Privacy Policy

Last Updated: November 10, 2025

Overview

Tablestakes AI ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered sales assistant platform.

Information We Collect

Account Information

When you create an account, we collect:

• Email address
• Name
• Password (stored as Argon2 hash)

Usage Information

When you use our platform, we collect:

• AI task selections and inputs
• Generated AI responses
• Saved responses and preferences
• Industry and format selections
• Session data and login timestamps

Security & Audit Data

For security purposes, we log:

• Login attempts and timestamps
• IP addresses
• User agent information
• Security-relevant actions (saves, deletes, AI generations)

How We Use Your Information

We use the collected information to:

• Provide and maintain our AI-powered sales assistant service
• Generate personalized AI responses based on your inputs
• Authenticate users and manage sessions
• Monitor security and prevent unauthorized access
• Store your saved responses for future access
• Improve our services and user experience

Data Storage & Security

Your data is stored in our secure SQLite database with the following protections:

• User-specific data isolation (all queries filtered by user_id)
• Argon2 password hashing (memory-hard, GPU-resistant)
• HTTPS encryption for data in transit
• Daily automated backups with 7-day retention
• Comprehensive audit logging of all access

Data Sharing & Disclosure

We do not sell your personal information. We may share data only in the following circumstances:

• AI Processing: Your inputs are sent to OpenAI's API for AI response generation
• Legal Requirements: When required by law or to protect our rights
• Service Providers: With trusted third parties who help us operate our platform (e.g., hosting, AI services)

Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate information
• Delete your saved responses
• Request account deletion
• Export your data

Data Retention

We retain your data for as long as your account is active or as needed to provide services. Deleted data is removed from our active databases but may persist in backups for up to 7 days.

Cookies & Session Management

We use secure session cookies to:

• Maintain your login state
• Implement 30-minute session timeout
• Provide CSRF protection

Cookies are HttpOnly, Secure, and SameSite protected.

Third-Party Services

We use the following third-party services:

• OpenAI: For AI response generation. See OpenAI's Privacy Policy
• Replit: For hosting infrastructure

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of any material changes by updating the "Last Updated" date.

Contact Us

For privacy-related questions or requests, please contact us at: Support

Back to Home