Privacy Policy

Enrich ("we", "our", or "us") operates the Enrich mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the App. Please read this policy carefully. By using the App, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

1.1 Information You Provide

• Account Information: When you create an account, we collect your email address, name, job title, company name, phone number, and LinkedIn URL.
• Business Card Data: When you create or scan business cards, we collect contact details including names, titles, companies, phone numbers, email addresses, and LinkedIn profiles.
• Audio Recordings: When you use the AI Note Taker feature, we temporarily process audio recordings of conversations to generate transcriptions and AI-powered meeting notes. Audio files are processed and then deleted from our servers after transcription is complete.
• Invite Codes: We collect invite codes used to access the App.

1.2 Information Collected Automatically

• Device Information: We generate and store a unique device identifier to associate your data with your device.
• Location Data: With your permission, we may collect your approximate location to tag where business card exchanges or meetings occurred. Location collection is optional and only occurs when you explicitly enable it.

1.3 Information from Third-Party Services

• Contact Enrichment: When you use the Enrich feature, we may retrieve additional professional information about your contacts (such as work email addresses and phone numbers) from third-party data providers to enhance your contact records.

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve the App and its features
• Process and digitize business card information using AI-powered optical character recognition (OCR)
• Generate AI-powered contact analysis, fit scores, and synergy suggestions
• Transcribe audio recordings and generate meeting notes and action items
• Enable contact enrichment with professional information
• Generate and display QR codes for sharing your digital business card
• Send transactional emails related to your account
• Manage invite-based access to the App
• Monitor and analyze usage trends to improve the App experience

3. Third-Party Services and SDKs

We integrate the following third-party services and SDKs into our App. Each service receives only the minimum data necessary for its function. Below we describe each partner, what data is shared with them, why, and how they handle it.

3.1 OpenAI (AI Processing)

Purpose: Business card OCR (optical character recognition), contact analysis, fit scoring, synergy suggestions, and AI-generated summaries.

Data shared:

• Business card images (for text extraction)
• Contact names, titles, and company names (for analysis and fit scoring)
• Your professional profile context (for personalized analysis)

Data handling: Data sent via the API is not used by OpenAI to train their models. Data is processed in transit and not stored beyond the API request lifecycle. All transmission is encrypted via TLS.

Privacy policy: openai.com/policies/privacy-policy

3.2 AssemblyAI (Audio Transcription)

Purpose: Audio transcription with speaker diarization (identifying different speakers) and AI-powered conversation analysis via LeMUR (using Claude 3.5 Haiku).

Data shared:

• Audio recordings of conversations
• Transcription text (for AI analysis of conversation type, action items, and summaries)

Data handling: Audio files are uploaded to AssemblyAI's secure servers for processing. By default, AssemblyAI deletes audio files and transcripts after processing is complete. Audio data is not used to train AssemblyAI's models. All data is encrypted in transit (TLS) and at rest (AES-256).

Privacy policy: assemblyai.com/privacy-policy

3.3 FullEnrich (Contact Enrichment)

Purpose: Enriching contact records with professional information such as verified work email addresses and mobile phone numbers.

Data shared:

• Contact first name, last name, and company name or domain
• LinkedIn profile URLs (when available)

Data handling: Only the minimum contact identifiers needed for lookup are sent. FullEnrich returns enriched data which is stored in your account. FullEnrich does not retain your query data beyond the enrichment request.

Privacy policy: fullenrich.com/privacy-policy

3.4 Emailit (Transactional Email)

Purpose: Sending transactional emails including access codes, invite codes, and account notifications.

Data shared:

• Recipient email address
• Email content (access codes, notifications)

Data handling: Email data is processed for delivery and subject to Emailit's data retention policies. Emails are transmitted securely.

3.5 Expo and React Native SDKs

Purpose: The App is built with Expo and React Native, which include the following SDKs that access device capabilities:

• expo-camera: Accesses the device camera for scanning business cards. Camera data is processed locally and only card images are sent to our server for OCR.
• expo-image-picker: Allows selecting images from the device photo library for card scanning.
• expo-location: Accesses device GPS for optional location tagging of meetings and card exchanges. Location data is only collected when you explicitly enable this feature.
• expo-audio: Accesses the device microphone for conversation recording. Audio is recorded locally and uploaded to our server for transcription processing.
• expo-clipboard: Allows copying sharing links to the device clipboard.
• expo-haptics: Provides tactile feedback. No data is collected.
• expo-secure-store: Stores authentication tokens securely on the device using the platform's native keychain/keystore.
• @react-native-async-storage: Stores user preferences and cached data locally on the device.

Data handling: Expo SDKs process data locally on-device. Expo does not collect or transmit personal data through these SDKs. No analytics or tracking SDKs are included.

Privacy policy: expo.dev/privacy

3.6 Neon (Database Hosting)

Purpose: Cloud-hosted PostgreSQL database for storing account data, contacts, recordings metadata, and transcriptions.

Data stored:

• All account and contact information described in Section 1
• Transcription text and AI-generated notes
• Enrichment results

Data handling: Data is encrypted at rest and in transit. Access is restricted to our application servers via secure credentials.

Privacy policy: neon.tech/privacy

4. Data Storage and Security

Your data is stored on secure servers. We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encrypted data transmission (HTTPS/TLS)
• Secure database storage with access controls
• Temporary storage of audio files, which are deleted after transcription processing
• Device-based authentication for API access

5. Data Retention

• Account and Contact Data: Retained as long as your account is active or as needed to provide services.
• Audio Recordings: Temporarily stored during transcription processing and deleted after transcription is complete.
• Meeting Notes and Transcriptions: Retained as part of your account data until you delete them or your account.
• Enrichment Data: Retained as part of your contact records.

6. Your Rights and Choices

You have the following rights regarding your data:

• Access: You can view your contact data and meeting notes within the App at any time.
• Deletion: You can delete individual contacts and recordings from within the App. To request complete account deletion, contact us at the email below.
• Location: You can enable or disable location services for the App through your device settings at any time.
• Microphone: You can enable or disable microphone access through your device settings. The App will not record without your explicit permission.
• Camera: You can enable or disable camera access through your device settings. Camera is used only for scanning business cards.

7. Children's Privacy

The App is not intended for use by children under the age of 17. We do not knowingly collect personal information from children under 17. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can take appropriate action.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States, where our third-party service providers operate. These countries may have data protection laws that differ from the laws of your country. By using the App, you consent to the transfer of your information to these countries.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by updating the "Last Updated" date at the top of this policy. Your continued use of the App after any changes constitutes your acceptance of the updated policy.

10. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: kashif.bhaor@gmail.com

Website: enrichcard.com