Privacy Policy

Last updated: May 3, 2026

This Privacy Policy explains how Contexo ("Contexo", "we", "us") collects, uses, stores, and shares information when you use our website, dashboard, APIs, and the embeddable chat widgets you publish on your own websites (collectively, the "Service"). By using the Service you agree to this Policy. If you do not agree, do not use the Service.

1. Who we are and your role

Contexo provides a multi-tenant, retrieval-augmented chatbot platform. Two distinct relationships exist:

2. Information we collect

2.1 Account information

2.2 Billing information

We do not store your card or bank details. Payment instruments are collected and stored by Lemon Squeezy. See Subprocessors below.

2.3 Customer content

2.4 Conversation data

2.5 Operational logs

3. How we use information

We do notsell your personal data, your customers' conversation data, or your uploaded documents. We do not use your data to train our own foundation models, and the model providers we rely on do not use it to train theirs (see Security).

4. Subprocessors

We rely on the third-party providers listed on our Subprocessors page. They process data only on our behalf and only as necessary to deliver the Service. The current list includes Supabase (database, auth, storage), Google Gemini (LLM and embeddings), and Lemon Squeezy (payments and tax).

5. Cookies and similar technologies

See our Cookie Policy for what we (and the embedded widget) store in browsers.

6. Data retention

7. Your rights

Depending on your location (EU/EEA/UK under GDPR, California under CCPA/CPRA, India under DPDP Act, and other jurisdictions), you may have the right to:

To exercise any of these rights email privacy@contexo.ai. We will respond within the timeframe required by applicable law (typically 30 days). For California residents we do not sell or share personal information for cross-context behavioral advertising.

8. International transfers

Your data may be processed in countries other than the one in which you live. Where we transfer personal data out of the EU/EEA/UK or other regulated regions, we rely on Standard Contractual Clauses or an equivalent legal mechanism with our subprocessors.

9. Children

The Service is not directed to children under 16 (or under 13 in the United States). We do not knowingly collect personal data from children. If you believe a child has provided us data, contact privacy@contexo.ai and we will delete it.

10. Customer obligations

If you are a customer deploying our widget on your own website, you are responsible for obtaining any consents required by applicable law (including cookie/storage consent, GDPR consent for processing of visitor messages, and disclosure that the widget is powered by Contexo and Google Gemini). We provide the technical infrastructure; meaningful end-user consent is your duty as the controller of those interactions. A Data Processing Addendum is available on request.

11. Security

See our Security page for technical and organizational measures. No system is absolutely secure; if a breach affects your data we will notify you and, where required, the relevant authorities, in accordance with applicable law.

12. Changes to this Policy

We may update this Policy from time to time. The "Last updated" date above reflects the latest revision. Material changes will be communicated by email or in-product notice before they take effect.

13. Contact

Privacy enquiries: privacy@contexo.ai
Data Protection Officer (where applicable): dpo@contexo.ai
Postal contact: Contexo AI Inc., Bengaluru, Karnataka, India.