Privacy policy

This Privacy Policy describes how CRAIM ("we", "us") collects, uses, and shares information when you use our websites, applications, and related services (the "Services").

By using the Services, you agree to this policy. If you do not agree, do not use the Services.

Account and profile data: name, work email, company name, role, and authentication identifiers you provide when you register or are invited to a workspace.

Service data: deals, contacts, messages, files, and configuration you upload or generate while using CRAIM, including content processed to provide CRM and AI features.

Technical data: device and browser type, IP address, approximate location derived from IP, timestamps, and diagnostic logs needed to operate and secure the Services.

Communications: messages you send to support, sales, or security teams, including metadata needed to respond.

Payment data: when you purchase paid plans, our payment processor handles card details; we receive limited billing status and receipt information.

Provide and improve the Services, including AI features that summarize threads, suggest next steps, and draft messages according to your workspace settings.

Operate security monitoring, abuse prevention, and fraud detection.

Send transactional notices, product updates (where permitted), and respond to requests.

Meet legal obligations and enforce our Terms.

Analyze aggregated or de-identified usage to understand feature adoption; we do not sell personal data as traditionally defined in U.S. state privacy laws.

Certain features send prompts and relevant context to model providers under subprocessors we disclose. We configure retention and logging consistent with your plan and agreements.

You control what data is indexed for retrieval-style features and which actions require human approval before customer-facing delivery.

Service providers who host infrastructure, deliver email, process payments, or support analytics, bound by confidentiality and processing terms.

Professional advisers when required for audits, legal compliance, or corporate transactions.

Authorities when required by law or to protect the rights, safety, and security of users and the public.

With your direction, such as integrations you enable between CRAIM and third-party systems you control.

We retain account and service data for as long as your workspace is active and for a reasonable period afterward to recover from accidental deletion, resolve disputes, and meet legal duties.

Backup copies may persist for a limited period consistent with our disaster recovery program.

You may request deletion subject to exceptions (for example, legal holds or unresolved bills) described in your agreement.

We implement administrative, technical, and organizational measures designed to protect data, including encryption in transit, access controls, and least-privilege engineering practices.

No method of transmission or storage is completely secure; we encourage strong passwords, SSO where available, and prompt reporting of suspected incidents.

Depending on your location, you may have rights to access, correct, delete, or export personal data, and to object to or restrict certain processing.

Workspace administrators may exercise many controls on behalf of their organization. Individuals can contact us to exercise rights that apply to their personal data.

Marketing emails include an unsubscribe mechanism where required; transactional and security notices may continue.

If we transfer personal data across borders, we rely on appropriate safeguards such as standard contractual clauses or equivalent mechanisms required by applicable law.

The Services are not directed to children under 16. We do not knowingly collect personal data from children. Contact us if you believe we have collected such data.

We may update this policy from time to time. We will post the new version with an updated date and, where changes are material, provide additional notice as required by law.

Questions about this Privacy Policy or our privacy practices: email hello@craim.app with "Privacy" in the subject line. For security reports, use the same address with "Security" in the subject.