Privacy Policy
Last updated: March 15, 2026
ShieldAI ("we," "us," or "our") operates the ShieldAI AI governance platform for financial services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and application.
1. Information We Collect
Information You Provide
- Account information: Name, email address, company name, job title, and phone number when you create an account or request a demo.
- Governance data: AI tool assessments, approval workflows, risk scoring data, compliance documentation, and audit logs you enter into the platform.
- Payment information: Billing address and payment method details, processed securely by our payment processor (Stripe). We do not store full credit card numbers.
- Communications: Messages you send through our contact form, support tickets, or email correspondence.
Information Collected Automatically
- Usage data: Pages visited, features used, workflow completion patterns, and session duration.
- Device information: Browser type, operating system, device type, screen resolution, and IP address.
- Cookies and similar technologies: We use essential cookies for authentication and optional analytics cookies to improve our service.
2. How We Use Your Information
- Provide, maintain, and improve the ShieldAI platform
- Process transactions and send related information (receipts, invoices)
- Send technical notices, updates, security alerts, and support messages
- Respond to your comments, questions, and support requests
- Monitor and analyze usage trends to improve user experience
- Detect, prevent, and address technical issues and fraud
- Send marketing communications (with your consent; you can opt out anytime)
3. Data Sharing and Disclosure
We do not sell your personal information. We may share data with:
- Service providers: Third-party vendors who assist in operating our platform (hosting, payment processing, email delivery, analytics).
- Legal compliance: When required by law, regulation, or legal process.
- Business transfers: In connection with a merger, acquisition, or sale of assets.
- With your consent: When you explicitly authorize sharing.
4. Data Security
We implement industry-standard security measures including encryption in transit (TLS 1.2+), encryption at rest, role-based access controls, and regular security assessments. All data is stored in SOC 2-compliant infrastructure. Given the sensitive nature of financial services compliance data, we apply additional controls including audit logging and data isolation.
5. Data Retention
We retain your account information and governance data for as long as your account is active or as needed to provide services. Compliance records and audit logs may be retained longer to support regulatory requirements (SEC, FINRA, SOX). You may request deletion of your data at any time, subject to legal retention requirements.
6. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you
- Correct inaccurate or incomplete data
- Request deletion of your data
- Object to or restrict processing of your data
- Export your data in a portable format
- Withdraw consent for marketing communications
7. Children's Privacy
ShieldAI is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from children.
8. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date.
9. Contact Us
If you have questions about this Privacy Policy or your data, contact us at: support@tryshieldai.com