Privacy Policy
Effective date: January 1, 2026
This Privacy Policy explains how Data Plus Lab, Inc. ("Data Plus Lab", "we", "us") collects, uses, discloses, and safeguards information when you use our enterprise knowledge platform (the "Service"). By using the Service, you agree to the collection and use of information in accordance with this policy.
1. Information We Collect
We collect the following categories of information:
- Account information — name, email address, workspace name, and password (stored as a salted hash) when you register.
- Connected source content — when you connect Slack, Microsoft Teams, Google Drive, Confluence, or Jira, we ingest content, metadata, and permission information from those sources solely to index and serve it back to authorized users in your workspace.
- Usage data — queries you ask, pages you visit, and actions you take within the Service, logged for security, auditing, and product-improvement purposes.
- Technical data — IP address, browser type, and device information collected automatically via standard web request logs.
2. How We Use Information
- To provide, operate, and maintain the Service, including generating AI-powered answers grounded in your connected content.
- To enforce the same access permissions your organization already has configured in each connected source — we do not grant access beyond what a user already has.
- To detect, investigate, and prevent fraudulent, unauthorized, or unlawful activity.
- To communicate with you about your account, security notices, and product updates.
- To improve the Service, including analyzing aggregate, de-identified usage trends.
3. AI Processing
Questions and retrieved context may be sent to our large-language-model provider to generate answers. We do not use your workspace content to train foundation models. Data sent for inference is subject to our provider's data-handling agreements and is not retained beyond what is required to serve the request.
4. Data Sharing
We do not sell your personal information. We share data only with:
- Infrastructure and sub-processors (hosting, database, email delivery, and AI providers) strictly to operate the Service.
- Law enforcement or regulators when legally required to do so.
- A successor entity in the event of a merger, acquisition, or asset sale, with notice to affected users.
5. Data Security
We encrypt data in transit (TLS) and encrypt connector credentials at rest. Access to production systems is restricted and logged. Every query, answer, and administrative action is recorded in an immutable audit log. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.
6. Data Retention
We retain workspace content for as long as your account is active or as needed to provide the Service. You may request deletion of your workspace and all associated data at any time by contacting us; we will complete deletion within 30 days, subject to legal retention requirements.
7. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access, correct, or delete your personal information.
- Object to or restrict certain processing.
- Request a copy of your data in a portable format.
- Withdraw consent where processing is based on consent.
To exercise any of these rights, contact us at impulxor@gmail.com.
8. Cookies
We use essential cookies and local storage to maintain your session and authentication state. We do not use third-party advertising cookies.
9. International Transfers
Your information may be processed in countries other than your own. Where required, we rely on appropriate safeguards such as standard contractual clauses for cross-border transfers.
10. Children's Privacy
The Service is intended for business use and is not directed at individuals under 16.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the effective date above.
12. Contact Us
Questions about this Privacy Policy? Reach us at impulxor@gmail.com.