Privacy Policy

1. Data We Collect

When you register or use AskCc, we collect necessary account information (such as name, email, team name) and your preference settings. If you choose to integrate enterprise collaboration tools, we also obtain minimal identity identifiers for single sign-on.

When using the product, you can upload resumes, interview questions, knowledge bases, or usage logs. These are your exclusive data and can be managed and deleted in settings at any time.

2. How We Use Data

Data is primarily used to provide core product features, generate contextual answers, send service reminders, and improve model performance.

We anonymize usage data for statistical analysis to help the team optimize the experience; any personalized training requires your explicit authorization.

3. Data Sharing and Third Parties

We do not sell your personal data. We only share necessary information with trusted vendors for payment processing, cloud infrastructure hosting, or legal requirements, and require them to comply with security and confidentiality obligations through agreements.

4. Data Retention and Deletion

Operational data is retained while your account is active. If you delete content or terminate service, we will complete erasure within 30 days, unless legally required to retain longer.

5. Your Rights

You can access, export, or correct your personal information at any time; you can also disable marketing emails or revoke authorization through the console.

For data-related requests, please email support@pyznai.com, and we will respond within 15 business days.

6. Data Classification

Operational Data: Logs, device information, and audit records used to maintain platform operation; only used for performance monitoring and troubleshooting.

Business Data: Documents, knowledge bases, and team conversations you upload — the sole source for us to answer questions or generate content for you.

Model Data: Anonymized and aggregated statistical metrics used to evaluate model effectiveness; contains no identifiable information.

7. Storage and Isolation

All business data is stored by default in cloud environments compliant with ISO 27001, with logical tenant isolation for team-level boundary control.

Sensitive fields use industry-standard encryption (AES-256 / TLS 1.3) for both at-rest storage and transmission.

8. Model Training and Optimization

Unless you explicitly enable the 'Use for Model Improvement' option in the console, your business data will not enter any shared training pipeline.

If you provide data for training, we will inform you of the specific scope again before use and allow you to revoke authorization at any time.

9. Access Control

Only core operations personnel who have passed background checks can access the production environment in emergencies, with complete audit logs recorded.

We support role-based permissions (RBAC) and fine-grained space isolation to help enterprise customers with compliance management.