Privacy Policy

Last updated: July 7, 2026

1. Who we are

Aillom Connect ("Service") is an Aillom platform that connects AI agents and applications to third-party service APIs (such as Google, GitHub, Slack, Mercado Livre, and others) through a unified gateway. Aillom is the controller of personal data processed within the Service, under the Brazilian General Data Protection Law (LGPD — Law No. 13,709/2018).

2. Data we collect

  • Account data: name, email, and the identifier of the account used to sign in (Google, GitHub, or email/password).
  • Access tokens for the integrations you voluntarily connect (e.g., Google Calendar, Google Drive, GitHub). These tokens are stored encrypted.
  • Usage records: API calls made through the Service, timestamps, status, and technical metadata required for operation, auditing, and security.
  • Payment data: processed by specialized providers (such as Stripe); we do not store card numbers.

3. How we use data

  • To authenticate your access and maintain your session.
  • To execute, on your behalf and at your command, operations on the integrations you have connected.
  • To ensure security, prevent fraud, and comply with legal obligations.
  • To communicate Service news and operational information (you may opt out of marketing communications at any time).

4. Google user data

When you connect a Google integration (e.g., Google Calendar or Google Drive), Aillom Connect's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

We use Google data exclusively to provide the features you request (such as creating events on your calendar or accessing files you designate). We do not use this data for advertising, do not sell it, and do not transfer it to third parties except as needed to provide the requested functionality, as required by law, or with your explicit consent. Humans do not read this data unless we have your consent, it is necessary for security purposes, or required by law.

5. Sharing

We do not sell personal data. We share data only with: (a) the third-party services you connect, to the extent necessary to execute the operations you request; (b) infrastructure and processing providers (hosting, database, payments) contractually bound to protect the data; and (c) authorities, when required by law.

6. Storage and security

Data is stored with cloud providers using encryption in transit (TLS) and at rest. Integration tokens are additionally encrypted at the application layer before being written. Internal access is restricted and logged.

7. Retention and deletion

We keep your data while your account is active. You may disconnect any integration at any time — the corresponding tokens are revoked and removed. When you delete your account, your personal data is erased within 30 days, except for records we must retain due to legal obligations.

8. Your rights

You may request at any time: confirmation of processing, access, correction, portability, anonymization, or deletion of your data, as well as withdrawal of consent. Just write to the contact email below.

9. Cookies

We use only essential session and authentication cookies. We do not use third-party tracking cookies for advertising.

10. Changes

We may update this policy from time to time. Material changes will be communicated through the Service or by email. The date of the last update appears at the top of this page.

Contact

If you have any questions about this document, contact us at: contato@aillom.com.br