Otto AI ("Otto", "we", "us") provides AI-powered business assistant services. This policy explains how we handle your data when you use our platform at otto-ai.co.
2. What We Collect
When you sign up and use Otto, we collect:
Account information: your name and email address via Google Sign-In.
Payment information: processed securely by Stripe. We store your Stripe customer ID but never your card details.
Conversation data: messages between you and your AI agent are stored on your dedicated server instance.
Usage data: message counts and AI model usage for billing purposes.
Channel credentials: if you connect Slack, WhatsApp, or Telegram, authentication tokens are stored on your dedicated server only.
3. How We Use Your Data
We use your data to:
Provide and maintain your AI agent service.
Process payments and manage your subscription.
Send important service updates (no marketing emails without consent).
Monitor system health and prevent abuse.
4. Data Isolation
Each customer receives a dedicated, isolated server instance. Your conversation data, channel credentials, and agent configuration are stored exclusively on your server. They are never shared with other customers or mixed with other customers' data.
5. Third-Party Services
We use the following third-party services:
Google OAuth: for authentication (Google's privacy policy applies).
Stripe: for payment processing (Stripe's privacy policy applies).
OpenRouter: for AI model access. Conversation content is sent to AI providers (Anthropic, OpenAI, Google) for processing. These providers have their own data handling policies.
Hetzner: for server infrastructure (EU and US data centers).
6. Data Retention
We retain your account data for the duration of your subscription. Conversation data is stored on your dedicated server. When you cancel your subscription, your server and all data on it is deleted within 30 days.
7. Your Rights
You have the right to:
Access the personal data we hold about you.
Request correction of inaccurate data.
Request deletion of your data and account.
Export your conversation data.
To exercise these rights, contact us at hello@otto-ai.co.
8. Security
We protect your data using AES-256 encryption at rest, SSH tunnels for all server communications, firewall isolation per customer, and encrypted HTTPS for all web traffic.
9. Changes
We may update this policy from time to time. We'll notify you of significant changes via email or dashboard notification.