Privacy Policy for Tidy

Last Updated: October 29, 2025

This Privacy Policy explains how Pond AI Inc. ("Pond AI," "we," or "us") collects, uses, discloses, and otherwise processes personal data in connection with Tidy, our messaging-based assistant, and any related products, services, or applications that reference or link to this Privacy Policy. This Privacy Policy applies to all users of Tidy, regardless of location, with additional region-specific disclosures provided below for residents of the European Economic Area ("EEA"), United Kingdom ("UK"), and Switzerland.

This Privacy Policy does not apply to our employees, contractors, or job applicants. It is not a contract and does not create any legal rights or obligations beyond those established by applicable law.

1. Information We Collect

The categories of personal data we collect depend on how you interact with Tidy.

a. Information You Provide

  • Account Information: When you message or sign up for Tidy, an account is automatically created. We may collect your name, email address, authentication credentials, and related settings.
  • Messages and Inputs: When you interact with Tidy (for example, by sending a message or making a request), the content of your input and related context may be processed to generate a response.
  • Connected Integrations: If you choose to connect third-party services to Tidy (for example, a calendar or accounts for other services), we may access data from those integrations to provide and improve the requested functionality within Tidy.
  • Support Requests: If you contact us directly (for example, via email), we collect your correspondence and any other information you provide.

b. Automatically Collected Information

  • Usage Data & Logging: We collect information about how you use Tidy, including feature usage, error reports, timestamps, and performance metrics.
  • Device & Technical Data: We may collect your IP address, browser type, operating system, device model, and system logs for security and diagnostic purposes.
  • Cookies / Local Storage: Minimal cookies or equivalent local storage mechanisms may be used to maintain session continuity and authentication. We do not use cookies for advertising purposes.

2. How We Use Your Information

We use your personal data to:

  • Provide, operate, maintain, and improve Tidy and related services.
  • Process your messages, requests, and connected integrations.
  • Monitor and improve performance, reliability, and security.
  • Respond to your inquiries and support requests.
  • Conduct research and analytics to enhance Tidy's functionality.
  • Comply with legal obligations and protect our rights.

We do not use your personal data for advertising or marketing purposes.

3. Third-Party Providers

Tidy relies on third-party service providers to deliver and maintain our service, including:

  • Hosting Providers: such as Fly.io, to host the Tidy application and associated infrastructure.
  • Model Providers: such as OpenAI or Anthropic, to process messages and generate responses.
  • Other Vendors: to support service functionality, security, analytics, and logging.

All persistent data is encrypted at rest. While we only engage reputable providers, we cannot guarantee the security practices of every third party.

4. How We Share Your Information

We may disclose personal data:

  • With Service Providers: to process your requests and operate Tidy.
  • In Connection with Legal Obligations: to comply with laws or respond to lawful requests.
  • To Protect Rights & Safety: to prevent fraud or protect users, our systems, and property.
  • With Your Consent or Direction: for example, if you allow us to post your feedback.

We do not sell or share your personal data for advertising purposes.

5. Security of Personal Data

We implement reasonable technical, administrative, and organizational safeguards to protect your personal data. This includes encryption for persistent data and monitoring of our systems. However, no system can be completely secure, and we cannot guarantee absolute security.

6. Data Retention

We retain personal data only as long as necessary to provide Tidy and fulfill legal obligations. Once data is no longer needed, we delete or anonymize it. Legal holds may extend retention when required for legal claims or disputes.

7. International Transfers

Tidy operates and engages third-party providers in various jurisdictions, including the United States. Data may be stored, accessed, or processed outside your country. For users in the EEA, UK, and Switzerland, we rely on appropriate safeguards such as:

  • Adequacy decisions
  • Standard contractual clauses
  • The EU-U.S. Data Privacy Framework

For more information on these safeguards, contact us at contact@trypond.ai.

8. Your Rights and Choices (EEA, UK, Switzerland)

Subject to applicable law, you may have the right to:

  • Access, rectify, or erase your personal data.
  • Restrict or object to processing.
  • Withdraw consent previously given.
  • Receive a copy of your personal data in a portable format.

To exercise these rights, contact us at contact@trypond.ai. Identity verification may be required.

9. Children

Tidy is not directed to children under 13. If a child under 13 provides data, we encourage a parent or guardian to contact us to delete it.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically. Material changes will be communicated via Tidy or by email. The "Last Updated" date will reflect the most recent update.

11. Contact Us

For any questions or privacy-related requests, contact us at:

Pond AI Inc.

Email: contact@trypond.ai