Privacy Policy for PrivateGPT
Welcome to PrivateGPT by Abstracta, a private and secure alternative to ChatGPT designed for companies to use internally. Our solution offers data privacy and security, cost control, user management, prompt sharing capabilities, and the ability to run large language models like GPT-4 and GPT-3.5.
Data Collection
We value your privacy and transparency. We collect the following data: email addresses, messages, token usage, timestamps and model usage. This data helps us provide the administrator of your account with usage reports, have backups, and improve our services and your user experience.
Purpose of Data Processing
Currently, we do not use the stored data for any secondary purposes. Should this change in the future, we will inform you and, if necessary, obtain your consent again.
Data Retention Policy
Retention Periods: Our approach to retaining your data is specifically designed to cater to our users' requirements while ensuring compliance with GDPR guidelines. All necessary information for the application's operation is backed up and retained for 3 months as a security measure against potential issues requiring data recovery. Inactive chats are preserved indefinitely as historical records, highlighting our dedication to providing persistent access to data upon request. Additionally, when our service is no longer required by a user, any remaining data will be backed up for 3 months.
Deletion Processes: We have implemented thoughtful deletion protocols that prioritize user privacy and control over personal data. Message backups and usage statistics are automatically deleted following their respective retention periods, reflecting our dedication to data minimization. Additionally, you're empowered to request the deletion of your data at any time; simply reach out to us at support@private-gpt.ai, and we'll handle your request promptly, ensuring your data is removed from our systems and confirming the deletion directly with you.
Sharing and International Transfers
To authenticate users, we integrate with OAuth with Azure, which involves sharing your email address and name. We ensure that all third parties comply with GDPR standards and that appropriate safeguards are in place for data transfers outside the EU.
Your Rights
Under GDPR, you have rights including access to your data, rectification, deletion (the right to be forgotten), and data portability. If you wish to exercise any of these rights, please contact us at support@private-gpt.ai.
Data Security
We are currently enhancing our data security framework and are committed to implementing robust security measures, including encryption, to protect your data against unauthorized access or breaches. While these improvements are underway, we maintain strict access controls and are dedicated to adopting industry-standard practices to ensure your information's safety.
Data Breach Notification
In the unlikely event of a data breach, we are committed to notifying all affected users via email in a timely manner.
Children's Privacy
Our services are not intended for individuals under the age of 16, and we do not knowingly collect data from this demographic.
Contact Us
Should you have any questions about this privacy policy or our data protection practices, feel free to reach out to us at support@private-gpt.ai.