Privacy Policy

Your data belongs to you. Autofy manages it on your behalf to deliver the service. We do not sell your data, we do not train external AI models on your private content, and we work hard to keep it secure.

This Privacy Policy explains what we collect, how we use it, when we share it, and the choices you have.

01The Short Version

02Who This Policy Covers

This Policy applies to users of Autofy across our product surfaces, including autofy.live and relay.day.

It covers both individual users and users acting on behalf of a company, team, organization, or other group. If you use Autofy through an organization account, some data may be controlled by that organization, depending on your role, workspace settings, connected services, and the type of data involved.

This Policy applies to the data we process through Autofy. It does not control the privacy practices of third-party services you choose to connect, such as ecommerce platforms, messaging platforms, email providers, website tools, payment processors, or other external services.

03What We Collect

We collect information in several ways: information you provide directly, content you upload or create, data from integrations you connect, and technical information generated when you use the service.

Account Information

When you create or manage an account, we may collect information such as:

• name;
• email address;
• password or authentication information, stored in a protected form;
• profile details you choose to provide;
• workspace, team, organization, or role information;
• account preferences and settings; and
• records of support or account-related communication.

Content You Upload or Create

Autofy stores and processes the content you choose to place in or generate through the platform. This may include:

• files and documents;
• notes, drafts, tasks, workflows, approvals, and knowledge entries;
• AI conversations, prompts, instructions, and generated outputs;
• personal AI memory and company-shared AI memory;
• product information, listings, descriptions, images, inventory data, and channel content;
• messages, emails, contact records, and other communication content you connect or import;
• analytics dashboards, reports, and operational data; and
• any other content you upload, create, connect, sync, or process through Autofy.

Integration Data

When you connect a third-party service to Autofy, we receive and process the data needed to operate that integration. Depending on the integration and permissions you grant, this may include:

• ecommerce product catalogs, listings, inventory, orders, fulfillment data, customer messages, and channel metadata;
• messaging platform conversations, sender information, timestamps, attachments, and related metadata;
• email messages, folders, labels, contacts, attachments, and account metadata;
• website, hosting, domain, content-management, or publishing data;
• task, workflow, approval, calendar, or productivity data; and
• authentication tokens or connection credentials needed to keep the integration working.

The exact data we receive depends on the third-party service, the permission scope you approve, your account settings, and the features you use.

Usage Information

We collect information about how the platform is used so we can maintain, secure, and improve Autofy. This may include:

• pages or screens viewed;
• features used;
• actions taken inside the product;
• search, upload, sync, and workflow activity;
• AI feature usage, such as model calls or generated task activity;
• errors, crashes, failed requests, and performance logs;
• support interactions; and
• general usage trends.

We use this information to debug problems, improve reliability, prevent abuse, understand which features are useful, and plan product improvements.

Device and Connection Information

Like most web services, we collect basic technical information when you use Autofy, such as:

• IP address;
• browser type;
• operating system;
• device type;
• language and region settings;
• timestamps;
• referring pages;
• session information;
• log data; and
• security-related signals.

This information helps us deliver the service, keep users signed in, detect abuse, investigate errors, and protect Autofy.

Billing Information

When you upgrade to a paid plan or purchase an add-on, payment details are collected and processed by our payment processor, Paddle, acting as merchant of record. Autofy does not store full payment card numbers.

We may receive billing-related information such as:

• plan selected;
• subscription status;
• billing email;
• invoice and receipt records;
• payment status;
• renewal, cancellation, refund, or dispute information; and
• tax or compliance-related billing details provided by the payment processor.

04How We Use Your Data

We use your data to operate Autofy and provide the service you signed up for. This includes using data to:

• create and manage your account;
• store, process, search, display, and organize your content;
• power AI features, long-term memory, document creation, content generation, automation, and workflows;
• sync data with third-party services you connect;
• support ecommerce, messaging, email, hosting, analytics, and operational features;
• maintain role-based access control, approvals, permissions, and workspace settings;
• provide customer support and respond to your requests;
• send service-related messages about your account, billing, security, product changes, and important updates;
• prevent fraud, abuse, spam, malware, unauthorized access, and misuse;
• monitor performance, fix bugs, improve reliability, and develop new features;
• understand usage trends and improve the product experience;
• enforce our Terms of Service and other policies; and
• comply with obligations that apply to us and protect the rights, safety, and property of Autofy, our users, and others.

We do not use your private content to train external public AI models.

05AI Features and Your Content

Autofy uses AI to help users search, summarize, write, reason, automate, classify, analyze, generate documents, draft replies, manage workflows, create listings, and work with long-term memory.

When you use an AI feature, Autofy may send relevant content to third-party AI providers so they can process the request and return an output. The content sent depends on the feature, your instructions, the context needed to complete the task, and the permissions available in your account or workspace.

For example, if you ask an AI feature to summarize a file, draft a reply, generate a product listing, or reason over company knowledge, the relevant file, message, product data, or knowledge context may be sent for processing.

We require third-party AI providers that process private user content for Autofy to protect that content and not use it to train their public models.

Long-Term Memory

Autofy includes long-term memory features. These features allow the AI to remember useful context over time, such as preferences, prior instructions, workspace knowledge, personal notes, company knowledge, and historical interactions.

Memory may be stored in Autofy's own systems so the service can recall context when you use AI features. Memory belongs to the user or organization associated with it, depending on where it was created and how it is shared.

Personal Memory and Company Memory

Autofy separates personal memory from company-shared memory.

Personal AI memory, personal files, and personal workspace content belong to the individual user. Company-shared memory, company files, shared workflows, shared integrations, and organization-managed data belong to the relevant organization.

Knowledge transfer between a person and an organization happens only with explicit consent from both sides, unless a separate written agreement or account configuration clearly says otherwise.

06Sharing Your Data

We do not sell your data.

We share data only in limited situations needed to operate Autofy, support your choices, protect the service, or meet valid obligations.

Service Providers

We may share data with service providers who help us run Autofy, such as providers for:

• cloud hosting and storage;
• AI inference and related AI infrastructure;
• payments and billing;
• analytics and product reliability;
• email delivery and service notifications;
• customer support;
• security, monitoring, and abuse prevention;
• backups and infrastructure operations; and
• internal business operations needed to provide the service.

These providers are allowed to use your data only for the services they provide to Autofy and must protect it under their agreements with us.

Third-Party Services You Connect

When you connect a third-party service, Autofy exchanges data with that service as needed to operate the integration.

For example, if you connect an ecommerce store, messaging account, email inbox, or website tool, Autofy may read, write, sync, update, send, receive, or display data through that service based on the permissions you approve and the features you use.

You are responsible for reviewing the privacy practices and terms of any third-party service you connect.

Organization Accounts

If you use Autofy as part of an organization workspace, certain account activity and content may be visible to workspace owners, administrators, managers, or other authorized members based on role permissions and workspace settings.

Organization administrators may be able to manage access, roles, integrations, shared content, workflows, billing, security settings, and company-owned data.

Legal, Safety, and Protection Reasons

We may disclose data when we reasonably believe it is necessary to:

• comply with a valid legal process or obligation;
• protect the rights, safety, or property of Autofy, our users, or others;
• investigate fraud, security issues, abuse, or policy violations;
• prevent harm or unauthorized access; or
• enforce our Terms of Service.

Business Transfers

If Autofy is involved in a merger, acquisition, financing, restructuring, sale of assets, or similar business transaction, user data may be transferred as part of that transaction. Where appropriate, we will provide notice if your data becomes subject to a materially different privacy policy.

07Data Retention

We keep data for as long as needed to provide Autofy, maintain your account, operate connected features, comply with obligations, resolve disputes, enforce agreements, prevent abuse, and maintain reasonable business records.

In general:

• account data is kept while your account is active;
• workspace data is kept while the workspace is active or as configured by the organization;
• uploaded content and AI memory are kept until deleted by the user, removed by an authorized workspace owner, or deleted through account closure;
• integration data is kept as needed to operate the integration and may be removed after disconnection, subject to backup and operational retention;
• billing records may be kept for legal, accounting, dispute, and payment-processing reasons;
• security logs and technical records may be kept for a limited period to protect the service; and
• backups may retain data for a limited period before they are overwritten or deleted.

When you delete your account or request deletion, we remove or anonymize your data within a reasonable period, except for information we need to keep for legal, billing, security, fraud prevention, backup, dispute, or legitimate operational reasons.

Retention periods may vary by data type, account type, workspace settings, integration behavior, and technical requirements. We aim to keep data no longer than necessary for the purposes described in this Policy.

08Your Rights and Choices

You have choices over your data. Depending on your account type, workspace role, and the nature of the data, you may be able to:

Access

You can request access to the data Autofy holds about you.

Export

You can request to export your content in a portable format where technically feasible.

Correction

You can update or correct inaccurate account information and certain content from your account settings or by contacting us.

Deletion

You can delete content, disconnect integrations, close your account, or request deletion of data associated with you, subject to reasonable limitations such as organization ownership, billing records, security logs, backups, and legal or operational retention needs.

Integration Controls

You can choose whether to connect third-party services. You can also disconnect integrations, although doing so may disable related Autofy features or workflows.

AI Memory Controls

Where available, you can manage, edit, delete, or limit certain AI memory. Organization-controlled memory may be managed according to workspace roles and permissions.

Communication Preferences

You can opt out of non-essential emails. We may still send service-related messages such as security notices, billing messages, account alerts, and important product or policy updates.

To make a privacy request, contact us at privacy@autofy.live. We may need to verify your identity or account authority before completing the request.

09Children's Privacy

Autofy is not intended for children under 13, or the equivalent minimum age in your context. We do not knowingly collect personal information from children.

If you believe a child has provided personal information to Autofy, contact us at privacy@autofy.live so we can review and take appropriate action.

10Security

We use reasonable technical, organizational, and administrative measures to protect data. These may include:

• encryption in transit and at rest where applicable;
• access controls and permission management;
• authentication and account-protection measures;
• infrastructure monitoring;
• logging and abuse detection;
• backup and recovery practices;
• internal access limits;
• security reviews; and
• incident response procedures.

No system is perfectly secure. We cannot guarantee that unauthorized access, data loss, outages, misuse, or security incidents will never happen.

If we become aware of a security incident that affects your data, we will investigate and notify affected users when appropriate and in line with applicable obligations.

You are responsible for keeping your account secure, using strong authentication practices, protecting your devices, managing workspace permissions carefully, and controlling access to connected third-party services.

11International Data Transfers

Autofy operates as an online service. Your data may be processed, stored, accessed, or transferred in places other than where you live or where your organization is located.

When we work with service providers, we take steps designed to protect user data through appropriate contractual, technical, and organizational safeguards.

By using Autofy, you understand that your data may be processed in different locations as needed to provide the service.

12Cookies and Similar Technologies

Autofy uses cookies and similar technologies to operate and improve the service. These may be used to:

• keep you signed in;
• remember preferences;
• secure your session;
• understand how users move through the product;
• measure performance and errors;
• prevent abuse; and
• improve the product experience.

Autofy does not use third-party advertising trackers in the core product surfaces.

You can control cookies through your browser settings. If you block or delete cookies, some features may not work correctly.

13Changes to This Policy

We may update this Privacy Policy from time to time as Autofy changes, as our data practices change, or as legal, technical, or operational needs change.

If we make material changes, we will provide notice in a reasonable way, such as through the platform, by email, or through an account notice.

The Effective date at the top of this Policy shows when this version became effective. If you continue using Autofy after an updated Policy takes effect, your use of the service will be handled under the updated Policy.

14Contact

For privacy questions, data requests, or concerns, contact us at privacy@autofy.live.