Privacy policy
This policy explains the information HumanEcho processes to operate the service and the third-party providers involved. It avoids promising controls or hosting options that are not part of the standard product.
Information we process
We process account details such as your name, email address, authentication identifiers, and workspace relationship. We also process product usage, agent settings, uploaded knowledge sources, conversations submitted to the service, feedback, and technical logs needed to operate and troubleshoot HumanEcho.
For subscriptions, we store billing identifiers, the selected plan, subscription status, and related timestamps. HumanEcho does not store raw payment-card details.
How we use information
We use information to authenticate users, provision workspaces, answer requests from connected knowledge, enforce plan limits, provide the website widget, process subscription state, prevent abuse, diagnose failures, support customers, and improve the product.
We do not sell personal information. We may use aggregated or de-identified information to understand product performance when it no longer reasonably identifies an individual or customer.
Service providers
HumanEcho relies on service providers for hosting, databases, authentication, email delivery, payment processing, analytics, and AI-model access. Current examples include Vercel, MongoDB, authentication and email providers, Stripe, and configured AI providers.
These providers process information to deliver their part of the service under their own terms and our applicable arrangements. The specific provider set can change as the product evolves.
Storage, location, and security
We use reasonable technical and organizational measures intended to protect the service, including access controls and secure transport. No online system can guarantee absolute security, and you should not upload passwords, secret keys, or data that is unnecessary for the support use case.
Information may be processed in locations where HumanEcho or its service providers operate. Regional or private hosting is not included in the standard product unless it is explicitly scoped in a written agreement.
Retention and your requests
We retain information for as long as reasonably needed to provide the service, maintain security and records, resolve disputes, and meet legal obligations. Retention can vary by data type and provider.
You may request access, correction, export, or deletion by emailing privacy@humanecho.ai. Some information may remain where retention is required by law, security needs, billing records, or limited backup processes.
Contact and policy changes
Questions about this policy can be sent to privacy@humanecho.ai. Please do not include passwords, secret keys, or unnecessary sensitive data in the message.
We may update this policy as the service changes. The date above identifies the current published version.