Privacy Policy

Last updated: May 6, 2025

1. Introduction

StoriAI Labs, Inc. (“StoriAI,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use the Service.

2. Information We Collect

  • Personal Identifiers: Name, email address.
  • Usage Data: Logs of your activity, feature usage, query history.
  • Technical Data: IP address, device type, browser type, metadata.
  • Integration Data: Content from linked third-party services (e.g., Google Drive, Gmail, Calendar, Slack, Notion, Atlassian, Linear, CRM, ATS data), as authorized by you.
  • Sensitive data (e.g., health, financial, biometric) may be processed only if present in your connected integrations; we treat it under this Policy.

3. How We Collect Information

  • Directly from You: When you register, connect integrations, or communicate with support.
  • Automatically: Using cookies, web beacons, log files, and API callbacks.
  • From Third Parties: Data obtained via OAuth connections with services you authorize.

4. Use of Information

We use your information to:

  • Provide, operate, and improve the Service.
  • Build and update your private knowledge graph.
  • Generate AI-driven insights and automate tasks.
  • Monitor and analyze usage and trends.
  • Communicate updates, announcements, and support messages.
  • Ensure security, prevent fraud, and enforce our policies.
  • Data from your connected integrations (e.g., Google Workspace, Slack, Notion, Atlassian, Linear, CRM, ATS data) is not used to develop, improve, or train generalized AI and/or ML models. Such data is used solely to provide and enhance the Service for you, as outlined in this policy.

5. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: AWS, Zilliz, LLM/embedding partners, and other vendors—all bound by contract not to retain or use your data beyond providing services to us.
  • Third-Party Platforms: Under their respective policies (e.g., Google, Slack, Notion, Atlassian, Linear), solely to deliver integrations you authorize.
  • Legal Obligations: To comply with applicable laws, court orders, or government requests, or to protect rights, safety, or property.

6. Data Storage & International Transfers

All data is processed and stored in the United States (AWS US-East-1). By using the Service, you consent to transfer and storage of your information in the U.S.

7. Retention & Deletion

  • We adhere to a zero-retention policy for integration data: when you revoke access or delete data at the source, we remove it from our systems.
  • To access, correct, or delete your personal data, contact support@thestori.ai.

8. Security Measures

We implement administrative, technical, and physical safeguards, including encryption in transit and at rest, strict access controls, and regular security audits to protect your data.

9. Cookies & Tracking Technologies

We use cookies and tokens solely for authentication (CSRF protection, session management) and performance monitoring. You can disable cookies in your browser settings, but some Service features may not function properly.

10. Children's Privacy

We do not knowingly collect or retain personal information from children under 13. If we learn we have inadvertently done so, we will delete such information immediately.

11. Your Rights and Choices

Subject to applicable law, you may:

  • Request access to or correction of your personal data.
  • Request deletion or restriction of processing.
  • Object to processing.
  • Withdraw consent where applicable. Submit requests to support@thestori.ai.

12. Changes to This Policy

We may update this Privacy Policy from time to time. If you have subscribed via email, material changes will be communicated via email at least seven (7) days before they take effect. Continued use constitutes acceptance of the revised policy.

13. Contact Us

For privacy-related inquiries or to exercise your rights, please email us at support@thestori.ai.