Privacy Policy | Phisk AiLab

# Privacy policy _Last Updated: August 15, 2025_ Phisk Corporation ("we", "us", or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how **Phisk AI** collects, uses, shares, and protects your information when you use our services, applications, and website. By accessing or using Phisk AI, you agree to the practices described in this Privacy Policy. If you do not agree, please discontinue use of our services. --- ## 1. Information We Collect We collect the following types of data: ### a. Personal Information Provided voluntarily by users: - Full name - Email address - Billing details - Phone number (optional) - Company name (if applicable) ### b. Usage Data Automatically collected when interacting with Phisk AI: - IP address - Device and browser type - Operating system - Timestamps - User interactions (e.g. prompts, click behavior) ### c. Input/Output Data Collected and processed as part of providing AI services: - Text and media you input - AI-generated outputs based on your prompts ### d. Cookies & Similar Technologies We use cookies to: - Authenticate users - Track session activity - Improve service functionality You can manage cookies through your browser settings. --- ## 2. How We Use Your Information Your information is used to: - Deliver, personalize, and improve Phisk AI services - Provide customer support - Monitor and prevent misuse or abuse - Send important updates or billing notifications - Meet legal and regulatory requirements We do **not** use your input or output data for advertising or model training without consent. --- ## 3. Sharing of Information We do **not sell** your data. We may share it with: ### a. Authorized Third-Party Providers We work with trusted third-party services including: - **OpenAI** - **Fal.ai** - **Grok** - **Veo** - Cloud providers and analytics tools These providers may process your data to help us deliver Phisk AI features. Their use of data is governed by their own privacy policies and agreements. ### b. Legal Compliance We may disclose your data when required to do so by law, court order, or government authority. ### c. Business Transfers If Phisk Corporation is involved in a merger, acquisition, or sale of assets, your data may be transferred to the new entity. --- ## 4. Data Retention We retain your data only as long as necessary to: - Deliver services - Comply with legal obligations - Resolve disputes - Improve and audit platform performance You may request deletion of your data by contacting us. --- ## 5. Security We implement: - End-to-end encryption where necessary - Access controls - Activity monitoring - Regular vulnerability assessments While we take strong measures, no system can be 100% secure. --- ## 6. Your Rights Depending on your location and applicable laws, you may have rights to: - Access your personal data - Request correction or deletion - Object to data processing - Request data portability - Withdraw consent at any time To exercise these rights, email [support@phisk.co](mailto:support@phisk.co). We may verify your identity before fulfilling requests. --- ## 7. GDPR Compliance (EU/EEA Users) If you are located in the **European Union (EU)**, **European Economic Area (EEA)**, or **United Kingdom**, your data is handled in compliance with the **General Data Protection Regulation (GDPR)**. ### Lawful Basis for Processing: We process your personal data on the basis of: - Your consent (e.g., when signing up) - Contractual necessity (e.g., delivering AI services) - Legal obligations - Legitimate interest (e.g., preventing abuse, ensuring platform integrity) You have the right to lodge a complaint with your local Data Protection Authority if you believe your rights under GDPR have been violated. --- ## 8. Data Processing Addendum (DPA) for Enterprise Users Enterprise clients requiring a **Data Processing Agreement** (DPA) to meet compliance requirements (including GDPR, HIPAA, etc.) may request a signed copy from Phisk Corporation. The DPA includes terms regarding: - Data controller vs. data processor responsibilities - Sub-processor transparency - Cross-border data transfers - Security, confidentiality, and incident response - Data subject access rights - Audit rights and termination procedures To initiate a DPA request, please contact: [legal@phisk.co](mailto:legal@phisk.co) --- ## 9. AI Query Processing and Data Privacy **Phisk AI**, is committed to safeguarding your privacy. We do not access, store, or log any personal data, prompts, or outputs generated through our platform. All AI queries are processed directly on the servers of the respective AI providers (e.g., OpenAI, Anthropic, Google DeepMind). **Key points:** * **Direct API Processing:** Queries are securely transmitted to the provider’s API and returned to you without interception or analysis by AILab. * **No Local Storage:** We do not retain queries, responses, or conversation history on our systems. * **Trusted Providers:** All processing is handled by reputable AI providers, and their privacy policies apply to your use of their models. * **Open-Source Models:** Where open-source AI models are used, they operate in secure, non-logging environments. Such usage will be clearly indicated. By using AILab, you benefit from both our no-data-retention policy and the security standards of the AI providers we integrate with. --- ## 10. Children’s Privacy Phisk AI is not intended for children under 13. We do not knowingly collect data from minors. If you believe a child has submitted personal data, contact us immediately for removal. --- ## 11. International Users By using Phisk AI, you acknowledge that your data may be processed and stored in **Nigeria** or other countries where we operate. These countries may have data protection laws different from your home country. We take steps to ensure cross-border data transfers comply with applicable data protection standards. --- ## 12. Third-Party Links Phisk AI may contain links to external websites or platforms. We are not responsible for the privacy practices of those third parties and recommend you review their privacy policies separately. --- ## 13. Changes to This Policy We may update this Privacy Policy periodically. When we do, we will revise the "Last Updated" date and, where appropriate, notify you of major changes via email or platform notice. Continued use of Phisk AI after changes constitutes acceptance of the updated policy. --- ## 14. Contact Us If you have any questions or concerns regarding this Privacy Policy or your data, please contact: **Phisk Corporation** 📧 Email: [support@phisk.co](mailto:support@phisk.co) 📧 Legal: [legal@phisk.co](mailto:legal@phisk.co) 🌐 Website: [https://phisk.co](https://phisk.co) ---