This policy was last updated on May 28, 2026.

General

This is the Privacy Policy of BuildAI.Space LTD (the "Company", "we" or "us"), which outlines how we gather, use, store, share, and protect your personal information when you use our platform and services. This policy covers the platform accessible through the https://buildai.space domain (the "Site") and the services offered by us, including AI applications, Digital Employees, integrations, connected systems, marketplace functionality, and any other services that may be offered by us from time to time (collectively, the "Services").

If you are an app user (i.e., someone who has interacted with an AI application created on our platform), please note that we are not the entity responsible for the processing of data, but a mere provider rendering services to the person or company that created the AI application. We suggest you read the terms and conditions and privacy policy of the company or person that created the AI application, as those are the ones governing the processing of your personal data. If you have any doubts, please contact that person or company. Also, depending on how the person or company that created the AI application configured it, your data may be shared or made public. To find out more, please contact the entity or person who created the AI application.

Personal Information We Collect

When you visit the Site, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or items that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site. We refer to this automatically-collected information as "Device Information."

We collect Device Information using cookies, log files, web beacons, tags and pixels.

Additionally when you make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your name, payment information (including credit card numbers and email address). We refer to this information as "Order Information."

Additionally, we collect information submitted to AI applications, Digital Employees, and AI Services, including prompts, instructions, app descriptions, workflows, activity logs, generated outputs, actions performed during usage, and information associated with the creation, configuration, and use of Digital Employees and AI functionality.

Where users connect third-party systems ("Connected Systems"), such as email providers, CRM systems, APIs, databases, messaging services, payment providers, social media platforms, or similar services, we may process information made available through those Connected Systems according to permissions granted by the user.

When we talk about "Personal Information" in this Privacy Policy, we are talking about Device Information, Order Information, input data and all other data describe in this section.

How Do We Use Your Personal Information?

We use the data we collect to fulfill any order placed through the Site, communicate with you, review, monitor, investigate, and analyze how to improve the Services and the Site, ensure the security and operation of our Services and Site, and prevent abusive activities. This may include sending you forms or emails to assess any service issues or learn how to enhance your user experience. We also use your Personal Information for purposes of maintaining records related to our daily operations, any corporate reorganizations, financial management and reporting, and, in general, for conducting our business. Additionally, we use your Personal Information to perform statistical and other analyses on the information we collect to analyze and measure user behavior and trends, to understand how people use our services, in order to improve and optimize our performance of such services, and to publish any findings.

We share your Personal Information with third parties to help us use your Personal Information, as described above. We use Google Analytics to help us understand how our customers use the Site--you can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. We also use Clarity for session recordings, Mixpanel for user analytics, and Crisp for live chat and support.

Finally, we may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.

Digital Employees and Connected Systems

Our Services may allow users to create, deploy, customize, access, subscribe to, configure, or use Digital Employees and connect third-party systems ("Connected Systems").

Digital Employees may access, retrieve, process, generate, modify, transmit, or act upon information available through Connected Systems according to permissions and settings configured by users. The terms governing your responsibilities when connecting such systems are set out in our Terms of Service.

Google User Data

When you connect a Google account to a digital employee on our platform, we request OAuth access to one or more of the following Google services depending on what you ask the digital employee to do: Gmail, Google Drive, Google Docs, Google Sheets, Google Slides, Google Calendar, and Google Analytics. The specific scopes you grant are shown to you in Google's consent screen at the time of connection, and we request the minimum scopes required for the actions you have configured. You can review or revoke our access at any time from your Google Account at https://myaccount.google.com/permissions, or from the Connections area inside our platform.

How we access Google user data.We act only on your instructions. When you or a digital employee you have configured triggers an action — such as reading an email, listing files, writing to a spreadsheet, sending a message, or creating a calendar event — we call the corresponding Google API using the OAuth token you granted. We do not browse, poll, or harvest your Google data outside the scope of actions you have asked the digital employee to perform.

How we use Google user data.Google user data is used solely to provide and improve the user-facing features of your digital employee — for example, summarizing an email, answering a question about a document, or performing an action you instructed. We do not sell Google user data, we do not use it for advertising or ad personalization, and we do not use it to train generalized AI or machine learning models. No human at BuildAI.Space reads your Google user data, except (i) with your explicit consent for support purposes, (ii) where strictly necessary for security, abuse, or fraud investigation, (iii) to comply with applicable law, or (iv) where the data has been aggregated and anonymized for internal operational purposes.

How we share Google user data.To carry out your instructions, the relevant Google data may be transmitted in real time to large language model providers we use as sub-processors (currently including Anthropic, OpenAI, and Google) to generate the digital employee's response or perform the action. These providers operate under contractual terms that prohibit using your data to train their models. We do not share Google user data with any other third party except as required by law or with your explicit consent.

How we store Google user data. OAuth access and refresh tokens are stored encrypted at rest. Beyond what is necessary to fulfill an in-progress action and short-lived operational logs, we do not retain copies of your Google content on our servers. You can revoke our access at any time, which renders any stored token unusable, and you can request deletion of any remaining data by contacting us at hello@buildai.space.

Limited Use.BuildAI.Space's use and transfer to any other application of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Security of Third-Party Credentials

In connection with the Services and Connected Systems, users may provide API keys, authentication credentials, access tokens, and similar credentials. We implement reasonable administrative, technical, and organizational measures designed to protect such information, including encryption of stored credentials at rest. No security system, transmission method, or storage mechanism can, however, be guaranteed to be completely secure. Allocation of risk and liability for credential security is addressed in our Terms of Service.

Your Rights

You have the right to request access to, and rectification of, or erasure of your personal data. Please note that if you choose to cancel your data and you are a customer, your account will be deleted and all data in your account will be permanently deleted from our systems. This does not include your Order Information, which you can request the payment provider to delete and is not stored on our servers.

Minors

The Site is not intended for individuals under the age of 18.

Changes

We may update this privacy policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal or regulatory reasons.

Contact Us

For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e-mail at hello@buildai.space