Skip to main content
Mridu AI

Privacy Policy

Your privacy is fundamental to us. Learn how we protect and handle your data in our AI platform.

Last Updated: August 5, 2025

Effective Date: August 5, 2025

Table of Contents

1. Overview

Mridu AI ("we," "our," or "us") is committed to protecting your privacy and ensuring transparency in how we collect, use, and protect your personal information. This Privacy Policy explains our practices regarding data handling in our conversational AI platform that provides enterprise-grade, multilingual AI agents for India's mid-market businesses.

Our platform leverages advanced technologies including LangGraph-based agentic workflows, hyper-local Large Language Models (LLMs), and voice AI to deliver intelligent conversational experiences in 22+ Indian languages. We understand the sensitive nature of conversational data and implement industry-leading privacy and security measures.

Our Commitment

  • • Transparent data practices
  • • Minimal data collection
  • • Strong security measures
  • • User control and rights

Compliance Standards

  • • GDPR (EU)
  • • CCPA (California)
  • • PIPEDA (Canada)
  • • IT Act 2000 (India)

2. Information We Collect

2.1 Account and Business Information

When you create an account or use our services, we collect:

  • Business Details: Company name, business type, industry, size, contact information
  • User Information: Name, email address, phone number, job title, department
  • Account Credentials: Username, encrypted passwords, authentication tokens
  • Billing Information: Payment details, billing address, tax information (processed securely through third-party providers)

2.2 Conversational Data

Important: This is the core data that powers our AI agents and requires special attention under privacy laws.

Voice Data

  • • Audio recordings of conversations
  • • Voice patterns and characteristics
  • • Speech-to-text transcriptions
  • • Language and accent detection data

Text Data

  • • Chat transcripts and messages
  • • Customer queries and responses
  • • Intent and entity recognition data
  • • Conversation context and history

2.3 Technical and Usage Data

  • System Logs: API calls, response times, error logs, performance metrics
  • Device Information: IP address, device type, browser type, operating system
  • Usage Analytics: Feature usage, session duration, user behavior patterns
  • Integration Data: Third-party service connections, webhook configurations

2.4 Training and Model Improvement Data

To improve our hyper-local LLMs and conversational AI:

  • • Anonymized conversation patterns
  • • Language model training data (de-identified)
  • • Performance feedback and corrections
  • • Regional language usage patterns

Note: All training data is anonymized and aggregated to prevent identification of individuals or specific businesses.

3. How We Use Your Information

Primary Service Delivery

  • • Provide conversational AI agent services
  • • Process customer queries in real-time
  • • Maintain conversation context and memory
  • • Support 22+ Indian languages and regional dialects
  • • Enable voice-first interactions with sub-2-second response times

Platform Improvement

  • • Train and fine-tune our hyper-local LLMs
  • • Improve language understanding and generation
  • • Enhance agentic workflow capabilities
  • • Optimize response accuracy and relevance
  • • Develop new features and capabilities

Business Operations

  • • Account management and customer support
  • • Billing and payment processing
  • • Security monitoring and fraud prevention
  • • Analytics and reporting for your business insights
  • • Compliance with legal and regulatory requirements

Legal Basis for Processing (GDPR)

Contract Performance:

Processing necessary to provide our AI services

Legitimate Interest:

Service improvement, security, and business operations

Consent:

Marketing communications and optional features

Legal Compliance:

Regulatory requirements and legal obligations

4. AI and Machine Learning Specific Practices

AI Transparency: As an AI-first company, we believe in being transparent about how our artificial intelligence systems work with your data.

4.1 LangGraph Agentic Workflows

Our agentic AI systems process conversational data through:

  • State Management: Temporary storage of conversation context during active sessions
  • Decision Trees: Automated routing based on user intent and conversation flow
  • Memory Systems: Short-term memory for conversation continuity (session-based)
  • Loop Mechanisms: Iterative problem-solving without permanent data storage

Conversation state is automatically cleared after session termination unless explicitly saved for business continuity purposes.

4.2 Hyper-Local LLM Training

Data Anonymization

  • • Remove personally identifiable information
  • • Strip business-sensitive details
  • • Aggregate conversation patterns
  • • Apply differential privacy techniques

Model Training Process

  • • Use only anonymized, aggregated data
  • • Focus on language patterns, not content
  • • Implement federated learning where possible
  • • Regular model audits for bias and privacy

4.3 Voice AI and Deepgram Integration

Voice Data Handling

Voice data requires special protection due to its biometric nature:

  • Real-time Processing: Voice is processed in real-time and not stored permanently unless requested
  • Transcription Only: We typically retain only text transcriptions, not audio files
  • Third-party Processing: Voice processing may involve Deepgram (see Section 5 for details)
  • Automatic Deletion: Audio files are automatically deleted after 30 days unless business retention is required

4.4 Automated Decision Making

Our AI systems make automated decisions for:

  • • Conversation routing and intent classification
  • • Response generation and content suggestions
  • • Language detection and translation
  • • Sentiment analysis and escalation triggers

Your Rights: You have the right to request human review of automated decisions that significantly affect your business operations.

5. Data Sharing and Disclosure

Our Principle: We do not sell your personal data. We only share data as necessary to provide our services or as required by law.

5.1 Essential Service Providers

ProviderPurposeData SharedPrivacy Measures
DeepgramSpeech-to-Text processingVoice audio filesSOC 2 certified, GDPR compliant
Sarvam AIText-to-Speech generationText content for synthesisIndia-focused, privacy-first
Cloud InfrastructureHosting and data storageAll platform dataEnterprise-grade security, encryption
Payment ProcessorsBilling and paymentsPayment and billing informationPCI DSS compliant

5.2 Legal and Compliance Disclosures

We may disclose your information when required by law or to:

  • • Comply with legal processes, court orders, or government requests
  • • Protect our rights, property, or safety, or that of our users
  • • Investigate fraud, security breaches, or other violations
  • • Enforce our terms of service or other agreements

We will notify you of such disclosures unless prohibited by law or court order.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will provide notice and ensure the receiving party maintains equivalent privacy protections.

6. Data Security and Retention

6.1 Security Measures

Technical Safeguards

  • • End-to-end encryption in transit and at rest
  • • Advanced threat detection and monitoring
  • • Regular security audits and penetration testing
  • • Multi-factor authentication requirements
  • • Zero-trust network architecture

Administrative Safeguards

  • • Role-based access controls
  • • Employee privacy training and agreements
  • • Incident response procedures
  • • Regular security awareness training
  • • Background checks for personnel

6.2 Data Retention Periods

Data TypeRetention PeriodReason
Account InformationDuration of account + 2 yearsBusiness continuity, legal compliance
Conversation TranscriptsCustomer configurable (default: 1 year)Service improvement, customer analytics
Voice Recordings30 days (unless extended by customer)Quality assurance, dispute resolution
Usage Analytics2 yearsPlatform improvement, trends analysis
Training Data (Anonymized)IndefiniteModel improvement (no personal data)

6.3 Data Breach Response

In the unlikely event of a data breach, we will:

  • • Notify affected customers within 72 hours of discovery
  • • Report to relevant regulatory authorities as required
  • • Provide detailed information about the incident and impact
  • • Implement immediate containment and remediation measures
  • • Offer appropriate support and resources to affected parties

7. Your Privacy Rights

Your Control: You have significant control over your personal data. Here are your rights and how to exercise them.

🔍 Right to Access

Request a copy of all personal data we hold about you

Response time: 30 days

✏️ Right to Rectification

Correct inaccurate or incomplete personal data

Response time: 30 days

🗑️ Right to Erasure

Request deletion of your personal data ("right to be forgotten")

Response time: 30 days

⏸️ Right to Restrict Processing

Limit how we use your personal data

Response time: 30 days

📤 Right to Data Portability

Receive your data in a machine-readable format

Response time: 30 days

🚫 Right to Object

Object to processing based on legitimate interests

Response time: 30 days

🤖 Rights Related to Automated Decision Making

Request human review of automated decisions

Response time: 30 days

❌ Right to Withdraw Consent

Withdraw consent for data processing at any time

Effective immediately

How to Exercise Your Rights

📧 Email Us

info@solveease.tech

🌐 Online Portal

Account settings dashboard

📞 Phone Support

+91-XXX-XXX-XXXX

8. International Data Transfers

Global Operations: As we serve businesses across different regions, some data processing may occur outside your country of residence.

Data Processing Locations

Primary Data Centers

  • • India (Mumbai, Delhi) - Primary hosting
  • • Singapore - Backup and disaster recovery
  • • EU (Frankfurt) - European customers

Service Providers

  • • United States - Some cloud services
  • • Canada - Analytics and monitoring
  • • India - AI model training and processing

Transfer Safeguards

When transferring data internationally, we ensure adequate protection through:

  • Standard Contractual Clauses (SCCs): EU-approved data transfer agreements
  • Adequacy Decisions: Transfers to countries with EU-recognized privacy laws
  • Binding Corporate Rules: Internal policies ensuring consistent global protection
  • Additional Safeguards: Encryption, access controls, and regular audits

9. Children's Privacy

Age Restrictions

Our services are designed for businesses and are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16.

If you believe we have inadvertently collected information from a child under 16, please contact us immediately at info@solveease.tech, and we will take steps to delete such information promptly.

10. Changes to This Privacy Policy

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations.

  • Minor Changes: Updated without prior notice (corrected contact information, clarifications)
  • Material Changes: 30-day advance notice via email and prominent website notice
  • Significant Changes: May require renewed consent for continued service use

How We Notify You

Direct Communication

  • • Email notifications to account holders
  • • In-app notifications and alerts
  • • Account dashboard announcements

Public Notice

  • • Website banner notifications
  • • Updated "Last Modified" date
  • • Social media announcements for major changes

11. Contact Information

Get in Touch

Privacy Inquiries

📧

Email

info@solveease.tech

📞

Phone

+91-XXX-XXX-XXXX

🏢

Address

Team Solve-Ease
Delhi, India

Data Protection Officer

For GDPR-related inquiries and data protection matters:

info@solveease.tech

Available Monday-Friday, 9:00 AM - 6:00 PM IST

General Support

For technical support and general inquiries:

info@solveease.tech

This Privacy Policy is effective as of August 5, 2025 and was last updated on August 5, 2025.

Back to Top ↑