← Back to Home

Privacy Policy

Last Updated: December 1, 2025

Last Updated: December 1, 2025

This Privacy Policy governs the manner in which Tahc ("we", "us", or "our") collects, uses, maintains and discloses information collected from users (each, a "User" or "you") of the https://tahc.ai website and related services ("Site", "Service"). This privacy policy applies to the Site and all products and services offered by Tahc.

Personal Identification Information

We may collect personal identification information from Users in a variety of ways, including, but not limited to, when Users visit our site, register on the site, place an order, subscribe to the newsletter, respond to a survey, fill out a form, and in connection with other activities, services, features or resources we make available on our Site. Users may be asked for, as appropriate:

  • Name
  • Email address
  • Organization name
  • Phone number
  • Payment information
  • Website URL for knowledge base creation

    • Users may, however, visit our Site anonymously. We will collect personal identification information from Users only if they voluntarily submit such information to us. Users can always refuse to supply personal identification information, except that it may prevent them from engaging in certain Site related activities.

    Children's Information

    Users under the age of 18 require consent of a parent or guardian to use this service. We do not knowingly collect information from children under the age of 13 (or 16 in the European Economic Area). If we learn that we have collected information from a child under the applicable age, we will delete that information as quickly as possible. If you believe that we might have any information from a child under the applicable age, please contact us at [email protected]

    Non-Personal Identification Information

    We may collect non-personal identification information about Users whenever they interact with our Site. Non-personal identification information may include:

  • Browser name and type
  • Computer or mobile device information
  • IP address (anonymized for EU users)
  • Operating system
  • Internet service provider
  • Time and date of visit
  • Pages visited and actions taken
  • Conversation metrics and analytics
  • AI confidence scores and routing decisions

    • Cookies and Tracking Technologies

    What Are Cookies

    Cookies are small text files that are placed on your device when you visit our website. They help us provide you with a better experience and allow certain features to function properly.

    Types of Cookies We Use

    Strictly Necessary Cookies:

    These cookies are essential for the website to function properly. They enable core functionality such as security, network management, and accessibility. You cannot opt out of these cookies.

    Analytics Cookies:

    With your consent, we use analytics cookies to understand how visitors interact with our website. This helps us improve our services. These cookies collect information anonymously.

    Functional Cookies:

    These cookies enable enhanced functionality and personalization, such as remembering your language preference. With your consent, these cookies improve your experience.

    Marketing Cookies:

    With your consent, these cookies may be used to deliver relevant advertisements and track the effectiveness of our marketing campaigns.

    Managing Cookie Preferences

    When you first visit our Site, you will be presented with a cookie consent banner allowing you to accept or reject non-essential cookies. You can change your cookie preferences at any time by clicking the "Cookie Settings" link in our website footer.

    You can also control cookies through your browser settings. Please note that disabling certain cookies may affect the functionality of our Site.

    Do Not Track

    We honor Do Not Track (DNT) signals sent by your browser. When DNT is enabled, we will not use non-essential tracking technologies.

    Legal Basis for Processing (GDPR)

    For users in the European Economic Area (EEA), United Kingdom, and Switzerland, we process your personal data based on the following legal grounds:

    Consent:

  • Newsletter subscriptions
  • Marketing communications
  • Non-essential cookies and analytics
  • Optional data processing activities

    • Contract Performance:

  • Providing our services to registered users
  • Processing payments
  • Customer support

    • Legitimate Interests:

  • Improving our services and user experience
  • Fraud prevention and security
  • Business operations and administration

    • Legal Obligations:

  • Tax and accounting requirements
  • Compliance with court orders
  • Regulatory requirements

    • You may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

    How We Use Collected Information

    Tahc may collect and use Users' personal information for the following purposes:

    To Provide and Improve Our Service

  • Processing customer conversations and support requests
  • Generating AI-powered responses to customer inquiries
  • Creating and maintaining knowledge bases from website content
  • Routing conversations between AI and human agents
  • Providing analytics and insights

    • To Process Payments

    We may use the information Users provide about themselves when placing an order only to provide service to that order. We do not share this information with outside parties except to the extent necessary to provide the service.

    To Send Periodic Emails

    We may use the email address to send User information and updates pertaining to their account or order. It may also be used to respond to inquiries, questions, and/or other requests. If User decides to opt-in to our mailing list, they will receive emails that may include company news, updates, related product or service information, etc. If at any time the User would like to unsubscribe from receiving future emails, they may do so by clicking the unsubscribe link in any email or contacting us via our Site.

    To Improve Customer Service

    Information provided helps us respond to customer service requests and support needs more efficiently.

    To Personalize User Experience

    We may use information in the aggregate to understand how our Users as a group use the services and resources provided on our Site.

    AI Training and Improvement

    We may use aggregated and anonymized conversation data to improve AI accuracy and response quality. Individual conversations are not used for AI training without anonymization. You may opt out of this processing by contacting us at [email protected].

    How We Protect Your Information

    We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your personal information, username, password, transaction information and data stored on our Site.

    Security measures include:

  • Encryption in transit (TLS/SSL)
  • Encryption at rest for sensitive data
  • Encrypted password storage (bcrypt)
  • Access controls and authentication
  • Regular security audits and updates
  • API rate limiting and abuse prevention
  • Employee training on data protection

    • AI Processing and Third-Party Services

    OpenAI Integration

    Tahc uses OpenAI's API to generate AI-powered responses. When you use our AI features, messages may be sent to OpenAI for processing. OpenAI's use of this data is governed by their privacy policy and data processing agreement. As of our knowledge:

  • OpenAI does not use API data to train their models
  • Data is retained by OpenAI for 30 days for abuse monitoring, then deleted
  • Enterprise API options include zero data retention

    • Web Crawling

    When you provide a website URL for knowledge base creation, we crawl publicly accessible pages from that website. We respect robots.txt files and standard web crawling practices. You represent that you have the right to crawl and use content from any URLs you provide.

    Sharing Your Personal Information

    We do not sell, trade, or rent Users' personal identification information to others. We may share generic aggregated demographic information not linked to any personal identification information regarding visitors and users with our business partners, trusted affiliates and advertisers for the purposes outlined above.

    We may use third party service providers to help us operate our business and the Site or administer activities on our behalf, such as:

  • Cloud hosting providers (DigitalOcean - US based)
  • Database services (MySQL)
  • Payment processors
  • Email service providers
  • Analytics services

    • We may share your information with these third parties for those limited purposes. All third-party processors are required to maintain appropriate security measures and process data only as instructed by us.

    We may also disclose your information:

  • To comply with legal obligations or court orders
  • To enforce our Terms of Service
  • To protect our rights, property, or safety
  • In connection with a merger, acquisition, or sale of assets (with prior notice)

    • International Data Transfers

    Your information may be transferred to, stored, and processed in countries other than your own, including the United States.

    For transfers from the EEA, UK, or Switzerland to countries not deemed adequate by the European Commission, we implement appropriate safeguards including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Data Processing Agreements with all processors
  • Technical and organizational security measures

    • By using our Service, you consent to these transfers. You may request a copy of the safeguards we use by contacting [email protected].

    Data Retention

  • **Active Accounts:** We retain your data while your account is active and you continue to use our services
  • **Closed Accounts:** Data is retained for 30 days after account closure for recovery purposes, then permanently deleted
  • **Legal Requirements:** Some data may be retained longer if required by law
  • **Backups:** Backup copies are retained for 90 days for disaster recovery purposes
  • **Newsletter Subscribers:** Email addresses are retained until you unsubscribe
  • **Early Access Requests:** Retained for up to 24 months or until the product launches

    • Your Data Rights

    Rights for All Users

    Regardless of your location, you have the following rights regarding your personal data:

  • **Access:** Request a copy of your personal data
  • **Correction:** Request correction of inaccurate or incomplete data
  • **Deletion:** Request deletion of your data (subject to legal retention requirements)
  • **Objection:** Object to certain processing of your data

    • Additional Rights for EEA, UK, and Swiss Users (GDPR)

    If you are located in the European Economic Area, United Kingdom, or Switzerland, you have additional rights:

  • **Portability:** Receive your data in a structured, commonly used, machine-readable format (CSV or JSON)
  • **Restriction:** Request restriction of processing in certain circumstances
  • **Withdrawal of Consent:** Withdraw consent at any time for consent-based processing
  • **Automated Decision-Making:** Right not to be subject to decisions based solely on automated processing, including profiling
  • **Lodge a Complaint:** Right to lodge a complaint with your local data protection supervisory authority

    • How to Exercise Your Rights

    To exercise these rights, please contact us at [email protected]. We will respond to your request within 30 days (or within the timeframe required by applicable law).

    To protect your privacy, we may need to verify your identity before fulfilling your request. We will not discriminate against you for exercising your rights.

    Data export requests are provided free of charge. For repetitive or manifestly unfounded requests, we may charge a reasonable fee or refuse the request.

    California Privacy Rights (CCPA/CPRA)

    California residents have additional rights under the California Consumer Privacy Act and California Privacy Rights Act:

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information held by businesses (with certain exceptions)
  • Right to opt-out of sale or sharing of personal information (we do not sell personal data)
  • Right to correct inaccurate personal information
  • Right to limit use and disclosure of sensitive personal information
  • Right to non-discrimination for exercising privacy rights

    • Categories of Personal Information Collected:

  • Identifiers (name, email, IP address)
  • Commercial information (purchase history)
  • Internet activity (browsing history, interactions with our Site)
  • Professional information (company name)

    • We Do Not Sell Personal Information.

    To exercise these rights, contact us at [email protected] or call [Your Phone Number].

    GDPR Data Controller Information

    For users in the European Economic Area, United Kingdom, and Switzerland:

    Data Controller:

    Tahc

    Email: [email protected]

    Address: [Your Business Address]

    Data Protection Officer:

    For data protection inquiries, contact our Data Protection Officer at: [email protected]

    Supervisory Authority:

    You have the right to lodge a complaint with your local data protection supervisory authority. A list of EU supervisory authorities is available at: https://edpb.europa.eu/about-edpb/board/members_en

    Changes to This Privacy Policy

    Tahc reserves the right to update or change this Privacy Policy at any time. When we do, we will revise the updated date at the top of this page. We encourage Users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. You acknowledge and agree that it is your responsibility to review this privacy policy periodically and become aware of modifications.

    For material changes, we will notify you via:

  • Email to the address associated with your account
  • Prominent notice on our Site
  • In-app notification
  • Cookie consent banner update for cookie-related changes

    • Material changes will be communicated at least 30 days before they take effect, where required by law.

    Your Acceptance of These Terms

    By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes.

    Contacting Us

    If you have any questions about this Privacy Policy, the practices of this site, or your dealings with this site, please contact us at:

    Tahc

    Email: [email protected]

    Support: [email protected]

    Address: [Your Business Address]

    Phone: [Your Phone Number]

    For copyright matters:

    Email: [email protected]

    For data protection inquiries (GDPR):

    Email: [email protected]