AmwaliLog In

Amwali AI Inc. Privacy Policy

Effective date: January 1, 2026
Last updated: January 1, 2026

This Privacy Policy explains how Amwali AI Inc., a Delaware corporation ("Amwali", "we", "our", or "us"), collects, uses, discloses, and retains personal information when you use amwali.ai and app.amwali.ai.

1) Information We Collect

We collect the following categories of information, depending on how you use the service:

  • Account and identity data: name, email, profile image, authentication-provider identifiers, and account metadata.
  • Financial document and content data: uploaded files, extracted transaction/account data, prompts, chat content, and AI outputs.
  • Usage and diagnostics data: timestamps, feature usage, logs, error traces, device/browser details, and abuse-prevention signals.
  • Payment data: payment status, transaction IDs, and billing-related metadata (we do not store full payment card numbers).
  • Compliance data: legal-consent versions, acceptance timestamps, user-agent, locale, and IP-derived metadata.

2) Sources of Information

We collect information from:

  • You (for example, account details, uploads, prompts, support).
  • Your device/browser and application telemetry when you use the service.
  • Third parties you choose to use with us (for example, authentication, payment, or communications providers).

3) How We Use Information

We use personal information to:

  • Provide, maintain, secure, and improve the service.
  • Authenticate users, deliver account access, and support account recovery.
  • Process uploads and generate AI-assisted responses and insights.
  • Process payments, credits, and related transaction events.
  • Detect, prevent, and investigate fraud, abuse, and security issues.
  • Communicate with you about service and support matters.
  • Comply with legal obligations and enforce our Terms.

4) Legal Bases (Where Applicable)

Where required by law, we process personal information under one or more of these legal bases: contract performance, legitimate interests, legal compliance, and consent.

5) How We Share Information

We may disclose personal information to the following categories of recipients:

  • Service providers that help us operate the service.
  • Payment providers (for example, Stripe), authentication providers (for example, Google), and transactional-email providers (for example, Resend).
  • Hosting, infrastructure, storage/database, and logging/monitoring providers.
  • AI and assistant-processing providers used to deliver service functionality.
  • Professional advisors, law enforcement, regulators, and courts when required by law or to protect rights, safety, and security.
  • Parties involved in a merger, financing, acquisition, bankruptcy, or similar transaction.

6) International Data Transfers

You may access the service globally. Personal information may be processed in the United States and other countries that may have different data-protection laws than your jurisdiction. Where required, we use appropriate safeguards for cross-border transfers.

7) Data Retention

We retain personal information for as long as needed for the purposes above, including legal, accounting, dispute-resolution, and security needs.

  • Account data: generally retained while your account is active and for a reasonable period after closure.
  • Files, prompts, and outputs: retained to provide and support the service until deletion, account closure, or policy lifecycle.
  • Security and telemetry logs: retained for fraud prevention, diagnostics, and incident response (typically 30-365 days unless a longer retention is legally required).
  • Billing and transaction records: retained as required by tax, accounting, and legal obligations.
  • Legal-consent records: retained for compliance and evidentiary purposes.

8) Security

We use administrative, technical, and organizational safeguards, including access controls, encryption in transit, and monitoring. However, no security system is perfect and we cannot guarantee absolute security.

9) Your Privacy Rights

Depending on your location, you may have rights such as access, correction, deletion, portability, objection/restriction, and withdrawal of consent.

To submit a request, email support@amwali.ai. We may verify identity before fulfilling requests and may decline requests where allowed by law.

For U.S. state privacy laws, you may request to know, access, correct, or delete covered personal information, and appeal denial decisions where applicable.

10) Cookies and Similar Technologies

We and our service providers may use cookies, local storage, and similar technologies for authentication, security, product functionality, analytics, and performance.

11) Children

The service is not intended for children under 18, and we do not knowingly collect personal information from children under 18.

12) Changes to this Policy

We may update this Privacy Policy periodically. If required by law or risk posture, we may require renewed acknowledgment before continued access to some or all features.

13) Contact

Privacy and data requests: support@amwali.ai