Orchive Privacy Policy

Last updated: May 19, 2025

Nennovate LLC ("Nennovate," "we," "our," or "us") provides an AI‑powered platform ("Orchive") that connects to and organizes your digital content across multiple services, including (but not limited to) Google Drive, Microsoft OneDrive, Slack, and email providers (the "Services"). We value your privacy and are committed to protecting your Personal Information. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use the Services or visit orchive.ai (the "Site").

1. Scope

This Policy applies to information we process when you:

  • Create or access an Orchive account;

  • Connect third‑party data sources to Orchive;

  • Upload, view, or otherwise submit content, files, or metadata through the Services;

  • Interact with our websites, mobile apps, or communications.

It does not apply to (a) information processed by third‑party services that you integrate with Orchive, or (b) aggregated or de‑identified data that cannot reasonably be linked to an identifiable individual.

2. Information We Collect

2.1 Information You Provide

Category

Examples

Account Data

Name, email, password (hashed & salted), authentication tokens, organization/team affiliation

Connected‑Account Credentials

OAuth or workload‑identity tokens, access scopes, refresh tokens (securely encrypted)

Uploaded Content

Files, documents, messages, images, and associated metadata

Support Inquiries

Feedback, bug reports, troubleshooting logs

2.2 Information We Collect Automatically

  • Usage Data: IP address, device identifiers, browser type, referring pages, pages visited, links clicked, and timestamp information.

  • Log Data: Server logs, error reports, performance metrics.

  • Cookies & Similar Tech: Session cookies, preference cookies, analytics tags. See §6 (Cookies).

2.3 Information from Third Parties

We receive limited profile information and file metadata from integrated services (e.g., Google Drive) pursuant to your explicit authorization.

3. How We Use Information

We use Personal Information to:

  1. Provide, operate, and maintain the Services;

  2. Index, vectorize, and analyze content to deliver search, summarization, and AI‑powered retrieval functions;

  3. Authenticate users and secure accounts;

  4. Process transactions and billing;

  5. Respond to inquiries and provide customer support;

  6. Improve and develop new products, features, and research;

  7. Monitor, detect, and prevent fraud or misuse;

  8. Comply with legal obligations.

3.1 Personalized AI/ML Models Using Google Workspace Data

  • Personalized-only training. When you connect Google Drive (or other Google Workspace APIs), we may use limited metadata (e.g., file titles, MIME types, user-supplied labels) and your interaction patterns (e.g., search clicks, feature usage) to train and continuously improve personalized machine-learning models that serve only your account or your organization.

  • No generalized training. We do not use Google Workspace data—content or metadata—to develop, improve, or train generalized or non-personalized AI/ML models that benefit other customers or the public.

  • Transparency on data types. We never use file bodies (document text, image pixels, etc.) from Google Workspace as training data. Only the limited metadata described above may be processed for personalized model tuning.

3.2 Legal Bases for Processing (EEA/UK)

We rely on: (a) performance of a contract, (b) legitimate interests (e.g., improving safety & reliability), (c) your consent (for optional cookies or marketing), and (d) compliance with legal obligations.

4. How We Share Information

We do not sell Personal Information. We share it only:

  • Service Providers who process data on our behalf under confidentiality agreements (cloud hosting, analytics, payment processors);

  • Integration Partners at your direction when you connect an external account;

  • Corporate Transactions such as mergers or acquisitions, subject to customary safeguards;

  • Legal & Safety when required by law or to protect rights, property, or safety;

  • With Consent for any other purpose disclosed at the time of collection.

5. Data Retention & Deletion

We retain Personal Information as long as your account is active or as needed to provide the Services. You can request deletion of your account and associated data via support@orchive.ai. We may retain certain information to meet legal obligations or resolve disputes.

6. Cookies & Tracking Technologies

We use cookies to maintain sessions, remember preferences, and gather analytics. You can control cookies through browser settings. Rejecting cookies may impair certain features.

7. Security

We implement industry‑standard safeguards, including encryption at rest and in transit, role‑based access controls, and regular penetration testing. No system is 100% secure; we therefore cannot guarantee absolute security.

8. International Transfers

Data we control may be processed in the United States or other countries with equivalent safeguards. Where required, we rely on Standard Contractual Clauses or other approved mechanisms.

9. Your Rights

Depending on your location, you may have rights to access, correct, delete, or restrict processing of your Personal Information, and to object or request portability. Submit requests at privacy@orchive.ai. We respond within 30 days.

10. Children’s Privacy

Orchive is not directed to children under 13. We do not knowingly collect Personal Information from children. If we learn we have inadvertently done so, we will delete it promptly.

11. Changes to This Policy

We may update this Policy periodically. Material changes will be notified via email or in‑app notice. Continued use of the Services after the effective date constitutes acceptance.

12. Contact Us

Privacy questions? Email us at privacy@orchive.ai or write to Orchive, Inc., 123 Market St., Suite 400, San Francisco, CA 94103, USA.


hello@orchive.com

2025 © All rights reserved.