● 30 days free · then $47/mo · starting specialMerced, CA · Pacific time
Legal / Privacy Policy

Privacy Policy

How we handle information when you visit our website, talk to one of our chatbots, or engage us for consulting work. Plain English where we can manage it.

Last updated · May 22, 2026 Effective · May 22, 2026 Governs · prathos.com and Prathos AI services

01Introduction

This Privacy Policy describes how Prathos AI ("Prathos," "we," "us") collects, uses, and discloses information when you visit prathos.com, interact with our chatbot products, or engage us for consulting services. We're a small studio based in Merced, California, and we take privacy seriously — both because the law requires it and because trust is foundational to the work we do.

02Information We Collect

Information you provide directly

When you contact us, book a call, sign up for a service, or correspond by email, we collect the information you choose to give us — typically your name, email address, business name, website URL, and the details of what you're trying to solve.

Information collected automatically

When you visit prathos.com or use a Prathos-powered chatbot on a client site, we may collect technical information including IP address, browser type, device type, pages visited, referrer URL, and timestamps. This is standard server-side logging used to operate the service.

Conversation data

For our chatbot product, conversations between end-users and the bot are stored on our infrastructure (or your infrastructure, if you've elected self-hosted). This includes message content, timestamps, and any structured data collected during the conversation (such as contact information the user volunteered).

03How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our products and services
  • Respond to inquiries and provide customer support
  • Process payments and manage your account
  • Send service-related communications (transactional email, security notices)
  • Send the daily CSV digest email to operators we serve
  • Send occasional marketing emails (you may opt out at any time)
  • Detect, prevent, and respond to fraud, abuse, and security incidents
  • Comply with legal obligations

04AI Model Providers and Data Sharing

This is the most important section of this policy if you're using or considering a Prathos chatbot product.

To generate responses, our chatbot product sends conversation content (the user's message, plus relevant context from your knowledge base) to a large-language-model provider — typically OpenAI, Anthropic, or a self-hosted open-source model, depending on your configuration.

By default, we use providers that have committed to not training their models on API content (OpenAI's API zero-data-retention option, Anthropic's API default policy). However:

  • Provider policies can change. Review the current terms of whichever provider you use.
  • If you "bring your own key," your relationship is with the provider, not us — their privacy and data-handling terms apply.
  • For sensitive industries (healthcare, finance, legal), we offer self-hosted open-source models (Llama family) so no data leaves your infrastructure.

05Cookies and Tracking

prathos.com uses the following cookies and tracking technologies:

  • Session cookie — required for basic site security and navigation
  • Google Analytics 4 — collects anonymized usage data (pages visited, session duration, device type) to help us understand how visitors use the site. Google may process this data in the US. You can opt out via Google's opt-out tool.
  • Facebook Pixel — placed by Meta to measure ad performance and, if you've interacted with our ads, to enable retargeting. Meta may use this data in accordance with its own data policy. You can manage your preferences at facebook.com/ads/preferences.

You can block cookies in your browser settings. Blocking analytics or advertising cookies will not affect core site functionality.

Embedded Prathos chatbots use a small first-party storage entry to maintain conversation continuity within a browser session. This is not used for cross-site tracking.

06Sharing and Disclosure

We share information with:

  • Service providers who help us operate the business (payment processors, email delivery, hosting, model providers — see Section 04)
  • Your authorized integrations — when you configure your bot to push leads to HubSpot, Slack, Google Sheets, etc., we send the relevant data to those services on your behalf
  • Law enforcement or regulators when required by valid legal process
  • An acquirer in the event of a merger, acquisition, or asset sale (we'll notify you of any change in control)

We do not sell personal information. We have not sold personal information in the preceding twelve months.

07Data Security

We use industry-standard technical and organizational measures to protect personal information — encryption in transit (TLS 1.2+), encryption at rest for stored conversation data, access controls, regular security review. No system is perfectly secure; if we become aware of a breach affecting your data, we will notify you in accordance with applicable law.

08Data Retention

We retain personal information for as long as needed to provide the service and to comply with legal obligations. Conversation data is retained for 90 days by default and then summarized for analytics; you can request immediate deletion via ryan@prathos.com. Account and billing records are retained for seven (7) years for tax and audit purposes.

09Your Privacy Rights

California residents have specific rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA). Depending on where you live, you may have rights including:

  • Access — request a copy of the information we hold about you
  • Correction — ask us to fix inaccuracies
  • Deletion — request that we delete your information (subject to legal retention requirements)
  • Portability — receive your data in a machine-readable format
  • Objection — object to certain processing
  • Opt-out of sale or sharing — we don't sell, but you can confirm

To exercise any of these rights, email ryan@prathos.com. We'll respond within 30 days.

10Children's Privacy

Our services are not directed to children under 13 (or 16 in the EU). We do not knowingly collect personal information from children. If you believe we have, please contact us and we will delete it.

11International Transfers

We are based in the United States. If you access our services from outside the US, your information will be transferred to and processed in the US. For EU/UK users, we rely on standard contractual clauses where applicable.

12Changes to This Policy

We may update this policy periodically. The "Last updated" date at the top of the page reflects the most recent revision. Material changes will be communicated by email or a notice on the site at least 30 days before taking effect.

13Contact

Privacy questions, requests, or complaints: ryan@prathos.com.