Arahi AI Logo

Privacy Policy

Learn how Arahi AI collects, uses, and protects your personal information on our Agentic AI Platform.

Last Updated: February 6, 2026

Privacy Policy for Arahi AI LLC

Last Updated: February 06, 2026

1. Introduction and Scope

This Privacy Policy explains how Arahi AI LLC ("Arahi AI," "we," "our," or "us") collects, uses, shares, and protects personal information when you use our websites, products, and services, including our Agentic AI Platform (collectively, the "Services").

By using the Services, you agree to this Privacy Policy. If you do not agree, please discontinue use of the Services.

Arahi AI LLC is incorporated in the United States and operates globally from Briarwood, Queens, NY 11435, USA.

Contact Information:

This Privacy Policy applies to our online and offline personal information processing activities including visitors to our website where this Policy is posted, individuals who create accounts with us, customers who purchase our Services, event participants, newsletter subscribers, and anyone who communicates or interacts with us.

Additional Notices: Depending on your interaction with us, we may provide supplemental privacy notices. This Policy does not apply to job applicants, employees, or contractors in their employment context.

Business Customers: When businesses purchase our Services, we may process employee or end-user personal information at their direction as a service provider. In such cases, the Customer's privacy policies apply to that processing.

2. About Arahi AI

Arahi AI is an Agentic AI Platform that enables businesses and professionals to build, deploy, and manage AI Agents without code. Our platform automates workflows, processes business data, and integrates securely with over 1,000 apps.

Users may connect their own AI provider accounts (e.g., OpenAI, Anthropic, Google Gemini, Amazon Bedrock, Perplexity, xAI) or use Arahi-provided models under their subscription.

3. Personal Information We Collect

We collect personal information directly from you, automatically through your use of our Services, and from third-party sources. To the extent permitted by applicable law, we may combine personal information from these sources.

3.1 Information You Provide Directly

Account and Profile Information: Name, email address, username, hashed password, company name, job title, preferences, and any other information you provide when creating or updating your account.

Billing and Payment Information: Payment card details, billing address, and transaction history. Payment processing is managed securely by Stripe; we do not store complete card numbers.

Communications and Support: Messages, feedback, inquiries, chat interactions, support tickets, and correspondence with our team.

Professional Information: Role, organization, business context, and other professional details.

Social Login Data: If you register via X (Twitter), Google, or other social platforms, we may receive profile information based on your privacy settings with those platforms.

Event and Registration Data: Information related to webinars, training sessions, events, or conferences you attend, including registration details and participation records.

Survey and Feedback Responses: Information you provide in surveys, questionnaires, or research activities.

Marketing Preferences: Communication preferences and subscription choices.

AI Inputs and Content: Prompts, instructions, uploaded files, and data you provide to our AI features. This may include business documents, customer data, or other content you choose to process through our platform.

3.2 Information Collected Automatically

Device and Browsing Information: IP address, browser type and version, device type and ID, operating system, language settings, domain name, page views, access times, date/time stamps, Internet service provider, referring and exit URLs, and clickstream data.

Usage and Activity Information: Features used, links clicked, searches performed, time spent on pages, interactions within the Services, workflow creation and execution data, AI agent performance metrics, and similar usage information.

Location Information: General location derived from IP address or device settings.

Cookies and Tracking Technologies: We use cookies, pixel tags, local storage objects, and similar technologies. See Section 8 for details.

3.3 Information from Third Parties

Integration Partners: Information from third-party platforms you connect through our Services (e.g., CRM systems, business tools, data sources accessed via integrations).

Analytics and Marketing Providers: Data from analytics platforms, marketing partners, data brokers, and public databases to enhance our customer information and improve targeting.

Social Media Platforms: Publicly available information from social networks and professional platforms.

Referral Sources: Information about you from other users who refer you to our Services or collaborate with you.

Lead and Prospect Data: Business contact information from legitimate third-party sources for marketing purposes.

3.4 Sensitive Personal Information

We do not intentionally collect sensitive personal information (such as racial or ethnic origin, political opinions, religious beliefs, health data, biometric data, or sexual orientation) unless you voluntarily provide it within AI prompts or uploaded files.

If such data is provided:

  • We process it only with your explicit consent or as strictly necessary for the specific AI functionality you requested
  • Processing is limited to that specific purpose
  • Data is deleted after processing unless you instruct otherwise
  • We strongly encourage you to anonymize sensitive data before uploading

4. How We Use Your Personal Information

We collect, use, and process personal information for the following purposes:

Service Delivery and Support: To provide, maintain, and improve our Services; manage your account; deliver customer support; respond to inquiries; fulfill requests; process workflows; execute AI agents; and operate our platform.

Payment Processing: To process transactions, manage subscriptions, handle billing, and maintain payment records.

Communication: To send service-related notifications, respond to questions, provide technical updates, and communicate about your account or Services.

Personalization and Customization: To tailor your experience, recommend features, customize content, and provide location-based services where appropriate.

Marketing and Promotion: To send newsletters, promotional materials, product updates, and information about new features or offerings (with opt-out options).

Analytics and Improvement: To understand how users interact with our Services; evaluate and improve features; develop new functionality; conduct research; perform quality control; and train our teams.

AI Development: To improve our AI features, optimize agent performance, and enhance platform capabilities. We do not use your personal information to train third-party AI models without your consent.

Security and Fraud Prevention: To protect our Services, detect and prevent fraud, investigate unauthorized access, respond to security incidents, and protect our rights and those of our users.

Legal Compliance: To comply with applicable laws, regulations, legal processes, and governmental requests; respond to subpoenas or court orders; and fulfill audit and reporting obligations.

Business Operations: To conduct internal audits, maintain business records, assess business opportunities, manage vendor relationships, and support general operational needs.

Business Transactions: To evaluate, negotiate, and complete mergers, acquisitions, financing, restructuring, or asset sales.

We may also use your information for other purposes with your consent or as permitted by law.

5. Legal Bases for Processing (GDPR/UK GDPR)

For users in the EU, UK, or Switzerland, we process personal information based on the following legal grounds:

Contractual Necessity: To perform our contract with you and deliver the Services you requested.

Legitimate Interests: For business operations, security, analytics, service improvement, fraud prevention, and marketing to existing customers, where our interests are balanced against your rights.

Consent: For optional features, marketing to prospects, certain integrations, or where required by law. You may withdraw consent at any time.

Legal Obligations: To comply with applicable laws, regulations, and legal processes.

Vital Interests: To protect health, safety, or fundamental rights in exceptional circumstances.

For specific processing activities and their legal bases, see Section 17 (EU and UK Provisions).

6. How We Share Personal Information

We share personal information only when necessary and with appropriate safeguards:

6.1 Service Providers and Partners

  • Technology and Infrastructure Providers: Hosting services, cloud storage providers (e.g., Supabase), database management, and IT support vendors.
  • Analytics and Monitoring: Performance monitoring tools and system analytics.
  • Communication Services: Email delivery platforms (e.g., Loops.so), customer support tools, and messaging services.
  • Payment Processors: Stripe and other payment service providers for transaction processing.
  • Marketing and Advertising Partners: Marketing automation platforms, advertising networks, and campaign management services.
  • AI Service Providers: When you use connected AI accounts, your data is processed according to those providers' policies (e.g., OpenAI, Anthropic, Google Cloud AI, AWS AI, Perplexity, DeepSeek, xAI).
  • Integration Partners: Third-party platforms you connect through our Services (e.g., via Pipedream or direct integrations).

All service providers are bound by data processing agreements and contractual obligations to protect your information.

Sub-Processor List: A current list of our sub-processors, including their location and purpose, is available upon request by contacting support@arahi.ai. We will notify customers of any material changes to our sub-processor list at least 14 days before the new sub-processor begins processing personal data, unless a shorter notice period is required for operational reasons. Enterprise customers may have contractual rights to object to new sub-processors as specified in their agreements.

6.2 Business Transfers

In connection with mergers, acquisitions, financing, reorganizations, bankruptcies, or asset sales, we may disclose or transfer personal information to potential or actual buyers, investors, lenders, auditors, and advisors. Personal information will be subject to confidentiality obligations prior to completion of such transactions.

6.3 Legal and Safety Reasons

We may disclose personal information when required or permitted by law:

  • To comply with legal obligations, court orders, subpoenas, or regulatory requests
  • To law enforcement or government authorities in response to lawful requests
  • To protect our rights, property, safety, or that of our users or the public
  • To prevent, detect, or investigate fraud, security incidents, or illegal activities
  • To enforce our Terms and Conditions or other agreements
  • In connection with legal proceedings, disputes, or claims

6.4 With Your Consent

We may share personal information for purposes you specifically authorize or consent to.

6.5 Aggregated and Deidentified Data

We may use and share aggregated, deidentified, or anonymized data that does not identify you personally for research, analytics, marketing, and other business purposes. We maintain and use such data in deidentified form and do not attempt to reidentify it, except to verify the adequacy of our deidentification processes as required by law.

6.6 International Transfers

We may transfer personal information to the United States and other countries where we or our service providers operate. For users in the EEA, UK, or Switzerland, such transfers are protected by Standard Contractual Clauses (SCCs) or other appropriate safeguards under GDPR and UK GDPR.

7. Use of AI and Data Processing

7.1 AI Features

Our Services include AI-powered features using machine learning and large language models (LLMs). These features may process:

  • User inputs, prompts, and instructions
  • Uploaded files and documents
  • Connected data sources
  • Workflow configurations
  • Agent execution logs

7.2 AI Model Selection

You control which AI models process your data:

  • Arahi-Provided Models: Included in your subscription; processed according to this Privacy Policy
  • Connected Third-Party Models: Your own API accounts with providers like OpenAI, Anthropic, Google, AWS, etc.; processed according to their privacy policies

You can change AI model preferences or disconnect third-party accounts anytime in your dashboard.

7.3 AI Training and Data Use Commitments

We make the following commitments regarding your data and AI:

(a) No Model Training: We do not use your personal information, prompts, inputs, outputs, uploaded content, or any User Content to train, fine-tune, or improve any artificial intelligence or machine learning models, whether owned by Arahi AI or third parties.

(b) Third-Party AI Providers: When you use third-party AI providers through our platform (such as OpenAI, Anthropic, Google, or others), we have established data processing agreements that prohibit the use of your data for model training. Your data is processed solely to provide the requested AI functionality and is subject to the applicable provider's enterprise data handling policies.

(c) Anonymized Data Usage: We may use anonymized or aggregated data derived from usage patterns solely to:

  • Analyze platform performance and reliability
  • Improve user interface and user experience
  • Generate aggregate statistics and insights
  • Enhance platform features and functionality

This expressly excludes any use of anonymized data for AI model training.

(d) Anonymization Standards: When we anonymize data, we apply industry-standard techniques including:

  • Data Aggregation: Combining data from multiple users so individual users cannot be identified
  • K-Anonymity: Ensuring each record is indistinguishable from at least k-1 other records
  • Statistical Noise Injection: Adding random variations to prevent re-identification
  • Identifier Removal: Permanently removing or replacing direct identifiers (names, emails, account IDs)

We maintain anonymized data in a form that:

  • Cannot reasonably be used to identify any individual user
  • Cannot be reversed or re-identified through any means available to us
  • Does not constitute "personal data" or "personal information" under GDPR, CCPA, or other applicable privacy laws

7.4 Data Control

You can:

  • Review and delete AI inputs and outputs
  • Export your data
  • Disconnect AI integrations
  • Control which data sources AI agents can access

7.5 Automated Decision-Making

Arahi AI Platform Decisions: Arahi AI does not use solely automated decision-making (including profiling) that produces legal effects or similarly significant effects on you as a user of our Services. Decisions regarding your account, subscription, or access to the Services involve human review where they could significantly affect you.

Your Use of AI Agents: When you create and deploy AI agents through our platform, you control what decisions those agents make. If you use AI agents to make decisions that have legal or significant effects on individuals (such as employment screening, credit decisions, service eligibility, or similar determinations), you are responsible for:

(a) Ensuring meaningful human oversight of such decisions;

(b) Providing affected individuals with information about the automated processing;

(c) Implementing safeguards to prevent errors, bias, and discrimination;

(d) Offering affected individuals the ability to contest decisions and request human review; and

(e) Complying with all applicable laws regarding automated decision-making, including GDPR Article 22, the EU AI Act, and similar regulations.

Your Rights: Under GDPR and similar laws, you have the right to:

  • Not be subject to decisions based solely on automated processing that produce legal or significant effects on you
  • Obtain human intervention in automated decisions
  • Express your point of view and contest automated decisions
  • Receive an explanation of decisions made about you

To exercise these rights regarding any decisions made by Arahi AI about you, contact us at support@arahi.ai.

8. Cookies and Tracking Technologies

We and our third-party service providers use cookies, pixels, local storage, and similar technologies to enhance functionality, analyze usage, and provide personalized experiences.

8.1 Types of Technologies

  • Cookies: Small text files stored on your device that help us recognize you, maintain session state, remember preferences, and analyze usage patterns.
  • Pixel Tags (Web Beacons): Tiny graphics embedded in web pages and emails to track page views, email opens, and user actions.
  • Local Storage Objects: Browser-based storage mechanisms that persist data between sessions for faster loading and enhanced functionality.
  • Log Files: Records of system activity, errors, and usage patterns.

8.2 Categories of Cookies We Use

| Category | Purpose | Examples | Duration | |----------|---------|----------|----------| | Strictly Necessary | Essential for the website and Services to function. Cannot be disabled. | Session management, authentication, security tokens, load balancing | Session to 1 year | | Functional | Remember your preferences and settings to enhance your experience. | Language preferences, display settings, previously viewed content | 1 year | | Analytics | Help us understand how visitors interact with our Services to improve performance. | Page views, feature usage, error tracking, performance metrics | Up to 2 years | | Marketing | Used to deliver relevant advertisements and measure campaign effectiveness. | Ad targeting, conversion tracking, remarketing | Up to 2 years |

8.3 Third-Party Cookies and Services

We may use the following categories of third-party services that set cookies:

  • Analytics Providers: To measure and analyze how users interact with our Services
  • Advertising Partners: To deliver targeted advertisements and measure campaign performance
  • Social Media Platforms: To enable social sharing features and track referrals
  • Payment Processors: To facilitate secure payment transactions
  • Customer Support Tools: To provide live chat and support functionality

Each third-party service operates under its own privacy policy. We encourage you to review their policies.

8.4 Cookie Consent

For Users in the EU, UK, and Other Jurisdictions Requiring Consent:

When you first visit our website, you will be presented with a cookie consent banner that allows you to:

  • Accept all cookies
  • Reject non-essential cookies
  • Customize your preferences by cookie category

You can change your cookie preferences at any time by:

  • Clicking the "Cookie Settings" link in our website footer
  • Adjusting your browser settings
  • Contacting us at support@arahi.ai

Strictly Necessary cookies do not require consent and cannot be disabled as they are essential for the Services to function.

8.5 Managing Your Preferences

Browser Controls: Most browsers allow you to:

  • View what cookies are stored on your device
  • Block all cookies or only third-party cookies
  • Delete cookies when you close your browser
  • Receive alerts when cookies are being set

Note: Disabling cookies may limit functionality of the Services. For example, you may not be able to log in or access certain features.

Opt-Out Links:

8.6 Do Not Track Signals

Some browsers have a "Do Not Track" (DNT) feature that signals to websites that you do not want to be tracked. Our Services currently do not respond to DNT signals. However, you can use the cookie controls described above to manage tracking preferences.

9. Your Privacy Rights and Choices

9.1 Marketing Communications

You may opt out of promotional emails by:

  • Clicking "unsubscribe" in any marketing email
  • Adjusting preferences in your account settings
  • Contacting support@arahi.ai

You will continue to receive transactional and service-related communications.

9.2 Data Subject Rights

Depending on your location, you may have rights to:

  • Access: Request a copy of personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information, subject to legal retention requirements
  • Portability: Request transfer of your data in a structured, machine-readable format
  • Restriction: Request limitation of processing in certain circumstances
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent where processing is based on consent

9.3 Exercising Your Rights

To exercise these rights:

  • Email: support@arahi.ai
  • Submit a request through your account settings
  • For EU/UK users: support@arahi.ai

We will respond within 30-45 days after verifying your identity. You have the right to lodge a complaint with a supervisory authority if you believe we have violated your privacy rights.

10. Data Retention

We retain personal information only as long as necessary for the purposes described in this Policy or as required by law.

| Data Type | Retention Period | Purpose | |-----------|-----------------|---------| | Account Information | Until account deletion + 90 days | Service provision, legal compliance | | Billing Records | 7 years | Tax, audit, regulatory requirements | | Usage Logs | 18 months | Analytics, security, troubleshooting | | Support Communications | Until resolution + 2 years | Customer service, legal reference | | AI Prompts and Outputs | 90 days after workflow execution | Service delivery, debugging |

After retention periods expire, we securely delete or anonymize personal information. You may request earlier deletion subject to legal and operational requirements.

11. Security Measures

We implement comprehensive technical and organizational security measures to protect personal information including encryption in transit and at rest, secure authentication and access controls, regular security assessments, intrusion detection and monitoring systems, and employee training on data protection.

If we experience a data breach affecting personal information, we will investigate and contain the incident promptly, notify affected users within 72 hours as required by GDPR, and provide details of the incident, potential impact, and recommended actions.

While we use reasonable security measures, no system is completely secure. You can help protect your account by using strong, unique passwords and enabling two-factor authentication where available.

12. Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from minors.

If you are a parent or guardian and believe we have collected information about your child, please contact us at support@arahi.ai. We will promptly delete such information.

13. U.S. State-Specific Privacy Rights

Residents of California, Colorado, Connecticut, Virginia, Utah, and other U.S. states with comprehensive privacy laws have additional rights.

California residents have rights to know what personal information we collect, access specific pieces of personal information, delete personal information, correct inaccurate personal information, opt-out of sale or sharing of personal information, limit use of sensitive personal information, and non-discrimination for exercising privacy rights.

We do not sell or share personal information for monetary consideration.

Submit requests via email at support@arahi.ai, Privacy Rights Request form on our website, or account settings. We will verify your identity before processing requests and respond within 45 days.

14. International Provisions

We comply with applicable privacy laws including the General Data Protection Regulation (GDPR), UK GDPR, and Australian Privacy Principles (APPs) under the Privacy Act 1988.

For EU/UK users, you have rights to access, rectification, erasure, restriction, data portability, objection, withdraw consent, and lodge complaints with supervisory authorities. Contact support@arahi.ai to exercise these rights.

For transfers from the EEA and UK, we ensure appropriate safeguards through Standard Contractual Clauses (SCCs) approved by the European Commission and other legally recognized transfer mechanisms.

15. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, Services, legal requirements, or for other operational reasons.

Material changes will be communicated via email to your registered address, prominent notice on our website or within the Services, and the "Last Updated" date at the top of this Policy.

We encourage you to review this Policy periodically. Continued use of our Services after changes constitutes acceptance of the updated Policy.

16. Contact Information

Arahi AI LLC

Address: Briarwood, Queens, NY 11435, USA

Email:

Response Time: We respond to privacy inquiries within 30-45 days after identity verification.

This Privacy Policy is effective as of the Last Updated date above and applies to all users of Arahi AI Services.