Privacy Policy

NetBoss Alchemy ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered legal intelligence platform.

By accessing or using NetBoss Alchemy, you agree to the collection and use of information in accordance with this policy. We operate under AI Alchemy Pty Ltd, a Melbourne-based AI venture, and comply with applicable data protection laws including GDPR, CCPA, and Indian data protection regulations.

• Service Delivery: To provide, maintain, and improve our AI-powered legal intelligence services, including document analysis, legal research, and contract drafting.
• AI Model Training: To train and refine our specialized AI agents (Templates, Drafting, Precedent Finder, Legal Document, and Web Search agents) while maintaining strict data anonymization protocols.
• Security & Compliance: To detect, prevent, and address security threats, fraud, and ensure compliance with legal obligations and regulatory requirements.
• Communication: To send service updates, security alerts, respond to inquiries, and provide customer support.
• Analytics & Improvement: To analyze usage patterns, optimize platform performance, and develop new features that enhance legal workflows.
• Legal Compliance: To comply with applicable laws, regulations, court orders, and respond to legal requests from authorities.

We implement enterprise-grade security measures to protect your information:

• 256-bit AES Encryption: All data is encrypted at rest using industry-standard AES-256 encryption.
• TLS/SSL Encryption: All data in transit is protected with TLS 1.3 encryption protocols.
• Access Controls: Role-based access control (RBAC) ensures only authorized personnel can access your data.
• SOC 2 Compliance: We maintain SOC 2 Type II certification, ensuring rigorous security, availability, and confidentiality standards.
• Regular Audits: We conduct regular security audits, penetration testing, and vulnerability assessments.
• Data Isolation: Your documents and data are logically isolated from other users' data, ensuring complete privacy.

We do not sell, rent, or trade your personal information. We may share your information only in the following circumstances:

• Service Providers: With trusted third-party service providers who assist in operating our platform (cloud hosting, AI model providers, analytics) under strict confidentiality agreements.
• Legal Requirements: When required by law, court order, or government regulation, or to protect our rights, property, or safety.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, with advance notice to users.
• With Your Consent: When you explicitly authorize us to share your information with third parties.

Depending on your jurisdiction, you have the following rights regarding your personal information:

• Access: Request access to your personal data and receive a copy of the information we hold about you.
• Correction: Request correction of inaccurate or incomplete information.
• Deletion: Request deletion of your personal data, subject to legal retention requirements.
• Portability: Request transfer of your data to another service provider in a machine-readable format.
• Opt-Out: Opt out of certain data processing activities, including marketing communications and non-essential analytics.
• Objection: Object to processing of your personal data for legitimate business interests.

To exercise these rights, please contact us at info@aialchemy.au. We will respond to your request within 30 days.

We retain your personal information for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce our agreements. When you delete your account, we will delete or anonymize your personal data within 90 days, except where we are required to retain it for legal, regulatory, or legitimate business purposes.

Legal documents and chat history may be retained for up to 7 years to comply with legal and regulatory requirements, unless you request earlier deletion and we are not legally obligated to retain such information.

Your information may be transferred to and processed in countries other than your country of residence. We ensure that such transfers comply with applicable data protection laws through:

• Standard Contractual Clauses (SCCs) approved by relevant data protection authorities
• Adequacy decisions recognizing equivalent data protection standards
• Other legally recognized transfer mechanisms

By using our services, you consent to the transfer of your information to these countries.

NetBoss Alchemy is designed for legal professionals and organizations. We do not knowingly collect personal information from children under the age of 18. If we become aware that we have collected information from a child under 18, we will take steps to delete such information promptly.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

• Posting the updated policy on this page with a new "Last Updated" date
• Sending an email notification to your registered email address
• Displaying a prominent notice on our platform

Your continued use of NetBoss Alchemy after such changes constitutes acceptance of the updated Privacy Policy.