Effective Date: April 30, 2025
Welcome to UNPROMPTED Pte. Ltd. (“UNPROMPTED,” “we,” “our,” or “us”). This Privacy Policy (“Policy”) describes how we collect, use, and disclose personal information when you access and utilize our website, applications, and services (collectively, the “Services”). As a B2B service provider, this policy applies to personal information collected from our business customers and their authorized users. We do not offer services directly to consumers. Our "business customers" are companies with whom we have a direct contractual relationship. "Authorized users" are individuals authorized by our business customers to access and use our Services.
Considering GDPR's global recognition as one of the strictest data protection regulations, we've chosen to apply these requirements to all our customers worldwide. We are committed to ensuring the highest standards of data protection and adhere to the principles and rights enshrined in the General Data Protection Regulation (GDPR) as the baseline standard for privacy protection, regardless of location. Our Services are intended for business use. While we prioritize data minimization, any processing of personal data will be conducted in accordance with the General Data Protection Regulation (GDPR).
We collect the following categories of personal information related to authorized users that is necessary for providing our Services:
We use personal information for:
We use commercial Language Learning Model (LLM) providers to process certain data. We only engage with providers who guarantee that your customers' data will not be used for model training. We have implemented appropriate safeguards to ensure the protection of your information when processed by these third-party services.
We may share your personal information in the following circumstances:
We do not sell your personal information to third parties.
We retain personal information as long as necessary to provide our Services or as required by law. We protect your personal information through encryption and limited access controls. We perform regular security audits.
We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, and regular security assessments.
UNPROMPTED is committed to upholding your rights regarding your personal information to the extent required by applicable law. As we consider the General Data Protection Regulation (GDPR) as the global standard for data protection, we strive to provide all our customers and their users, regardless of location, with the rights and protections enshrined within it. Furthermore, we are committed to adhering to additional local privacy requirements as applicable. As an authorized user of a business customer, you have the following rights under GDPR, although the exercise of these rights may be subject to limitations as described below.
To exercise these rights, please direct your requests to your employer's privacy representative or data protection officer, who is responsible for verifying your identity and facilitating your request. UNPROMPTED will provide assistance to the business customer to enable them to comply with data protection requests made by their authorized users, as required by applicable law:
Given the confidential nature of our consulting firm clients' work, in limited circumstances, access to or portability of certain data may be restricted to protect client confidentiality and the consulting firm's legal and ethical obligations. Any such restrictions will be assessed on a case-by-case basis, and we will provide an explanation of the reasons for the restriction to the individual making the request, unless prohibited by law or ethical obligation. UNPROMPTED will assist business customers in fulfilling these requests.
Data provided as input to the platform, including files and content uploaded, and output generated by the platform, is not generally considered personal information subject to individual access rights under this section, but rather falls under the business customer's responsibility to manage in accordance with their own privacy policies and legal obligations. The business customer has responsibility over informing individuals of their specific policies, and this Privacy Policy solely covers UNPROMPTED's role as a data processor.
If you are a business customer of UNPROMPTED, you are responsible for:
UNPROMPTED adheres to the principles and rights enshrined in the General Data Protection Regulation (GDPR) as the baseline standard for privacy protection.
We process personal data lawfully, fairly, and transparently, collecting data only for specified, explicit, and legitimate purposes.
We rely on the following legal bases for processing:
We use Standard Contractual Clauses or other safeguards for data transfers outside of the European Economic Area (EEA) to protect data.
We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new Privacy Policy on this page and updating the "Effective Date" at the top.
For questions about this Privacy Policy or our practices, authorized users should contact their business customer's privacy representative. Business customers can contact us at dpo@unprompted.app.
Enterprise-grade AI for Consulting Firms