1. Information We Collect

When you use RecuroAI, we collect the following business information to provide our subscription audit services:

• Company Information: Company name, employee count for accurate plan recommendations
• Subscription Data: Tool names, user counts, and pricing information from your uploaded files or manual input
• Contact Information: Email address for communication and account management
• Usage Data: Audit requests, file uploads, and platform interactions for service improvement
• Technical Data: IP address, browser type, and device information for security and optimization

Important: We never collect or store passwords, login credentials, or access tokens for your third-party services.

2. How We Use Your Information

We use your information exclusively to provide our subscription audit services:

• AI-Powered Analysis: Your subscription data is securely processed by OpenAI's GPT-4 via our backend servers for analysis and recommendations
• Service Delivery: Generate audit reports, savings recommendations, and cancellation guidance
• Platform Improvement: Analyze usage patterns to enhance our AI models and user experience
• Communication: Send audit results, platform updates, and customer support
• Security: Monitor for abuse, prevent unauthorized access, and maintain platform integrity
• Legal Compliance: Meet our obligations under applicable laws and regulations

AI Processing: We use OpenAI's GPT-4 securely through our backend infrastructure. Your data is never directly exposed to third-party AI services and is only used for internal analysis purposes.

3. Data Security

We implement industry-standard security measures to protect your data:

• All data transmission is encrypted using HTTPS/TLS
• Uploaded files are processed securely and not stored permanently
• Access to your data is restricted to authorized personnel only
• We use rate limiting and monitoring to prevent unauthorized access
• Database connections are encrypted and secured

4. Data Sharing

We never sell, rent, or share your business data with third parties. Your subscription information and audit results remain confidential. Limited exceptions include:

• Your Explicit Consent: Only when you specifically authorize data sharing
• Legal Requirements: To comply with valid legal processes, court orders, or government requests
• Safety Protection: To protect our rights, property, safety, or that of our users
• Service Providers: Trusted vendors who assist with platform operations under strict confidentiality and data protection agreements (such as OpenAI for AI processing, hosting providers for infrastructure)

Third-Party AI Services: We use OpenAI's GPT-4 for analysis, but all data is processed through our secure backend and never directly shared with or stored by OpenAI beyond their standard processing requirements.

5. Data Retention

We retain your data only as long as necessary:

• Audit results are stored for 30 days for reference purposes
• Uploaded files are processed immediately and deleted within 24 hours
• Account information is retained until you request deletion
• Usage logs are kept for 90 days for security monitoring

6. Your Rights

You have the right to:

• Access: Request information about the data we have about you
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data (subject to legal requirements)
• Export: Request a copy of your data in a portable format
• Opt-out: Unsubscribe from communications at any time

7. International Data Transfers

Your data may be processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in accordance with this privacy policy and applicable laws.

8. Changes to This Policy

We may update this privacy policy periodically. We will notify you of significant changes by updating the "Last updated" date and posting a notice on our platform.

9. Contact Us

For questions about this privacy policy, data requests, or legal concerns, please contact us at:

• Support & Privacy Officer: ek@recuroai.com
• Mailing Address: RecuroAI, 8920 garden stone ln

We will respond to all inquiries within 30 days as required by applicable data protection laws.

10. GDPR & CCPA Compliance

For users in the European Union and California:

• We process data lawfully, fairly, and transparently
• Data is collected for specific, legitimate purposes
• We minimize data collection to what is necessary
• Data is kept accurate and up-to-date
• Data is securely stored and processed
• You may exercise your rights under GDPR/CCPA by contacting us