Insloom Logo
Back to Home

Privacy Policy

Last updated: 26 February 2026

Insloom ("we," "our," "us") provides an AI-powered chatbot platform that enables businesses to automate customer support. This Privacy Policy explains how we collect, use, store, and protect personal information when you use our website (insloom.com), dashboard (app.insloom.com), embeddable widgets, and related services (collectively, the "Service").

1. Information We Collect

We collect information in the following ways:

a) Information You Provide

  • Account Information: Name, email address, and authentication credentials when you create an account.
  • Knowledge Sources: Website URLs, uploaded documents, and other content you provide for AI training.
  • Workspace Data: Widget configurations, team member details, and customization preferences.
  • Communications: Emails, support requests, and feedback you send us.

b) Information Collected Automatically

  • Usage Analytics: Page views, feature usage, session duration, and interaction patterns.
  • Device Information: Browser type, operating system, IP address, and device identifiers.
  • Conversation Logs: Messages exchanged between End Users and your deployed AI Widget.
  • Performance Data: Error logs, response times, and system diagnostics.

c) Information from Third Parties

  • Authentication Providers: If you sign in via Google or other OAuth providers, we receive your basic profile information.
  • Payment Processor: Dodo Payments (our Merchant of Record) provides us transaction confirmation details. We do not store full payment card numbers.

2. How We Use Your Information

We use collected data to:

  • Provide, operate, and maintain the Insloom Service.
  • Process your knowledge sources to generate AI responses.
  • Display analytics and conversation insights in your dashboard.
  • Improve AI accuracy, performance, and user experience.
  • Communicate product updates, onboarding guides, and support responses.
  • Diagnose technical issues and prevent abuse.
  • Process billing and subscription management.
  • Comply with legal obligations.

3. Data Storage & Retention

  • Knowledge sources, conversations, and workspace data are stored securely to provide the Service.
  • We retain data for as long as your account is active or as needed to provide the Service.
  • Upon account deletion, data is removed within 30 days, except where retention is required by law.
  • Backup copies may persist for up to 90 days in our disaster recovery systems.

4. Data Sharing

We do not sell, rent, or trade your personal information. We may share data with:

  • Service Providers: Infrastructure providers (hosting, database, CDN) who process data on our behalf under strict contractual obligations.
  • Payment Processor: Dodo Payments, for processing subscription payments.
  • Analytics Tools: Google Analytics to understand website usage patterns (anonymized where possible).
  • Legal Requirements: When required by law, court order, or to protect our rights and safety.

Important: We do not use your content to train general-purpose AI models. Your data is used only to power your own chatbot.

5. AI & Data Processing

When you provide knowledge sources:

  • Content is crawled, processed, and stored as vector embeddings for AI retrieval.
  • AI models (such as Google Gemini and OpenAI) may process your content to generate responses. These providers process data under strict data processing agreements and do not retain your data for their own model training.
  • Conversation data is stored to provide conversation history and analytics.

6. Cookies & Tracking

We use cookies and similar technologies for:

  • Essential Cookies: Authentication, session management, and security.
  • Analytics Cookies: Google Analytics to track page views and user engagement.
  • Preference Cookies: Remembering your settings and preferences.

You can manage cookie preferences through your browser settings. Disabling essential cookies may impair functionality.

7. International Users (GDPR / CCPA)

If you are in a regulated jurisdiction (EU, UK, California, etc.), you have the right to:

  • Access: Request a copy of your personal data.
  • Rectification: Correct inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data ("Right to be Forgotten").
  • Portability: Export your data in a structured, machine-readable format.
  • Restriction: Restrict processing of your data in certain circumstances.
  • Withdrawal of Consent: Withdraw consent at any time where processing is based on consent.
  • Opt-Out of Sale: We do not sell data, but CCPA users may submit opt-out requests.

To exercise any of these rights, contact us at paramknowcode@gmail.com. We will respond within 30 days.

8. Security Measures

We implement industry-standard security practices including:

  • Encryption of data in transit (TLS/SSL) and at rest.
  • Secure authentication with session management.
  • Regular security assessments and monitoring.
  • Access controls and principle of least privilege.

While we take reasonable precautions, no system is 100% secure. We cannot guarantee absolute security.

9. Children's Privacy

Insloom is not intended for use by individuals under 13 years of age (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us data, contact us and we will delete it promptly.

10. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices or content of those third parties.

11. Changes to This Policy

We may update this Privacy Policy as our Service evolves. Material changes will be communicated via email or dashboard notification. Continued use of the Service after changes take effect constitutes acceptance.

12. Contact Us

For privacy-related inquiries or to exercise your data rights:
Email: paramknowcode@gmail.com
Website: insloom.com
Dashboard: app.insloom.com
Location: Dhuri, Sangrur District, Punjab, India

Governing Law: India (Punjab)