Privacy Policy

Account Information

When you create an account, we collect information such as:

• Name, email address, and job title
• Company name and billing address
• Payment information (processed by our third-party payment processor)
• Account credentials

Customer Data

In the course of using the Service, you may submit data for processing by our AI agents and automation workflows ("Customer Data"). Customer Data may include documents, datasets, operational records, and other business information you upload or connect through integrations. You retain full ownership of your Customer Data as described in our Terms of Service.

Usage Data

We automatically collect information about how you interact with the Service, including:

• Log data (IP address, browser type, operating system, referring URLs, pages visited, timestamps)
• Device information (device identifiers, screen resolution, language preferences)
• Feature usage patterns, workflow configurations, and agent interactions
• Performance data and error reports

Information from Third-Party Integrations

If you connect third-party services to Komo (such as productivity tools, databases, or cloud storage), we may receive information from those services as necessary to provide the integration. The data we receive depends on the specific integration and your settings with those third-party services.

We use the information we collect for the following purposes:

• Providing the Service: To operate, maintain, and deliver the features and functionality of the platform, including processing Customer Data through AI agents and automation workflows.
• Account Management: To create and manage your account, authenticate your identity, and process payments.
• Service Improvement: To analyze usage patterns, diagnose technical issues, and improve the performance, reliability, and user experience of the Service.
• Communication: To send you service-related notices, security alerts, support messages, and updates about the Service.
• Security and Compliance: To detect, prevent, and respond to fraud, abuse, security incidents, and technical issues, and to comply with legal obligations.
• Legal Obligations: To comply with applicable laws, regulations, legal processes, or governmental requests.

Komo is committed to the responsible and transparent use of AI. When you use our platform:

• Customer Data is processed solely to provide the Service to you. We do not use your Customer Data to train general-purpose AI or machine learning models.
• AI Outputs are generated for your benefit. Any outputs, recommendations, or automated actions produced by our AI agents are provided exclusively to you and are not shared with other customers.
• Third-party AI providers: We may use third-party AI model providers (such as large language model APIs) to process certain requests. When we do, Customer Data is transmitted securely and subject to our data processing agreements with those providers, which prohibit them from using your data for their own training purposes.
• Aggregated and anonymized data: We may use aggregated, de-identified data derived from usage patterns (not Customer Data content) to improve our models, features, and overall Service quality. This data cannot be used to identify you or your organization.

Service Providers

We share information with third-party vendors who assist us in operating the Service, including cloud hosting, payment processing, analytics, customer support, and email delivery. These providers are contractually obligated to use your information only as necessary to provide services to us and are bound by confidentiality obligations.

Third-Party Integrations

If you enable integrations with third-party services, we may share information with those services as necessary to facilitate the integration. Your use of third-party integrations is subject to the privacy policies of those third parties.

Legal Requirements

We may disclose your information if required by law, subpoena, court order, or other legal process, or if we believe in good faith that disclosure is necessary to protect our rights, your safety, the safety of others, investigate fraud, or respond to a government request.

Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have regarding your information.

With Your Consent

We may share your information with third parties when you have given us explicit consent to do so.

We use cookies, pixels, and similar technologies to operate and improve the Service. These include:

• Essential cookies: Required for the Service to function properly, including authentication and security.
• Analytics cookies: Help us understand how users interact with the Service so we can improve it.
• Preference cookies: Remember your settings and preferences for a better user experience.

You can manage cookie preferences through your browser settings. Disabling certain cookies may limit your ability to use some features of the Service.

We implement industry-standard technical and organizational measures to protect your information, including:

• Encryption of data in transit (TLS) and at rest
• Access controls and authentication mechanisms
• Regular security assessments and vulnerability testing
• Employee security training and access restrictions
• Incident response procedures

While we strive to protect your information, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security of your data.

We retain your information for as long as necessary to provide the Service, fulfill the purposes described in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements. When we no longer need your information, we will securely delete or anonymize it.

You may request deletion of your account and associated data at any time by contacting us at privacy@komo.ai. Upon account termination, we will delete or anonymize your Customer Data within 30 days, unless retention is required by law.

Komo is based in the United States. If you access the Service from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate. We take appropriate safeguards to ensure that your information is protected in accordance with this Privacy Policy, including the use of Standard Contractual Clauses or other approved transfer mechanisms where required.

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request that we correct inaccurate or incomplete personal information.
• Deletion: Request that we delete your personal information, subject to certain exceptions.
• Portability: Request a copy of your data in a structured, commonly used, machine-readable format.
• Restriction: Request that we restrict the processing of your personal information under certain circumstances.
• Objection: Object to the processing of your personal information where we rely on legitimate interests.
• Withdraw Consent: Where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, please contact us at privacy@komo.ai. We will respond to your request within 30 days (or as required by applicable law).

If you are located in the EEA, UK, or Switzerland, our legal bases for processing your personal information include:

• Contract performance: Processing necessary to provide the Service under our Terms of Service.
• Legitimate interests: Processing for our legitimate business interests, such as improving the Service, ensuring security, and communicating with you, where those interests are not overridden by your rights.
• Legal compliance: Processing necessary to comply with legal obligations.
• Consent: Where you have provided explicit consent for a specific processing purpose.

You have the right to lodge a complaint with your local data protection authority if you believe we have not complied with applicable data protection laws.

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including:

• The right to know what personal information we collect, use, and disclose.
• The right to request deletion of your personal information.
• The right to opt-out of the "sale" or "sharing" of your personal information. Komo does not sell your personal information.
• The right to non-discrimination for exercising your privacy rights.

To exercise your rights, contact us at privacy@komo.ai or submit a request through our platform.

The Service is not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under 18, we will promptly delete that information. If you believe a child has provided us with personal information, please contact us at privacy@komo.ai.

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or by posting a prominent notice on the Service at least 30 days before the changes take effect. We encourage you to review this Privacy Policy periodically.

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Komo AI Corp · 315 W 33rd St · New York, NY 10001, United States

Email: privacy@komo.ai