Privacy policy

This policy describes how Talk2data ("we", "us") collects, uses, and shares information when you use our websites, applications, and APIs (the "Services"). If you self-host Talk2data, your organization is the data controller; this document still reflects our product defaults and recommended practices.

Information we process

• Account data: name, email, authentication identifiers, and workspace memberships.
• Workspace content: documents you upload, extracted text and embeddings stored in your database, chat messages, dashboard definitions, and configuration you save (including data source and MCP settings metadata).
• Technical data: logs, usage events, and security signals needed to operate and protect the Services.

How we use information

We use the above to provide the Services, authenticate users, isolate tenants, generate AI responses you request, send transactional emails (e.g. invites, magic links), improve reliability, and comply with law. We do not sell your personal information.

Workspace isolation

Product design enforces workspace-scoped access: retrieval, tool calls, and administrative actions are tied to a workspace identifier and role-based permissions. Cross-workspace data access is not supported by the application model.

Subprocessors & AI providers

When you connect third-party models, email providers (e.g. Resend), or cloud storage (e.g. S3), those vendors process data according to their terms. You control which keys and endpoints are used per workspace.

Retention & deletion

Retention depends on your deployment. Administrators can remove documents, revoke shares, and archive or delete workspaces subject to your internal policies and database backups.

Contact

Questions about privacy: see our contact page.

This page is a general template and not legal advice. Have counsel review before relying on it in production.