Arahi AI Logo

Privacy Policy

Learn how Arahi AI collects, uses, and protects your personal information on our Agentic AI Platform.

Last Updated: October 4, 2025

Privacy Policy for Arahi AI LLC

Last Updated: October 04, 2025

1. Introduction and Scope

This Privacy Policy explains how Arahi AI LLC ("Arahi AI," "we," "our," or "us") collects, uses, shares, and protects personal information when you use our websites, products, and services, including our Agentic AI Platform (collectively, the "Services").

By using the Services, you agree to this Privacy Policy. If you do not agree, please discontinue use of the Services.

Arahi AI LLC is incorporated in the United States and operates globally from Briarwood, Queens, NY 11435, USA.

Contact Information:

This Privacy Policy applies to our online and offline personal information processing activities including visitors to our website where this Policy is posted, individuals who create accounts with us, customers who purchase our Services, event participants, newsletter subscribers, and anyone who communicates or interacts with us.

Additional Notices: Depending on your interaction with us, we may provide supplemental privacy notices. This Policy does not apply to job applicants, employees, or contractors in their employment context.

Business Customers: When businesses purchase our Services, we may process employee or end-user personal information at their direction as a service provider. In such cases, the Customer's privacy policies apply to that processing.

2. About Arahi AI

Arahi AI is an Agentic AI Platform that enables businesses and professionals to build, deploy, and manage AI Agents without code. Our platform automates workflows, processes business data, and integrates securely with over 2,800 apps.

Users may connect their own AI provider accounts (e.g., OpenAI, Anthropic, Google Gemini, Amazon Bedrock, Perplexity, DeepSeek, xAI) or use Arahi-provided models under their subscription.

3. Personal Information We Collect

We collect personal information directly from you, automatically through your use of our Services, and from third-party sources. To the extent permitted by applicable law, we may combine personal information from these sources.

3.1 Information You Provide Directly

Account and Profile Information: Name, email address, username, hashed password, company name, job title, preferences, and any other information you provide when creating or updating your account.

Billing and Payment Information: Payment card details, billing address, and transaction history. Payment processing is managed securely by Stripe; we do not store complete card numbers.

Communications and Support: Messages, feedback, inquiries, chat interactions, support tickets, and correspondence with our team.

Professional Information: Role, organization, business context, and other professional details.

Social Login Data: If you register via X (Twitter), Google, or other social platforms, we may receive profile information based on your privacy settings with those platforms.

Event and Registration Data: Information related to webinars, training sessions, events, or conferences you attend, including registration details and participation records.

Survey and Feedback Responses: Information you provide in surveys, questionnaires, or research activities.

Marketing Preferences: Communication preferences and subscription choices.

AI Inputs and Content: Prompts, instructions, uploaded files, and data you provide to our AI features. This may include business documents, customer data, or other content you choose to process through our platform.

3.2 Information Collected Automatically

Device and Browsing Information: IP address, browser type and version, device type and ID, operating system, language settings, domain name, page views, access times, date/time stamps, Internet service provider, referring and exit URLs, and clickstream data.

Usage and Activity Information: Features used, links clicked, searches performed, time spent on pages, interactions within the Services, workflow creation and execution data, AI agent performance metrics, and similar usage information.

Location Information: General location derived from IP address or device settings.

Cookies and Tracking Technologies: We use cookies, pixel tags, local storage objects, and similar technologies. See Section 8 for details.

3.3 Information from Third Parties

Integration Partners: Information from third-party platforms you connect through our Services (e.g., CRM systems, business tools, data sources accessed via integrations).

Analytics and Marketing Providers: Data from analytics platforms, marketing partners, data brokers, and public databases to enhance our customer information and improve targeting.

Social Media Platforms: Publicly available information from social networks and professional platforms.

Referral Sources: Information about you from other users who refer you to our Services or collaborate with you.

Lead and Prospect Data: Business contact information from legitimate third-party sources for marketing purposes.

3.4 Sensitive Personal Information

We do not intentionally collect sensitive personal information (such as racial or ethnic origin, political opinions, religious beliefs, health data, biometric data, or sexual orientation) unless you voluntarily provide it within AI prompts or uploaded files.

If such data is provided:

  • We process it only with your explicit consent or as strictly necessary for the specific AI functionality you requested
  • Processing is limited to that specific purpose
  • Data is deleted after processing unless you instruct otherwise
  • We strongly encourage you to anonymize sensitive data before uploading

4. How We Use Your Personal Information

We collect, use, and process personal information for the following purposes:

Service Delivery and Support: To provide, maintain, and improve our Services; manage your account; deliver customer support; respond to inquiries; fulfill requests; process workflows; execute AI agents; and operate our platform.

Payment Processing: To process transactions, manage subscriptions, handle billing, and maintain payment records.

Communication: To send service-related notifications, respond to questions, provide technical updates, and communicate about your account or Services.

Personalization and Customization: To tailor your experience, recommend features, customize content, and provide location-based services where appropriate.

Marketing and Promotion: To send newsletters, promotional materials, product updates, and information about new features or offerings (with opt-out options).

Analytics and Improvement: To understand how users interact with our Services; evaluate and improve features; develop new functionality; conduct research; perform quality control; and train our teams.

AI Development: To improve our AI features, optimize agent performance, and enhance platform capabilities. We do not use your personal information to train third-party AI models without your consent.

Security and Fraud Prevention: To protect our Services, detect and prevent fraud, investigate unauthorized access, respond to security incidents, and protect our rights and those of our users.

Legal Compliance: To comply with applicable laws, regulations, legal processes, and governmental requests; respond to subpoenas or court orders; and fulfill audit and reporting obligations.

Business Operations: To conduct internal audits, maintain business records, assess business opportunities, manage vendor relationships, and support general operational needs.

Business Transactions: To evaluate, negotiate, and complete mergers, acquisitions, financing, restructuring, or asset sales.

We may also use your information for other purposes with your consent or as permitted by law.

5. Legal Bases for Processing (GDPR/UK GDPR)

For users in the EU, UK, or Switzerland, we process personal information based on the following legal grounds:

Contractual Necessity: To perform our contract with you and deliver the Services you requested.

Legitimate Interests: For business operations, security, analytics, service improvement, fraud prevention, and marketing to existing customers, where our interests are balanced against your rights.

Consent: For optional features, marketing to prospects, certain integrations, or where required by law. You may withdraw consent at any time.

Legal Obligations: To comply with applicable laws, regulations, and legal processes.

Vital Interests: To protect health, safety, or fundamental rights in exceptional circumstances.

For specific processing activities and their legal bases, see Section 17 (EU and UK Provisions).

6. How We Share Personal Information

We share personal information only when necessary and with appropriate safeguards:

6.1 Service Providers and Partners

  • Technology and Infrastructure Providers: Hosting services, cloud storage providers (e.g., Supabase), database management, and IT support vendors.
  • Analytics and Monitoring: Analytics platforms (e.g., PostHog, Google Analytics) and performance monitoring tools.
  • Communication Services: Email delivery platforms (e.g., Loops.so), customer support tools, and messaging services.
  • Payment Processors: Stripe and other payment service providers for transaction processing.
  • Marketing and Advertising Partners: Marketing automation platforms, advertising networks, and campaign management services.
  • AI Service Providers: When you use connected AI accounts, your data is processed according to those providers' policies (e.g., OpenAI, Anthropic, Google Cloud AI, AWS AI, Perplexity, DeepSeek, xAI).
  • Integration Partners: Third-party platforms you connect through our Services (e.g., via Pipedream or direct integrations).

All service providers are bound by data processing agreements and contractual obligations to protect your information.

6.2 Business Transfers

In connection with mergers, acquisitions, financing, reorganizations, bankruptcies, or asset sales, we may disclose or transfer personal information to potential or actual buyers, investors, lenders, auditors, and advisors. Personal information will be subject to confidentiality obligations prior to completion of such transactions.

6.3 Legal and Safety Reasons

We may disclose personal information when required or permitted by law:

  • To comply with legal obligations, court orders, subpoenas, or regulatory requests
  • To law enforcement or government authorities in response to lawful requests
  • To protect our rights, property, safety, or that of our users or the public
  • To prevent, detect, or investigate fraud, security incidents, or illegal activities
  • To enforce our Terms and Conditions or other agreements
  • In connection with legal proceedings, disputes, or claims

6.4 With Your Consent

We may share personal information for purposes you specifically authorize or consent to.

6.5 Aggregated and Deidentified Data

We may use and share aggregated, deidentified, or anonymized data that does not identify you personally for research, analytics, marketing, and other business purposes. We maintain and use such data in deidentified form and do not attempt to reidentify it, except to verify the adequacy of our deidentification processes as required by law.

6.6 International Transfers

We may transfer personal information to the United States and other countries where we or our service providers operate. For users in the EEA, UK, or Switzerland, such transfers are protected by Standard Contractual Clauses (SCCs) or other appropriate safeguards under GDPR and UK GDPR.

7. Use of AI and Data Processing

7.1 AI Features

Our Services include AI-powered features using machine learning and large language models (LLMs). These features may process:

  • User inputs, prompts, and instructions
  • Uploaded files and documents
  • Connected data sources
  • Workflow configurations
  • Agent execution logs

7.2 AI Model Selection

You control which AI models process your data:

  • Arahi-Provided Models: Included in your subscription; processed according to this Privacy Policy
  • Connected Third-Party Models: Your own API accounts with providers like OpenAI, Anthropic, Google, AWS, etc.; processed according to their privacy policies

You can change AI model preferences or disconnect third-party accounts anytime in your dashboard.

7.3 AI Training

We do not use your personal information, prompts, or uploaded content to train third-party AI models. We may use aggregated, anonymized usage data to improve our platform features and user experience.

7.4 Data Control

You can:

  • Review and delete AI inputs and outputs
  • Export your data
  • Disconnect AI integrations
  • Control which data sources AI agents can access

8. Cookies and Tracking Technologies

We and our third-party service providers use cookies, pixels, local storage, and similar technologies to enhance functionality, analyze usage, and provide personalized experiences.

8.1 Types of Technologies

  • Cookies: Small text files stored on your device that help us recognize you, maintain session state, remember preferences, and analyze usage patterns.
  • Pixel Tags (Web Beacons): Tiny graphics embedded in web pages and emails to track page views, email opens, and user actions.
  • Local Storage Objects: Browser-based storage mechanisms that persist data between sessions for faster loading and enhanced functionality.
  • Log Files: Records of system activity, errors, and usage patterns.

8.2 Third-Party Analytics

We use third-party analytics tools including:

  • Google Analytics: For website traffic analysis and user behavior insights.
  • PostHog: For product analytics and feature usage tracking
  • Other analytics providers for performance monitoring and optimization

8.3 Managing Your Preferences

Cookie Controls: Most browsers allow you to block or delete cookies through settings. Note that disabling cookies may limit functionality.

9. Your Privacy Rights and Choices

9.1 Marketing Communications

You may opt out of promotional emails by:

  • Clicking "unsubscribe" in any marketing email
  • Adjusting preferences in your account settings
  • Contacting support@arahi.ai

You will continue to receive transactional and service-related communications.

9.2 Data Subject Rights

Depending on your location, you may have rights to:

  • Access: Request a copy of personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information, subject to legal retention requirements
  • Portability: Request transfer of your data in a structured, machine-readable format
  • Restriction: Request limitation of processing in certain circumstances
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent where processing is based on consent

9.3 Exercising Your Rights

To exercise these rights:

  • Email: support@arahi.ai
  • Submit a request through your account settings
  • For EU/UK users: support@arahi.ai

We will respond within 30-45 days after verifying your identity. You have the right to lodge a complaint with a supervisory authority if you believe we have violated your privacy rights.

10. Data Retention

We retain personal information only as long as necessary for the purposes described in this Policy or as required by law.

| Data Type | Retention Period | Purpose | |-----------|-----------------|---------| | Account Information | Until account deletion + 90 days | Service provision, legal compliance | | Billing Records | 7 years | Tax, audit, regulatory requirements | | Usage Logs | 18 months | Analytics, security, troubleshooting | | Support Communications | Until resolution + 2 years | Customer service, legal reference | | AI Prompts and Outputs | 90 days after workflow execution | Service delivery, debugging |

After retention periods expire, we securely delete or anonymize personal information. You may request earlier deletion subject to legal and operational requirements.

11. Security Measures

We implement comprehensive technical and organizational security measures to protect personal information including encryption in transit and at rest, secure authentication and access controls, regular security assessments, intrusion detection and monitoring systems, and employee training on data protection.

If we experience a data breach affecting personal information, we will investigate and contain the incident promptly, notify affected users within 72 hours as required by GDPR, and provide details of the incident, potential impact, and recommended actions.

While we use reasonable security measures, no system is completely secure. You can help protect your account by using strong, unique passwords and enabling two-factor authentication where available.

12. Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from minors.

If you are a parent or guardian and believe we have collected information about your child, please contact us at support@arahi.ai. We will promptly delete such information.

13. U.S. State-Specific Privacy Rights

Residents of California, Colorado, Connecticut, Virginia, Utah, and other U.S. states with comprehensive privacy laws have additional rights.

California residents have rights to know what personal information we collect, access specific pieces of personal information, delete personal information, correct inaccurate personal information, opt-out of sale or sharing of personal information, limit use of sensitive personal information, and non-discrimination for exercising privacy rights.

We do not sell or share personal information for monetary consideration.

Submit requests via email at support@arahi.ai, Privacy Rights Request form on our website, or account settings. We will verify your identity before processing requests and respond within 45 days.

14. International Provisions

We comply with applicable privacy laws including the General Data Protection Regulation (GDPR), UK GDPR, and Australian Privacy Principles (APPs) under the Privacy Act 1988.

For EU/UK users, you have rights to access, rectification, erasure, restriction, data portability, objection, withdraw consent, and lodge complaints with supervisory authorities. Contact support@arahi.ai to exercise these rights.

For transfers from the EEA and UK, we ensure appropriate safeguards through Standard Contractual Clauses (SCCs) approved by the European Commission and other legally recognized transfer mechanisms.

15. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, Services, legal requirements, or for other operational reasons.

Material changes will be communicated via email to your registered address, prominent notice on our website or within the Services, and the "Last Updated" date at the top of this Policy.

We encourage you to review this Policy periodically. Continued use of our Services after changes constitutes acceptance of the updated Policy.

16. Contact Information

Arahi AI LLC

Address: Briarwood, Queens, NY 11435, USA

Email:

Response Time: We respond to privacy inquiries within 30-45 days after identity verification.

This Privacy Policy is effective as of the Last Updated date above and applies to all users of Arahi AI Services.