Privacy Policy

1. Information We Collect

ROSA, a Tiada company registered and operating in Dubai, United Arab Emirates, collects various types of information to provide, maintain, and improve our AI agent services.

1.1 Information You Provide Directly

• Account Information: Name, email address, company name, job title, phone number, and billing information when you create an account or purchase our services.
• Communication Data: Information you provide when contacting us via email, phone, chat, or other communication channels, including support requests and inquiries.
• Business Information: Details about your organization, use cases, integration requirements, and customization preferences.

1.2 Information Collected Automatically

• Usage Data: Information about how you interact with our Services, including pages visited, features used, time spent, and navigation patterns.
• Device Information: IP address, browser type and version, operating system, device identifiers, screen resolution, and language preferences.
• Log Data: Server logs, error reports, performance metrics, and system diagnostics.
• Location Data: Approximate geographic location derived from IP address.

1.3 Chat and Conversation Data

Important: When you interact with ROSA AI agents through our live chat, WhatsApp, email, or other communication channels, we collect and record:

• Complete conversation transcripts and message content
• User queries, responses, and interaction patterns
• Timestamps, conversation duration, and session metadata
• Sentiment analysis, intent classification, and behavioral data
• Feedback, ratings, and satisfaction scores

2. How We Collect Information

We collect information through multiple channels:

• Direct Interactions: When you register, subscribe, or communicate with us
• AI Agent Conversations: Through live chat widgets, WhatsApp integration, email agents, and other automated communication channels
• Website Activity: Via cookies, analytics tools, and tracking technologies
• Third-Party Services: From business partners, payment processors, and integration platforms with your consent
• Public Sources: From publicly available information relevant to business relationships

3. How We Use Your Information

We use collected information for the following purposes:

3.1 Service Delivery and Operations

• Provide, maintain, and improve ROSA AI agents and related services
• Process transactions, manage accounts, and deliver customer support
• Personalize user experience and customize service features
• Monitor system performance, diagnose technical issues, and ensure security

3.2 AI Development and Training

Critical Notice: We use conversation data, including chat transcripts and user interactions, to:

• Train AI Models: Improve natural language understanding, response accuracy, and agent intelligence
• Quality Assurance: Evaluate agent performance, identify errors, and optimize responses
• Feature Development: Develop new capabilities, enhance existing features, and innovate service offerings
• Research and Analytics: Conduct research on conversational AI, user behavior, and industry trends

Note: We implement data anonymization and aggregation techniques where feasible. However, some personally identifiable information may be retained for training purposes to maintain context and improve model accuracy.

3.3 Marketing and Communication

• Send promotional materials, product updates, and service announcements
• Conduct market research, surveys, and feedback collection
• Analyze user preferences to deliver targeted marketing content
• Measure campaign effectiveness and optimize marketing strategies

You may opt out of marketing communications at any time through unsubscribe links or by contacting us directly.

3.4 Legal and Compliance

• Comply with legal obligations, regulations, and government requests
• Enforce our Terms of Service and protect our legal rights
• Prevent fraud, abuse, security threats, and illegal activities
• Resolve disputes and investigate potential violations

4. Chat Data and AI Training

Explicit Consent: By using ROSA's chat services, AI agents, or communication channels, you explicitly consent to the collection, recording, processing, and use of your conversation data for AI training, service improvement, and related purposes as described in this policy.

4.1 Data Usage for Training

Your conversation data may be used to:

• Train machine learning models and improve AI response quality
• Develop industry-specific language models and specialized agents
• Create training datasets for internal and potentially external AI research
• Generate synthetic data for testing and development purposes

4.2 Sensitive Information

Important: Please do not share sensitive personal information (such as passwords, financial account numbers, social security numbers, or health records) through chat or AI agent conversations. While we implement security measures, you are responsible for the information you choose to disclose.

4.3 Data Retention

Conversation data is retained indefinitely for AI training purposes unless you specifically request deletion (see Section 7 for data rights).

5. Data Storage and Security

We implement industry-standard security measures to protect your information, including:

• Encryption of data in transit (TLS/SSL) and at rest (AES-256)
• Access controls, authentication mechanisms, and role-based permissions
• Regular security audits, vulnerability assessments, and penetration testing
• Secure data centers with physical and network security measures
• Employee training on data protection and confidentiality obligations

However, no system is completely secure. We cannot guarantee absolute security of your data.

6. Data Sharing and Disclosure

We may share your information with:

6.1 Service Providers

• Cloud hosting providers (e.g., AWS, Google Cloud, Azure)
• Payment processors and financial institutions
• Analytics and monitoring services
• Customer support and communication platforms
• Marketing and advertising partners

6.2 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the successor entity.

6.3 Legal Requirements

We may disclose information when required by law, court order, government request, or to protect our rights, safety, and property.

6.4 Third-Party AI Research

We may share anonymized, aggregated conversation data with research institutions, academic partners, or industry collaborators for AI research purposes. Individual users will not be identifiable in such datasets.

7. Your Rights and Choices

Depending on your location, you may have the following rights:

7.1 Access and Portability

• Request access to your personal data
• Obtain a copy of your data in a portable format

7.2 Correction and Deletion

• Correct inaccurate or incomplete information
• Request deletion of your personal data (subject to legal obligations and legitimate business interests)

7.3 Restriction and Objection

• Restrict processing of your data under certain circumstances
• Object to processing based on legitimate interests or direct marketing

7.4 Withdraw Consent

Where processing is based on consent, you may withdraw consent at any time. However, this will not affect the lawfulness of processing before withdrawal.

To exercise your rights, contact us at: privacy@rosa.biz

8. Cookies and Tracking Technologies

We use cookies, web beacons, and similar technologies to:

• Maintain user sessions and remember preferences
• Analyze website traffic and usage patterns
• Deliver personalized content and advertisements
• Measure marketing campaign effectiveness

You can control cookies through your browser settings. However, disabling cookies may limit functionality.

9. International Data Transfers

ROSA operates globally. Your information may be transferred to, stored in, and processed in countries outside the UAE, including countries that may not have equivalent data protection laws. We implement appropriate safeguards, including standard contractual clauses and data transfer agreements, to protect your information during international transfers.

10. Children's Privacy

Our Services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, contact us immediately for deletion.

11. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or business operations. The "Last Updated" date at the top indicates the most recent revision. Continued use of our Services after changes constitutes acceptance of the updated policy.

12. Contact Us

Acknowledgment: By using ROSA's Services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use, and disclosure of your information as described herein.