Privacy Policy

Last updated: March 25, 2026

ArthEQ, LLC. ("ArthEQ," "we," "us," or "our") provides business software and related services through our website at https://www.artheq.ai and associated applications and offerings (collectively, the "Services").

This Privacy Policy explains how we collect, use, disclose, and otherwise process personal information in connection with the Services. It also describes your choices and rights. If you do not agree with this Privacy Policy, please do not use the Services.

We may update this Privacy Policy from time to time. We will post the updated policy and revise the "Last updated" date above. If we make material changes, we may provide additional notice (for example, by email or through the Services).

1. Scope and Roles

The Services are intended for business (B2B) use. Organizations that subscribe to or administer the Services on behalf of their personnel (our "Customers") may control certain settings, access, and sharing rules for their users.

Depending on how you interact with us and which laws apply:

• Where ArthEQ provides the Services directly to you (for example, account registration or website visitors), ArthEQ may act as a business or controller of your personal information for those interactions.
• Where we process personal information solely on behalf of a Customer to provide the Services to that Customer under its instructions (for example, data tied to a Customer's workspace), ArthEQ may act as a service provider or processor. In those cases, the Customer's own agreements and privacy notices may also apply, and the Customer may be responsible for certain notices and permissions.

If you are an end user of the Services through your employer or another organization, please contact that organization for questions about how it administers your account.

2. Information We Collect

We collect information in the following categories:

2.1 Information You Provide

• Account and profile information, such as your name, work email address, organization name, job title (if you choose to provide it), password or authentication credentials, and similar registration details.
• Communications with us, such as information you send when you contact support, respond to surveys, or otherwise communicate with us.

2.2 Meeting and Calendar-Related Information

When you use features that involve video meetings or calendars, we may collect:

• Meeting content you connect to the Services, which may include audio and video, screen sharing, transcripts, in-meeting chat, and related metadata (for example, meeting title, time, identifiers, participant labels or names shown in the conferencing platform, and similar meeting information). Meeting content may include personal information about you and other participants.
• Calendar information if you connect a calendar integration (for example, event titles, times, join links, and attendee information as made available through your calendar provider), limited to what is reasonably needed to provide the feature you enable.

We design the Services to limit what we collect to what is reasonably necessary to provide the functionality you (or your Customer) use.

2.3 Survey and Organizational Feedback Information

When you use survey, assessment, or feedback features, we may collect information associated with those features, such as:

• survey or questionnaire prompts and configuration;
• participant responses (including optional free-text responses) and related metadata (for example, timestamps, response status, and workspace attribution); and
• aggregated or segmented analytics generated from those responses for reporting within the Services.

2.4 Automatically Collected Information

When you use the Services, we may automatically collect:

• Device and log information, such as IP address, device type, browser type, operating system, app version, and the dates and times you use the Services.
• Usage information, such as feature usage and interactions with the Services.
• Cookies and similar technologies, as described in Section 9.

2.5 Information from Third-Party Integrations

If you connect third-party services (such as your conferencing provider or calendar provider) to the Services, we may receive personal information from those services as authorized by you (or your Customer) through the provider's connection or consent flow.

3. How We Use Information

We use personal information to:

• Provide and operate the Services, including enabling integrations, processing meeting-related content and survey/feedback data, generating outputs shown in the Services (such as transcripts, summaries, recommendations, or organizational insights depending on product configuration), and delivering customer support.
• Secure and improve the Services, including troubleshooting, debugging, abuse prevention, fraud prevention, and improving reliability and performance.
• Communicate with you about the Services, including service announcements, technical notices, and responses to your requests.
• Send marketing communications where permitted by law (you can opt out as described in Section 8).
• Comply with law and respond to lawful requests and legal process.

4. AI Features and Model Training

If the Services include AI-assisted features, those features are intended to help you analyze or work with information you (or your Customer) choose to connect.

We do not use your meeting content, survey/feedback content, or other Customer materials to train machine learning or other AI models for general-purpose model improvement. We process meeting-related and organizational feedback content only to provide the Services you request (for example, transcription, summarization, survey analytics, or coaching-style outputs in the product), consistent with our agreements.

AI-generated outputs may be incomplete or inaccurate and should not be relied upon as professional advice. See our Terms of Service for additional disclaimers.

5. How We Disclose Information

We may disclose personal information in the following circumstances:

• Service providers and subprocessors who assist us in operating the Services (hosting, transcription-related processing, security, communications, analytics, and similar functions), subject to appropriate confidentiality and security obligations. See Section 6.
• Your organization (Customer), where you use the Services under a Customer account, including administrators who may access workspace settings and content in accordance with that Customer's policies.
• Conferencing and calendar providers, as needed to enable integrations you authorize.
• Professional advisors (lawyers, accountants, insurers) where reasonably necessary.
• Compliance and protection, including to comply with applicable law, to respond to lawful requests, to enforce our agreements, and to protect rights, privacy, safety, and property of ArthEQ, our users, or others.
• Business transfers in connection with a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, subject to standard confidentiality arrangements.

We do not sell your personal information and we do not share personal information for cross-context behavioral advertising.

6. Subprocessors

We use a limited set of subprocessors and service providers to host and operate the Services and process personal information on our behalf. These providers are contractually obligated to use personal information only to provide services to us.

Last updated: March 25, 2026

We may engage additional subprocessors from time to time. If we add subprocessors that materially expand how we process personal information under this policy, we will update this list and the "Last updated" date above. For other routine changes (such as adding a tool with a similar function), we may update this list without separate notice.

7. International Users and U.S. Processing

ArthEQ is headquartered in the United States. We host and operate our production Services and primary data stores in the United States (including on U.S.-region cloud infrastructure).

Certain subprocessors assist us with specific processing functions (for example, meeting-media pipeline or speech-to-text services). Those providers may process personal information on our behalf using their own systems and safeguards described in their policies. If you access the Services from outside the United States, you understand that your personal information will be transferred to the United States and may be processed by subprocessors as described in Section 6, which may have data protection rules that differ from those in your country.

8. Retention and Deletion

We retain personal information for as long as needed to provide the Services and for legitimate business purposes (such as security, backups, dispute resolution, and legal compliance).

By default, meeting-related content (such as recordings, transcripts, and associated media that we store in our environment for you or your Customer) is deleted after seven (7) days, unless your organization has agreed to a different retention period in writing or through product configuration.

Retention periods for other workspace content (such as survey and feedback data) may differ based on Customer configuration, written agreement, and product settings.

Residual copies may persist for a limited period in backups before being overwritten. If you request deletion, we will use commercially reasonable efforts to delete or de-identify personal information, subject to legal retention requirements.

9. Cookies and Similar Technologies

We use cookies and similar technologies for essential operation of the Services (such as authentication and security) and, where permitted, to understand usage and improve the Services. You can control cookies through your browser settings, but some features of the Services may not function properly if you disable essential cookies.

10. Security

We maintain administrative, technical, and organizational safeguards designed to protect personal information. For example, we use encryption in transit for data transmitted between your browser and our services in standard configurations. However, no security measures are perfect, and we cannot guarantee that unauthorized access, disclosure, alteration, or loss will never occur.

We continuously work to mature our security and compliance practices over time. However, unless we expressly state otherwise in writing, nothing in this Privacy Policy should be understood as a guarantee that our Services meet any specific certification, audit standard, or compliance framework.

11. Your Privacy Rights and Choices

Depending on your location, you may have privacy rights under applicable laws. These may include rights to access, correct, delete, or restrict certain processing, or to obtain a copy of your personal information.

You may contact us as described in Section 15. We may need to verify your identity before fulfilling a request. If you use the Services through a Customer account, we may need to direct certain requests to your organization's administrator.

11.1 Marketing Opt-Out

You may opt out of promotional emails by following the unsubscribe instructions in those emails. Even if you opt out of marketing, we may still send transactional or service-related messages.

12. Additional Information for California Residents

If you are a California resident, the California Consumer Privacy Act ("CCPA") may apply to our collection and use of personal information.

• Categories collected: We may collect the categories described in Section 2, including identifiers, commercial information (if you purchase paid Services), internet or network activity, and audio, electronic, visual, or similar information (such as meeting content and related survey/feedback records).
• Purposes: As described in Section 3.
• Sensitive personal information: We do not use or disclose sensitive personal information for purposes that require a "limit the use of sensitive personal information" choice under the CCPA.
• Sales / sharing: We do not "sell" or "share" personal information as those terms are defined under the CCPA.
• Requests: California residents may submit requests by emailing us at support@ArthEQ.ai. We will not discriminate against you for exercising your rights.

13. Additional Information for Individuals in the EEA, UK, and Switzerland

If you are located in the European Economic Area, United Kingdom, or Switzerland, applicable data protection laws may provide you with additional rights regarding your personal data.

Lawful Bases (Where Required)

We may process personal data based on:

• Contract (to provide the Services you or your Customer requested);
• Legitimate interests (for example, securing and improving the Services), where not overridden by your rights;
• Legal obligation; or
• Consent, where we rely on consent for specific processing (such as certain marketing where required).

Transfers

As described in Section 7, we process personal data in the United States. Where required, we use appropriate safeguards for international transfers.

Rights

You may have the right to access, rectify, delete, restrict processing, object, and port personal data, and to lodge a complaint with a supervisory authority.

14. Children's Privacy

The Services are not directed to children and are intended for business users. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us and we will take appropriate steps to delete it.

15. Contact Us

If you have questions about this Privacy Policy, or if you would like to exercise your privacy rights, please contact:

ArthEQ LLC
Email: support@ArthEQ.ai
Website: https://www.artheq.ai