryption and Security

We implement multiple layers of encryption to protect your data:

  • Your conversations and the data we store to personalize your experience are encrypted with strong, per-user encryption so each user's data is isolated.
  • Credentials you store for third-party integrations (e.g. OAuth tokens, API keys) are encrypted with per-user keys.
  • Where appropriate, we use additional protections so that especially sensitive data can only be decrypted by your device.
  • We do not store raw IP addresses; we use secure hashing where we need to process such information.
  • Our analytics and event systems use hashed or non-identifying identifiers rather than raw personal data.

4. How We Share Personal Data

We may share your personal data in the following circumstances:

  • AI Model Providers: When you send a message to the AI assistant, the content of your request may be transmitted to third-party AI model providers for processing. These providers process the data according to their own privacy policies and data processing agreements. We select providers that offer data processing terms suitable for our use case.
  • SMS and telecommunications providers: To send and receive SMS, we share phone numbers, message content, and related delivery data with our SMS infrastructure providers solely as necessary to transmit and bill for messages. These providers process data under their own terms and privacy notices for their services.
  • Payment Processor: Payment information is shared with Stripe for transaction processing, subject to Stripe's Privacy Policy.
  • Service Providers: We may share data with vendors who help us operate the Service, including hosting, email delivery, and security services. These providers process data only as necessary to perform services on our behalf.
  • Legal Compliance: We may disclose personal data if required by law, regulation, or legal process, or to protect the safety, rights, or property of any person.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, personal data may be transferred as part of the transaction. We will notify you of any such change.

We do not sell your personal data, and we do not share your personal data for cross-contextual behavioral advertising or targeted advertising purposes.

5. Third-Party Services and Subprocessors

We use third-party service providers to operate the Service. These include providers for: AI and language-model processing (to answer your requests); payment processing; hosting and infrastructure; email delivery; messaging and notifications; SMS and telephony (when you use Text Messaging); security and anti-abuse; and optional skills and integrations that you may enable (such as email, calendars, or other productivity tools). We may add or change providers and skills over time. All such providers process data only as necessary to perform the services we engage them for, under agreements that protect your data. We do not publish a list of every provider by name in this policy, but we ensure that our use of subprocessors complies with applicable privacy law.

When you enable optional skills or integrations, the Service may connect to additional third-party APIs. These connections are initiated only with your explicit consent, and you can revoke access at any time through your dashboard.

6. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Deletion: Request deletion of your personal data and account. You can delete your account through your profile settings.
  • Correction: Request correction of inaccurate personal data.
  • Portability: Request your data in a portable format.
  • Objection: Object to certain types of processing.
  • Withdrawal of Consent: Where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, contact us at privacy@prizmi.ai. We may request information to verify your identity before processing your request. Prizmi will not discriminate against you for exercising any privacy rights available under applicable law.

We do not make decisions based solely on automated processing that have legal or similarly significant effects on you.

7. Cookies

We use cookies and similar technologies to operate the Service. Our cookie categories are:

  • Essential: Required for login sessions and security (CSRF protection). Always active.
  • Analytics: Help us understand how visitors use the site. Optional; requires your consent.
  • Marketing: Used for ad measurement and personalization. Optional; requires your consent.
  • Functional: Enable A/B tests and enhanced features. Optional; requires your consent.

You can manage your cookie preferences at any time using the "Cookie Settings" link in the site footer. For more information, see the cookie consent banner displayed when you first visit the site.

8. Data Retention

We retain your personal data for as long as your account is active and as necessary to provide the Service. When you delete your account:

  • Your account data, profile, devices, and associated records are deleted.
  • A cryptographic hash of your email address is retained solely to prevent abuse (such as repeated account creation to exploit promotional offers). This hash cannot be reversed to recover your email address.
  • Anonymized or aggregated data that cannot identify you may be retained for analytics and service improvement.

We may also retain data as necessary to comply with legal obligations, resolve disputes, and enforce our agreements.

9. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal data from children. If we learn that we have collected personal data from a child under 18, we will take steps to delete that information promptly. If you believe a child has provided us with personal data, please contact us at privacy@prizmi.ai.

10. International Data Transfers

Prizmi processes your personal data on servers located in the United States. If you access the Service from outside the United States, your data will be transferred to and processed in the United States. We apply the protections described in this Privacy Policy to your personal data regardless of where it is processed, and we transfer data only in accordance with applicable legal requirements.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will publish the updated version on this page, update the "Last updated" date, and for material changes, notify you by email. Your continued use of the Service after any change constitutes your acceptance of the updated Privacy Policy.

12. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

privacy@prizmi.ai

Prizmi LLC
16192 Coastal Highway, Lewes, Delaware 19958