Privacy Policy

At SprintiQ.ai ("we", "our", or "us"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered sprint planning and story generation platform.

This policy applies to all users of our website, mobile applications, and services (collectively, the "Service"). By using our Service, you consent to the data practices described in this policy.

Last updated: July 4, 2025

We collect several types of information to provide and improve our Service:

Personal Information

• Name and email address when you create an account
• Company name and job title
• Payment information (processed securely by our payment providers)
• Profile information and preferences

Usage Information

• How you interact with our Service
• Features you use and pages you visit
• Performance data and error logs
• Device information and browser type

Content Information

• User stories and project requirements you input
• AI-generated content and your feedback on it
• Project data and team collaboration information
• Integration data from connected platforms

We use the collected information for the following purposes:

Service Provision

• Provide and maintain our AI-powered story generation service
• Process your requests and generate user stories
• Manage your account and subscription
• Provide customer support and respond to inquiries

Service Improvement

• Improve our AI models and algorithms
• Analyze usage patterns to enhance user experience
• Develop new features and functionality
• Conduct research and analytics

Communication

• Send important service updates and notifications
• Provide technical support and assistance
• Send marketing communications (with your consent)
• Respond to legal requests and compliance requirements

Our AI-powered features require careful handling of your data. Here's how we use your information with our AI systems:

AI Model Training

• We may use aggregated, anonymized data to improve our AI models
• Your specific project content is never used to train models that serve other customers
• All personal identifiers are removed before any training data is used
• You can opt out of contributing to AI model improvement in your privacy settings

Content Processing

• Your project requirements are processed to generate relevant user stories
• We maintain strict data isolation between different customers
• AI-generated content is created specifically for your use case
• Your feedback on AI suggestions helps improve future recommendations

Data Retention

• Your project data is retained for the duration of your account
• Training data is retained only in anonymized form
• You can request deletion of your data at any time
• Data is permanently deleted within 30 days of account closure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following limited circumstances:

Service Providers

• Cloud hosting and infrastructure providers
• Payment processing services
• Customer support and analytics tools
• Email and communication services

Legal Requirements

• Comply with applicable laws and regulations
• Respond to legal requests and court orders
• Protect our rights, property, and safety
• Investigate potential violations of our terms

Business Transfers

• In the event of a merger, acquisition, or sale of assets
• With your explicit consent for specific purposes
• To protect against fraud and security threats

We implement comprehensive security measures to protect your information:

Technical Safeguards

• AES-256 encryption for data at rest and in transit
• Secure HTTPS connections for all communications
• Multi-factor authentication options
• Regular security audits and penetration testing
• Secure API endpoints with rate limiting

Organizational Measures

• Access controls and role-based permissions
• Employee security training and background checks
• Incident response procedures
• Regular security assessments and updates

Data Protection

• Automatic backups and disaster recovery
• Data isolation between customers
• Secure data centers with physical security
• Monitoring and alerting systems

We retain your information only as long as necessary to provide our services and comply with legal obligations:

Retention Periods

• Account Data: Retained while your account is active
• Project Content: Retained until you delete it or close your account
• Usage Logs: Retained for 12 months for security and analytics
• Payment Information: Retained as required by financial regulations

Your Rights

• Access and download your data at any time
• Request correction of inaccurate information
• Delete specific projects or your entire account
• Export your data in portable formats

Deletion Process

• Account deletion requests are processed within 30 days
• Data is permanently removed from our systems
• Backup data is deleted within 90 days
• You will receive confirmation when deletion is complete

We use cookies and similar technologies to enhance your experience and analyze service usage:

Types of Cookies

• Essential Cookies: Required for basic service functionality
• Performance Cookies: Help us understand how you use our service
• Functional Cookies: Remember your preferences and settings
• Analytics Cookies: Provide insights into service usage patterns

Third-Party Services

• Google Analytics for website analytics
• Stripe for payment processing
• Intercom for customer support
• Cloudflare for security and performance

Cookie Management

• You can control cookies through your browser settings
• Essential cookies cannot be disabled as they're required for service operation
• Disabling certain cookies may affect service functionality
• We provide cookie preferences in your account settings

Our service integrates with various third-party platforms and services:

Project Management Platforms

• Jira, Azure DevOps, Linear, Asana, GitHub Issues
• ClickUp, Trello, Monday.com, and others
• Data shared only with your explicit authorization
• Integration tokens are encrypted and securely stored

Service Providers

• AWS for cloud infrastructure and hosting
• OpenAI for AI model services
• Stripe for payment processing
• SendGrid for email communications

Data Protection

• All third-party services are vetted for security compliance
• Data processing agreements are in place where required
• We monitor third-party service security and compliance
• You can disconnect integrations at any time

Your data may be transferred to and processed in countries other than your own:

Data Locations

• Primary data centers located in the United States
• Backup and disaster recovery in multiple regions
• CDN services distributed globally for performance
• Third-party services may be located in various countries

Legal Framework

• Compliance with GDPR for EU residents
• Standard Contractual Clauses for international transfers
• Adequacy decisions where applicable
• Local data protection laws compliance

Your Rights

• Right to know where your data is processed
• Right to request data transfer to another service
• Right to lodge complaints with supervisory authorities
• Right to compensation for data protection violations

Our Service is not intended for children under the age of 13:

• We do not knowingly collect personal information from children under 13
• If we become aware that we have collected such information, we will delete it immediately
• Parents or guardians should contact us if they believe their child has provided personal information
• Our Service is designed for business and professional use

Depending on your location, you may have the following privacy rights:

Access and Control

• Right to Access: Request a copy of your personal information
• Right to Rectification: Correct inaccurate or incomplete information
• Right to Erasure: Request deletion of your personal information
• Right to Portability: Receive your data in a portable format

Processing Control

• Right to Restrict Processing: Limit how we use your information
• Right to Object: Object to certain types of processing
• Right to Withdraw Consent: Withdraw consent for processing
• Right to Data Portability: Transfer your data to another service

Automated Decision Making

• Right to human review of automated decisions
• Right to contest automated processing results
• Right to explanation of how decisions are made
• Right to opt out of automated processing

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws:

• We will notify you of material changes via email or in-app notification
• Minor changes will be posted on this page with an updated date
• Continued use of our Service after changes constitutes acceptance
• You can review the current policy at any time on this page

If you have any questions about this Privacy Policy or our data practices, please contact us:

We will respond to your inquiry within 30 days and provide any requested information or assistance.