Privacy Policy

UNPROMPTED Pte. Ltd. Privacy Policy

Effective Date: April 30, 2025

Welcome to UNPROMPTED Pte. Ltd. (“UNPROMPTED,” “we,” “our,” or “us”). This Privacy Policy (“Policy”) describes how we collect, use, and disclose personal information when you access and utilize our website, applications, and services (collectively, the “Services”). As a B2B service provider, this policy applies to personal information collected from our business customers and their authorized users. We do not offer services directly to consumers. Our "business customers" are companies with whom we have a direct contractual relationship. "Authorized users" are individuals authorized by our business customers to access and use our Services.

Considering GDPR's global recognition as one of the strictest data protection regulations, we've chosen to apply these requirements to all our customers worldwide. We are committed to ensuring the highest standards of data protection and adhere to the principles and rights enshrined in the General Data Protection Regulation (GDPR) as the baseline standard for privacy protection, regardless of location. Our Services are intended for business use. While we prioritize data minimization, any processing of personal data will be conducted in accordance with the General Data Protection Regulation (GDPR).

01 Information We Collect

We collect the following categories of personal information related to authorized users that is necessary for providing our Services:

  • Account Information: When your business customer creates an account with us for your use, we collect information such as your name, email address, company name, job title and profile.
  • Communication Information: When your business customer communicates with us on your behalf, or if you communicate with us directly, we collect your name, contact information, and the contents of those messages.
  • Usage Data: Information about how you use our Services, including features used and actions taken.
  • Log Data: Internet Protocol (IP) address, browser type, operating system, the date and time of your request, and how you interact with our Services.
  • Device Information: Information about the device you use to access our Services, including device type, operating system, and unique device identifiers.

02 How We Use Your Information

We use personal information for:

  • Providing, maintaining, and improving our Services.
  • Processing transactions and related information for the business customer.
  • Communicating with the business customer about the Services and support.
  • Analyzing usage patterns and enhancing user experience.
  • Protecting security and integrity.
  • Complying with legal obligations.

03 Data Processing and Third-Party Services

We use commercial Language Learning Model (LLM) providers to process certain data. We only engage with providers who guarantee that your customers' data will not be used for model training. We have implemented appropriate safeguards to ensure the protection of your information when processed by these third-party services.

04 Data Sharing and Disclosure

We may share your personal information in the following circumstances:

  • With your consent or at your direction.
  • With the business customer you are an authorized user of.
  • With our service providers and business partners who help us deliver our Services.
  • In connection with a business transfer, merger, or acquisition.
  • To comply with legal obligations, enforce our terms, or protect our rights, privacy, safety, or property.

We do not sell your personal information to third parties.

05 Data Retention and Security

We retain personal information as long as necessary to provide our Services or as required by law. We protect your personal information through encryption and limited access controls. We perform regular security audits.

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, and regular security assessments.

06 Your Rights and Choices

UNPROMPTED is committed to upholding your rights regarding your personal information to the extent required by applicable law. As we consider the General Data Protection Regulation (GDPR) as the global standard for data protection, we strive to provide all our customers and their users, regardless of location, with the rights and protections enshrined within it. Furthermore, we are committed to adhering to additional local privacy requirements as applicable. As an authorized user of a business customer, you have the following rights under GDPR, although the exercise of these rights may be subject to limitations as described below.

To exercise these rights, please direct your requests to your employer's privacy representative or data protection officer, who is responsible for verifying your identity and facilitating your request. UNPROMPTED will provide assistance to the business customer to enable them to comply with data protection requests made by their authorized users, as required by applicable law:

  • Right to Access: You have the right to request access to the personal data we hold about you.
  • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal data we have about you.
  • Right to Erasure (Right to be Forgotten): You can request the deletion of your personal data under certain circumstances.
  • Right to Restriction of Processing: You can request that we restrict the processing of your personal data under certain circumstances.
  • Right to Object to Processing: You can object to the processing of your personal data under certain circumstances, including processing for direct marketing purposes.
  • Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format and have the right to transmit that data to another controller.
  • Right to Withdraw Consent: If we process your personal data based on your consent, you have the right to withdraw that consent at any time.

Given the confidential nature of our consulting firm clients' work, in limited circumstances, access to or portability of certain data may be restricted to protect client confidentiality and the consulting firm's legal and ethical obligations. Any such restrictions will be assessed on a case-by-case basis, and we will provide an explanation of the reasons for the restriction to the individual making the request, unless prohibited by law or ethical obligation. UNPROMPTED will assist business customers in fulfilling these requests.

Data provided as input to the platform, including files and content uploaded, and output generated by the platform, is not generally considered personal information subject to individual access rights under this section, but rather falls under the business customer's responsibility to manage in accordance with their own privacy policies and legal obligations. The business customer has responsibility over informing individuals of their specific policies, and this Privacy Policy solely covers UNPROMPTED's role as a data processor.

07 Responsibilities of Our Business Customers

If you are a business customer of UNPROMPTED, you are responsible for:

  • Informing your authorized users about this Privacy Policy and any other relevant privacy notices.
  • Obtaining any necessary consents from your authorized users for the collection and processing of their personal information in connection with their use of our Services (where required by applicable law).
  • Responding to and facilitating your authorized users' requests to exercise their rights under applicable data protection laws.
  • Acting as the primary point of contact for authorized users.

08 Global Privacy Standards and GDPR Compliance

UNPROMPTED adheres to the principles and rights enshrined in the General Data Protection Regulation (GDPR) as the baseline standard for privacy protection.

We process personal data lawfully, fairly, and transparently, collecting data only for specified, explicit, and legitimate purposes.

We rely on the following legal bases for processing:

  • Contractual Necessity (to provide Services to the business customer).
  • Legitimate Interests (improving Services, security, fraud protection).
  • Consent (where obtained by the business customer).
  • Legal Obligation.

We use Standard Contractual Clauses or other safeguards for data transfers outside of the European Economic Area (EEA) to protect data.

09 Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new Privacy Policy on this page and updating the "Effective Date" at the top.

10 Contact Us

For questions about this Privacy Policy or our practices, authorized users should contact their business customer's privacy representative. Business customers can contact us at dpo@unprompted.app.

Enterprise-grade AI for Consulting Firms

Links
Contact Sales
Product
Consulting Use CasesProduct Overview
Resources
Test your AI ReadinessWhy UNPROMTPED?Case StudiesProduct Details & FAQAbout Us
©2025 UNPROMPTED Pte. Ltd. All right reserved
Terms & Conditions
Privacy Policy