Privacy Policy

We collect the minimum information necessary for the App to function:

• Account data: name, email address, and user ID, solely for authentication and App functionality.
• Assistant queries: questions sent to the AI assistant are processed on external servers to generate responses. For authenticated users, session summaries are stored on our server to improve conversation continuity. These summaries do not contain the full text of your messages.
• Usage data: we log IP addresses and query counts for abuse prevention (rate limiting) and plan limit enforcement. These logs are automatically deleted.
• Local data: full conversation history, bookmarks, notes, and preferences are stored exclusively on your device (local browser or app storage).

We use the information collected exclusively to:

• Authenticate your identity and manage your account.
• Process your tax questions through the AI assistant.
• Improve service quality and functionality.

We do not sell, rent, or share your personal data with third parties for advertising or marketing purposes.

The following data is stored exclusively on your device:

• Conversation history with the assistant (up to 30 conversations).
• Bookmarked articles and personal notes.
• App preferences (theme, settings).

This data is not transmitted to any external server and remains under your full control. You can delete this data at any time directly from the App.

The App uses the following third-party services exclusively for its operation:

• Anthropic (Claude): natural language processing for the AI assistant. Queries are sent to Anthropic's servers to generate tax-related responses. This is our primary provider.
• OpenAI: fallback provider for the AI assistant. If Anthropic's service is unavailable, queries are sent to OpenAI's servers to ensure service continuity.
• Pinecone: semantic search across the tax knowledge base (Colombian Tax Code, DIAN doctrine, jurisprudence).
• Supabase: database for storing session summaries and authenticated user profiles. Does not store the full text of conversations.

These services process queries solely to generate responses. Each service has its own privacy policy.

The App does NOT track users. We do not use:

• Tracking or advertising cookies.
• Tracking pixels.
• Third-party analytics tools.
• Advertising networks or retargeting services.

We do not share data with third parties for advertising or tracking purposes.

In accordance with Colombian Law 1581 of 2012 (Personal Data Protection Act — Habeas Data), you have the right to:

• Access: freely access your personal data that has been processed.
• Update and rectify: request the update or correction of your personal data.
• Delete: request the deletion of your data when you deem it appropriate. You can delete your data at any time directly from the App.
• Revoke: revoke authorization for the processing of your personal data.
• File complaints: with the Superintendence of Industry and Commerce (SIC) for violations of data protection law.

To exercise these rights, contact us at privacidad@tribai.co.

We implement the following security measures:

• Encrypted communications (HTTPS/TLS) with all external services.
• Local storage of full conversation history on your device.
• Secure credential storage in device Keychain (iOS) or local browser storage (web).
• Rate limiting to prevent platform abuse.
• Minimal data collection: we only collect what is strictly necessary.

The App is not intended for individuals under 18 years of age. We do not knowingly collect information from minors.

We reserve the right to update this privacy policy. Significant changes will be communicated through the App. The last updated date will be reflected at the top of this document.

This privacy policy is governed by applicable Colombian legislation on personal data protection, including:

• Law 1581 of 2012: Statutory Law on Personal Data Protection (Habeas Data).
• Decree 1377 of 2013: regulatory decree for Law 1581 of 2012.

For questions, requests, or concerns regarding this privacy policy or the processing of your personal data, you may contact us at:

• Email: privacidad@tribai.co
• Website: tribai.co