Privacy Policy

• Contact and account information, such as name, email, company, team size, and role.
• Demo, waitlist, support, and sales messages you send to us.
• Connected-source content and metadata that you authorize ELAV to process, such as email, chat, calendar, meeting notes, files, CRM records, and similar business context.
• Product usage and diagnostic information, such as page views, feature events, device/browser information, logs, and approximate location from IP address.
• Billing and plan information for paid customers, usually handled through payment or billing providers.

• To provide ELAV features, including source-backed answers, memory, briefs, approvals, and proposed actions.
• To maintain source access, tenant isolation, security, abuse prevention, and service reliability.
• To respond to support, sales, procurement, and product feedback requests.
• To measure website and product performance and improve onboarding.
• To comply with legal, security, accounting, and contractual obligations.

ELAV processes connected-source content only to provide and improve the service for your workspace. That may include indexing source artifacts, extracting decisions or commitments, retrieving relevant context, and sending selected context to AI model providers to generate an answer, draft, summary, or proposed action.

We do not use customer source content to train generalized AI models unless a customer explicitly agrees in writing.

• With vendors and subprocessors that help us run ELAV, such as hosting, authentication, analytics, email delivery, source-connection, and AI infrastructure providers.
• With third-party source providers when you connect, reconnect, or use that provider through ELAV.
• Within your workspace according to product permissions and source-visibility rules.
• When required to comply with law, protect security, prevent abuse, or enforce agreements.
• In connection with a business transaction, such as financing, acquisition, merger, or sale of assets.

The marketing site uses PostHog only when analytics is configured and permitted. Marketing analytics is set to opt out by default until a consent flow or customer-specific analytics posture is in place. When analytics is enabled, form inputs are masked and identified profiles are used only when a user is identified.

We keep information for as long as needed to provide the service, satisfy security, legal, billing, or operational requirements, and honor customer agreements. Disconnecting a source should stop ELAV from using it for new source-backed answers. You can request deletion or export by contacting us.

• You can ask to access, correct, export, or delete personal information where applicable.
• You can disconnect sources or request that a workspace connection be removed.
• You can opt out of non-essential marketing email by using the unsubscribe link or contacting us.
• European users may have additional rights under GDPR or similar laws, depending on their relationship with ELAV and the relevant workspace controller.

Privacy requests can be sent to founders@elav.ai.