Privacy Policy
Effective date: April 2, 2026
Introduction
This Privacy Policy describes how Ngon AI Inc. ("Ngon AI" or "Company" or "our" or "we" or "us") collects, uses, and discloses information associated with an identified or identifiable individual (referred to in this Privacy Policy as "Personal Information" or "Personal Data") and what choices you have around this activity. If you have any questions, please don’t hesitate to contact us.
We may change this Privacy Policy from time to time, including as required to keep current with applicable laws and regulations, new technologies and security standards. When we do, we will post the updated policy on our website located at https://www.ngon.ai. If we change the policy in a material and retroactive manner, we will provide appropriate notice to you.
1. Scope and Applicability of this Privacy Policy
This Privacy Policy applies to the Personal Information that Ngon AI collects in the course of our business as a data controller, including when you:
- visit our website (https://www.ngon.ai), mobile sites, social media sites, and other Ngon AI sites (collectively, the "Sites")
- communicate or interact with us directly (e.g. customer support, sales calls, events)
- use our software, platforms, and technology (the "Services") for your own independent purposes
Your use of Ngon AI's Services is at all times subject to our Terms of Service (the "Terms"), including the processing of Personal Information contained in the data customers upload to the Services ("Customer Data"). Any terms we use in this Privacy Policy without defining them have the definitions given to them in the Terms of Service.
This Privacy Policy does not apply when Ngon AI collects Personal Information as a data processor on behalf of a customer of the Services, nor to any third-party applications, software, products, or services that integrate with the Services ("Third-Party Services"), though it may reference those activities for purposes of clarity. This Privacy Policy does not cover the practices of companies we don't own or control or people we don’t manage.
By accessing the Sites or Services on any computer, mobile phone, tablet, or other device (collectively, "Device") or otherwise interacting with our Company, you agree to the terms of this Privacy Policy. If you do not agree to the policy, please do not use the Sites or Services. We encourage you to periodically review our Privacy Policy to stay informed about how we are using the information we collect.
2. Information We Collect and Receive
The table below details the categories of Personal Data we collect.
| Category of Personal Data Collected | Source | Purpose for Collection | Categories of Recipients |
|---|---|---|---|
Account / contact information: such as name, email, physical address, phone number, birthday, passwords, domains, professional details, account preferences, and other information you provide. | From visitors to our Sites, users of our Services, and anyone who contacts us, signs up for emails or other resources, or otherwise interacts with us. | To communicate with and respond to visitors and our customers about our business operations, including verification of identity or to meet legal obligations. | We may share this information with select marketing, information technology, or other service providers and partners. |
Billing information: such as billing address, billing contact details, and payment information necessary to process payments (including payment card details or bank account information), as well as transaction and invoice details. | From customers who purchase our Services, and from our payment processor providers involved in processing payments. | To process payments, manage subscriptions and invoices, provide customer support, and help prevent and detect fraud, unauthorized transactions, or other illegal activity; and to meet legal and accounting obligations. | Our payment processor providers who help us process payments, manage subscriptions, and support our billing operations. |
Usage information: such as your IP address, MAC address or other device identifier, HTTP Referrer information, the kind of browser or computer you use, pages and content that you visit, what you click on, access location like state and country, date and time of your visit, web pages you linked to or from, browsing data, and log data (e.g., server logs) generated when you access and use our Sites or Services. | From our Sites or Services, and your interactions with our Sites or Services, including through the use of cookies, logs, and other tracking technologies explained further below. | To evaluate usage, improve quality, or improve performance for our Sites and Services; to protect the security and integrity of our Sites, Services, and business, such as preventing fraud, hacking, and other criminal activity or to meet legal obligations. | Our third party service providers who help us with security, fraud protection, and website analytics. |
In some jurisdictions, such as the European Union and United Kingdom, individuals may have the right to opt-in or withdraw consent for certain uses. If you reside in such jurisdictions, you may have additional rights which are detailed in "Access, Correction, & Deletion" below.
When you visit our Sites or Services, we may collect certain non-personal information from you, including your Internet Protocol (IP) address, MAC address, browser type, operating system, device-identifying information, the specific web pages visited immediately preceding your connection, and the domain name from which you accessed our Sites or Services. We may also collect log data (e.g., server logs), which may include the date and time of your requests, pages viewed, links clicked, approximate location derived from your IP address, and information about your device and browser. In addition, we may collect information about your browsing behavior as you engage with our Sites or Services, such as the date and time you visit, the areas or pages you visit, the amount of time you spend viewing certain pages, the number of times you return, and other clickstream data as you use our Sites or Services. We may also use such non-personal or deidentified, aggregated information for statistical analysis, research, and other purposes.
3. Cookie Policy
A cookie is a small data text file, which is stored on the hard drive of your computer or mobile device. Each cookie is unique to your web browser. It will contain some anonymous information such as a unique identifier, website’s domain name, and some digits and numbers. Cookies cannot be used to run programs or deliver viruses to your computer. At no time will our cookies collect your personally identifiable information. When you visit our Sites or Services, we will store certain types of persistent cookies on your computer in order to authorize access to our private content and to facilitate and customize your use of our Sites or Services. A persistent cookie remembers information, settings, preferences, or sign-on credentials that the user has previously saved.
Essential cookies
Essential Cookies are required for providing you with features or services that you have requested. For example, these cookies let us recognize that you have created an account and have logged into that account.
Functionality cookies
Functionality cookies let us operate our Sites or Services in accordance with the choices you make. For example, we will recognize your username and remember the choices that you made to your account during future visits.
Analytical cookies
These cookies enable us and third-party services to collect aggregated data for statistical purposes on how our visitors use our Sites or Services. These cookies do not contain or collect Personal Information and are merely used to help us improve your user experience of the Sites or Services.
Once you leave our Sites or Services, our persistent cookies remain on your hard drive. This helps create a convenient and faster website experience.
You are always free to decline or restrict our cookies through your browser setting. But, due to the nature of our cookies, some parts of our Sites or Services may not work properly. You can find general information on the Internet about cookies and details on how to delete them from your computer and mobile devices.
4. Internet-based advertising
You can opt out of interest-based advertising from third-party providers who follow the Digital Advertising Alliance's Self-Regulatory Principles for Online Behavioral Advertising at www.aboutads.info/choices.
5. Your Choices
You may at any time:
- Stop receiving marketing or promotional emails, direct mail, phone, and mobile marketing communications;
- Update and correct your Personal Information; and
- Request removal of information you post on our digital properties; in some cases, we may not be able to remove your content or Personal Information, in which case we will let you know if we are unable to do so and why.
To do any of these, let us know by one of these methods:
- Follow the directions in a marketing email, direct mail, or mobile communication that you receive from us; and
- Provide your request and current contact information through one of the contact methods listed under "Contact Us" below
6. Disclosure of Information
We may disclose information collected from and about you as follows: (1) to our related companies and service providers, to perform a business, professional or technical support function for us; (2) to our business, sales and marketing partners and affiliates, advertisers or other third parties, who may contact you with their own offers; (3) as necessary if we believe that there has been a violation of the Terms of Service or of our rights or the rights of any third party; (4) to respond to legal process (such as a search warrant, subpoena or court order) and provide information to law enforcement agencies or in connection with an investigation on matters related to public safety, as permitted by law, or otherwise as required by law; and (5) in the event that our Company or substantially all of its assets are acquired, or there is a re-structuring, your Personal Information may be one of the transferred assets. We may also disclose your Personal Information with your express consent. We may share aggregate, deidentified, or non-personally identifiable information about Sites' or Services' users with third parties.
Please note that if you voluntarily submit any Personal Information for posting on the Sites, such as a review or a blog post, the information becomes publicly available and can be collected and used by others, so you should use care before posting information about yourself online.
7. Retention of Personal Information
We retain Personal Information that we receive for as long as necessary to fulfill the purpose(s) for which the information was collected, to provide our services and products, to pursue legitimate business purposes, to enforce our agreements, and comply with all applicable laws.
8. Security
We maintain commercially reasonable and appropriate measures designed to maintain Personal Information we collect in a secure manner. We have taken certain physical, electronic, and administrative steps to safeguard and secure the information we collect from visitors to our Sites and Services.
Unfortunately, however, no data transmission over the Internet, nor any data storage system, is 100% secure. While we strive to protect your information, we cannot ensure or warrant the security of such information on our or third-party sites. If you have reason to believe that your interaction with us is no longer secure, please immediately notify us using the contact options on our "Contact Us" page.
9. Children’s Privacy
The Sites and Services are not directed to children (anyone under 18 years of age), nor do we knowingly solicit or collect any Personal Information from children without verifiable parental consent, and we will promptly investigate and then delete such information from our systems if warranted. If you are a parent or legal guardian of a child and you become aware that your child has provided us with Personal Information, please contact us promptly using the contact information detailed in the "Contact Us" section below. Parents and legal guardians always have the right to inspect any information that we may have inadvertently collected from their child, and have the right to have us delete it. TO THE MAXIMUM EXTENT PERMITTED BY LAW, EACH OF THE PARTIES HERETO HEREBY IRREVOCABLY WAIVES ANY AND ALL RIGHT TO TRIAL BY JURY IN ANY LEGAL PROCEEDING ARISING OUT OF OR RELATED TO THIS AGREEMENT OR THE TRANSACTIONS CONTEMPLATED HEREBY.
Customer agrees that in the event of a breach or threatened breach of the scope of the access rights herein or of its obligations of confidentiality, Company will suffer irreparable harm for which it will have no adequate monetary remedy, and shall be entitled to seek injunctive and other equitable relief for such breach, in addition to and not in limitation of any other legal or equitable remedies to which it would otherwise be entitled.
10. Basis for Processing Personal Information
We may process Personal Information under the following conditions:
- Consent: You provided your consent for one or more specific purposes.
- Performance of a contract: Provision of Personal Information is necessary for the performance of an agreement with you and/or for any pre-contractual obligations.
- Legal obligations: Processing Personal Information is necessary for compliance with a legal obligation to which the Company is subject.
- Legitimate interests: When we have a business or commercial reason to use your information, so long as this is not overridden by your own rights and interests
The table below explains what we use (process) your Personal Information for and our reasons for doing so:
| What we use your Personal Information for | Our reasons |
|---|---|
| To provide products and/or services to you. | For the performance of our contract(s) with you or to take steps at your request before entering into a contract. |
| To process payments, billing, and subscription management. | For the performance of our contract(s) with you or to take steps at your request before entering into a contract. To comply with our legal and regulatory obligations. |
| To prevent and detect fraud against you or our Company. | For our legitimate interests or those of a third party, i.e. to minimize fraud that could be damaging for us and for you. |
Gathering and providing information required by or relating to audits, enquiries or investigations by regulatory bodies. | To comply with our legal and regulatory obligations. |
Operational reasons, such as improving efficiency, training and quality control. | For our legitimate interests or those of a third party, i.e. to be as efficient as we can. |
Ensuring the confidentiality of commercially sensitive information. | For our legitimate interests or those of a third party, i.e. to protect trade secrets and other commercially valuable information. To comply with our legal and regulatory obligations. |
| Statistical analysis to help us manage our business. | For our legitimate interests or those of a third party, i.e. to be as efficient as we can. |
| Preventing unauthorized access and modifications to systems. | For our legitimate interests or those of a third party, i.e. to prevent and detect unauthorized and/or criminal activity that could be damaging for us and for you. To comply with our legal and regulatory obligations. |
| Updating and enhancing customer records. | For the performance of our contract(s) with you or to take steps at your request before entering into a contract. To comply with our legal and regulatory obligations. For our legitimate interests or those of a third party. |
| Corporate filings / statutory returns | To comply with our legal and regulatory obligations. |
Ensuring safe working practices, staff administration and assessment. | To comply with our legal and regulatory obligations. For our legitimate interests or those of a third party, e.g. to make sure we are following our own internal procedures and working efficiently. |
Marketing our existing and new products and services and those of selected third parties to: existing and former customers; third parties who have previously expressed an interest in our products or services; third parties with whom we have had no previous dealings. | For our legitimate interests or those of a third party, i.e. to promote our business to existing and former customers. |
11. Promotional Communications
We may use your Personal Information to send you updates (by email, text message, telephone or post) about our products and services, including exclusive offers, promotions or new products and services.
We have a legitimate interest in processing your Personal Information for promotional purposes (see above "Basis for Processing Personal Information"). This means we do not usually need your consent to send you promotional communications. However, where consent is needed, we will ask for this consent separately and clearly.
You have the right to opt out of receiving promotional communications at any time by contacting us by using the contact information detailed in "Contact Us" below;
12. Third-Party Websites
The Sites or Services may contain links to third-party websites, such as social media sites like Facebook, Twitter, LinkedIn, and Instagram, which may have privacy policies that differ from our own. We are not responsible for the activities and practices that take place on these websites. Accordingly, we recommend that you review the privacy policy posted on any external site before disclosing any Personal Information. Please contact those websites directly if you have any questions about their privacy policies.
13. Where Your Personal Information is Held
Personal Information may be held at our offices and those of our third party service providers, representatives and agents as described above (see "Disclosure of Information").
Some of these third parties may be based outside the European Economic Area. For more information, including on how we safeguard your Personal Information when this occurs, see "Transferring Your Personal Information Out of the EEA".
14. Transferring Your Personal Information Out of the EEA
We may transfer your Personal Data to countries other than the one in which you live, including transfers to the United States. To the extent that Personal Information is transferred abroad, we will ensure compliance with the requirements of the applicable laws in the respective jurisdiction in line with our obligations.
To deliver services to you, it is sometimes necessary for us to share your Personal Information outside the European Economic Area (EEA), e.g., your information, including Personal Information, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.
Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.
The Company will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Information will take place to an organization or a country unless there are adequate controls in place including the security of your data and other Personal Information.
If you would like further information, please contact us or our Data Protection Officer (see "Contact Us" below).
15. Access, Correction, & Deletion
We respect your right to access and correct your Personal Information. You may exercise your rights, subject to applicable laws, to request that we delete or restrict access to your Personal Information. We may need to retain it for legally permitted purposes and this will be explained to you if necessary.
If you need assistance correcting or updating your Personal Information, or would like to request that we delete your Personal Information, please contact us using the contact information detailed in the "Contact Us" section below.
16. California Privacy Rights Disclosure
If you are a California resident, the California Consumer Privacy Act of 2018 (CCPA), as amended by the California Privacy Rights Act of 2020 (CPRA), the California Online Privacy Protection Act (CalOPPA), and certain other privacy and data protection laws, as applicable, provide you additional rights with the respect to your personal information. California law permits our customers who are California residents to request certain information about our disclosure of Personal Information to third parties for their own direct marketing purposes during the preceding calendar year. This request is free and may be made once a year. To make such a request, please write to us at the following address:
Ngon AI Inc.
ATTN: General Counsel
1937 Page St.
Apt 4
San Francisco, CA 94117 USA
legal@ngon.ai
If you are a California resident, California law provides you with the following additional rights with respect to your Personal Information:
- The right to know what Personal Information we have collected, used, disclosed and sold about you. You may submit a request to know by using the contact information detailed in this Section. You also may designate an authorized agent to make a request for access on your behalf.
- The right to request that we delete any Personal Information we have collected about you. You may submit a request for deletion by using the contact information detailed in this Section. You also may designate an authorized agent to make a request for deletion on your behalf.
California residents may also have the right not to be subject to automated decision-making, including profiling, where it would have a legal or similarly significant effect on them; and the right to data portability with regard to the data they provided to us. If you exercise any of these rights and submit a request to us, we may verify your identity. We also may use a third party verification provider to verify your identity. Your exercise of these rights will have no adverse effect on the price and quality of our goods or services. At present we have not sold Personal Information about our users; nor do we have any plans to do so in the future.
17. Your Rights
We want you to be in control of how your Personal Information is used by us. Please note that our ability to access or control your Personal Information will be limited, as required or permitted by applicable law. Depending on your jurisdiction, you may have the right to be informed of, and request access to, the Personal Information we process about you; update and correct inaccuracies in that information; have the information restricted or deleted; object or withdraw your consent to certain uses of data; and lodge a complaint with your local data protection authority. You may also have the right not to be subject to automated decision-making, including profiling, where it would have a legal or similarly significant effect on you; and the right to data portability with regard to the data you provided to us. We will not discriminate against you for the exercise of these rights.
If you would like to exercise any of the rights described above, please send us a request by using the contact information in "Contact Us" below. In your message, please indicate the right you would like to exercise and your jurisdiction. We may ask you for additional information to confirm your identity and for security purposes, before disclosing the Personal Information requested to you. We reserve the right to charge a fee where permitted by law, for instance if your request to us is manifestly unfounded or excessive in our sole opinion. We may not always be able to fully address your request, for example if it would impact the duty of confidentiality we owe to others, or if we are legally entitled to deal with the request in a different way.
18. How to Exercise Your Rights
If you would like to exercise any of your rights as described in this Privacy Policy, please contact us using the contact information detailed in the "Contact Us" section below.
Please note that you may only make a CCPA-related data access or data portability disclosure request twice within a 12-month period.
If you choose to contact directly by phone, email, or in writing, you will need to provide us with:
- Enough information to identify you (e.g., your full name, address and customer or matter reference number);
- Proof of your identity and address (e.g., a copy of your driving license or passport); and
- A description of what right you want to exercise and the information to which your request relates.
We are not obligated to make a data access or data portability disclosure if we cannot verify that the person making the request is the person about whom we collected information, or is someone authorized to act on such person’s behalf.
Any Personal Information we collect from you to verify your identity in connection with your request will be used solely for the purposes of verification.
19. Right to Lodge Complaints
We are transparent about the ways in which we collect and use Personal Information, and welcome your questions and concerns. We hope that we or our Data Protection Officer can resolve any query or concern you raise about our use of your information.
If you have any concern or complaint about the way we handle your Personal Information, please contact us using the contact information detailed in the "Contact Us" section below. To the extent you believe we have not addressed your concerns or otherwise choose to do so, you have the right to lodge a complaint with a supervisory authority in the country where you reside.
If you are a United States resident, you may contact the U.S. Federal Trade Commission regarding your concerns. For more information, please see: https://www.ftc.gov/news-events/news/press-releases/2014/05/file-consumer-complaint-ftc-your-mobile-device.
The General Data Protection Regulation also gives you right to lodge a complaint with a supervisory authority, in the European Union (or European Economic Area) state where you work, normally live, or where any alleged infringement of data protection laws occurred. For more information, please see: https://commission.europa.eu/law/law-topic/data-protection/reform/rights-citizens/redress/what-should-i-do-if-i-think-my-personal-data-protection-rights-havent-been-respected_en.
20. Visitors from Outside the United States — Cross-Border Transfer
The Sites and Services are hosted in the United States. If you are visiting the Sites or using the Services from outside the United States, your information may be transferred to, stored and processed in the United States or other countries in accordance with this Privacy Policy. The data protection and other applicable laws of the United States or other countries may not be as comprehensive as those laws or regulations in your country or may otherwise differ from the data protection or consumer protection laws in your country. Your information may be available to government authorities under lawful orders and law applicable in such jurisdictions. By using the Sites, using the Services, or providing Personal Information to us, you consent to transfer of your information to our facilities as described in this Privacy Policy.
21. GDPR and Applicable Laws
If our handling of your Personal Information is governed by regulations and laws such as the General Data Protection Regulation (GDPR), UK Data Protection Act, or Brazilian General Data Protection Law, Ngon AI processes your Personal Information based on our legitimate interests (as explained above). We may also use your Personal Information for marketing purposes. You can ask us to stop using your Personal Information for these purposes at any time.
22. Contact Us
If you have questions about this Privacy Policy or our practices, or if you are seeking to exercise any of your statutory rights, you can contact Ngon AI using the details below.
Our contact details:
Ngon AI Inc.
ATTN: General Counsel
1937 Page St.
Apt 4
San Francisco, CA 94117 USA
legal@ngon.ai
Our Data Protection Officer's contact details:
Ngon AI Inc.
ATTN: Data Protection Officer
1937 Page St.
Apt 4
San Francisco, CA 94117 USA
security@ngon.ai
If you would like this notice in another format (for example: audio, large print, braille) please contact us at the above.