Back to Convened

Privacy Policy

Last updated: February 2026

1. Information We Collect

Information you provide directly: name, email address, payment information (processed securely by Stripe), business information, and content you upload for analysis including pitch decks, financial documents, social media content, and chat messages.

Information collected automatically: usage data, IP addresses, browser information, device identifiers, interaction patterns with the AI coaches, feature usage metrics, and session duration.

Information from integrations: If you connect third-party services (GoHighLevel, QuickBooks, Google Calendar), we access data per the permissions you grant during authorization.

2. How We Use Your Information

  • To provide and improve the AI coaching service, including personalized responses from AI advisor personas
  • To process payments via Stripe
  • To send service-related communications and notifications
  • To analyze your uploaded content and provide business insights
  • To maintain your conversation history and memory system for personalized, longitudinal coaching
  • To power the Virtual Chief of Staff (Convened) agent, including action item tracking, nudges, and briefings
  • To manage your account via our CRM system (GoHighLevel)
  • To adapt the user interface based on your feature familiarity (Adaptive UX)
  • To generate audit trails for security and compliance

3. AI Processing

Your conversations, uploaded documents, and business data are processed by AI models (Claude by Anthropic) to generate coaching responses and analyses. We send only the necessary context to the AI provider. AI-generated content is not used to train third-party models. Your data is processed in accordance with our data processing agreements with AI providers.

4. Data Sharing

We do not sell your personal data. We share data only with:

  • Stripe for payment processing
  • Anthropic (Claude AI) for generating coaching responses and analysis
  • OpenAI for voice transcription (Whisper) and embeddings
  • Pinecone for vector search (RAG retrieval)
  • GoHighLevel CRM for customer relationship management (partner tier)
  • Cloud hosting providers for infrastructure

5. Data Retention

We retain your data for as long as your account is active. Uploaded files, conversation history, action items, and memory data are stored to provide ongoing personalized coaching. Audit logs are retained for 12 months. You may request deletion of your data at any time.

6. Enterprise and Team Data

For Enterprise tier users with team management features: managers can view non-private activity and task data for their direct reports. Private categories (authentication, personal settings) are never visible to managers. Cross-Convened queries between team members automatically filter private data.

7. Your Rights

Under GDPR, CCPA, and applicable privacy laws, you have the right to:

  • Access your personal data
  • Export your data in a portable format (JSON)
  • Request correction of inaccurate data
  • Request deletion of your data
  • Opt out of non-essential data processing
  • Withdraw consent at any time

To exercise these rights, contact privacy@convened.ai or use the data export/deletion features in your account settings.

8. Cookies and Tracking

We use essential cookies for authentication and session management. We use localStorage for chat history persistence and user preferences. We do not use third-party advertising trackers. We use analytics to understand feature usage patterns and improve the service.

9. Security

We use industry-standard security measures including HTTPS encryption, secure password hashing (bcrypt), session-based authentication, role-based access controls, input sanitization, output filtering for AI responses, and audit logging. We implement persona protection to prevent AI jailbreaking and misuse.

10. Children's Privacy

The Service is not intended for users under 18. We do not knowingly collect data from minors. If we become aware that a minor has provided personal data, we will delete it promptly.

11. International Data Transfers

Your data may be processed in the United States. By using the Service, you consent to the transfer of your data to the US. We ensure appropriate safeguards are in place for international data transfers.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or in-app notification. Continued use of the Service after changes constitutes acceptance.

13. Contact

For privacy-related inquiries, contact us at privacy@convened.ai.

See also: Terms & Conditions

Note: This privacy policy is provided as a framework and requires professional legal review before production use.