logo
Nimbus.ai
Log in

Privacy Policy

Last updated: December 6, 2025

1. Introduction

Welcome to Nimbus.ai. We respect your privacy and are committed to protecting the personal information you share with us. This policy explains how we collect, use, and safeguard data when you use our SaaS platform, whether you are a direct customer (Dashboard User) or an individual interacting with our AI support widgets (End-User).

2. What Information We Collect

A. Authenticated App Users (Dashboard Users)

For customers who sign up to manage organizations and configure AI agents, we store the following data in our secure Convex database:

  • Personal Identifiers: Name, Email address, and Profile picture.
  • Account Data: Organization settings, billing preferences, and API configurations.

B. Customer Support End-Users

When an end-user interacts with a Nimbus.ai chat widget or voice agent, we automatically collect specific metadata to facilitate troubleshooting, analytics, and context for the AI agent. This includes:

  • Device Information: Device type (mobile/desktop), Operating System, and Browser version.
  • Location & Context: Country, Language, Timezone, Screen size, and Viewport dimensions.
  • Technical Data: Cookie availability and network status.
  • Session Data: Temporary conversation history between the user and the AI/Human agent.

3. How We Use Your Data

We use the collected data strictly for the following purposes:

  • Service Provision: To provide the chat and voice support functionality.
  • Authentication: To securely log you into the Nimbus.ai dashboard.
  • Improvement: To analyze usage patterns and improve AI response accuracy.
  • Support: To allow human agents to understand the technical context of an end-user (e.g., knowing a user is on mobile helps explain interface issues).

4. What We Don't Collect

We practice data minimization. Specifically regarding third-party integrations:

Vapi API Keys

We do not store your Vapi private API keys in our primary database or expose them to the client. All sensitive keys are stored in AWS Secrets Manager, fully encrypted and isolated from general application logic.

5. Data Security

We implement industry-standard security measures, including encryption in transit (HTTPS/TLS) and encryption at rest. Our infrastructure is built on AWS and Convex, leveraging their compliance and security frameworks to protect your data.

6. Third-Party Services

Our service integrates with third-party providers. Please review their privacy policies:

  • Clerk: For Authentication and Authorization.
  • Vapi: For voice AI processing.
  • Convex: For real-time database and backend functions.
  • AWS: For secure secret management and infrastructure.
Nimbus.AI