Privacy Policy
Effective Date: January 28, 2026
Last Updated: January 28, 2026
inchambers.ai ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Microsoft Word add-in and related services (collectively, the "Service"). For more details on our privacy architecture, see our Privacy Architecture page. This policy complies with Microsoft Office Add-in Store requirements, Google OAuth requirements, and Microsoft Azure OAuth requirements.
1. Information We Collect
1.1 Information You Provide
- Account Information: When you register for inchambers.ai, we collect your name, email address, and authentication credentials through Google OAuth or Microsoft Azure OAuth.
- API Keys: You may provide your own AI service API keys. These keys are stored encrypted on your computer and are never transmitted to or stored on our servers.
- Payment Information: When you subscribe to a paid plan, payment information is processed by our third-party payment processor, Stripe. We do not store your complete payment card details.
- Usage Data: We collect information about your usage of the Service, including feature usage, document generation requests, and interaction patterns.
1.2 Information Collected Automatically
- Device Information: We collect information about your device, including operating system, browser type, and Microsoft Office version.
- Log Data: Our servers automatically record information when you use the Service, including IP address, access times, and pages viewed.
- Analytics: We use analytics services to understand how users interact with our Service.
1.3 Information We Do NOT Collect
- Document Content: We do not access, store, or transmit the content of your Word documents unless you explicitly use AI features, in which case selected content is temporarily processed through AI services.
- Your API Keys: API keys you provide are stored encrypted on your computer.
2. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve the Service
- Process your transactions and manage your subscription
- Authenticate your identity through Google OAuth or Microsoft Azure OAuth
- Send you technical notices, updates, security alerts, and support messages
- Respond to your comments, questions, and customer service requests
- Monitor and analyze usage trends and preferences
- Detect, prevent, and address technical issues and fraudulent activity
- Comply with legal obligations and enforce our Terms of Service
3. Third-Party Authentication
3.1 Google OAuth
When you sign in with Google, we receive basic profile information including your name, email address, and profile picture. We comply with Google's OAuth 2.0 policies and limited use requirements. We do not request or store access to your Google Drive, Gmail, or other Google services beyond authentication.
3.2 Microsoft Azure OAuth
When you sign in with Microsoft, we receive basic profile information including your name, email address, and profile picture. We comply with Microsoft identity platform requirements and only request the minimum permissions necessary for authentication.
4. Data Storage and Security
4.1 Data Storage
- Database: User account information is stored securely in our PostgreSQL database with industry-standard encryption.
- Local Storage: API keys and certain preferences are stored encrypted on your computer.
- Data Residency: Your data may be processed and stored in secure data centers operated by our hosting providers.
4.2 Security Measures
We implement appropriate technical and organizational measures to protect your information, including:
- Encryption of data in transit using TLS/SSL
- Encryption of sensitive data at rest
- Regular security assessments and updates
- Access controls and authentication mechanisms
- Secure API key storage on your local device only
However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.
5. Data Sharing and Disclosure
We do not sell your personal information. We may share your information in the following circumstances:
5.1 Service Providers
- Stripe: Payment processing
- Fly.io: Application hosting and infrastructure
- AI Service Providers: When you use AI features, selected document content is temporarily sent to AI service providers (using your own API keys)
5.2 Legal Requirements
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, government agencies).
5.3 Business Transfers
If inchambers.ai is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.
6. Your Rights and Choices
You have the following rights regarding your information:
6.1 Access and Portability
You can access and download your account information at any time through your account settings.
6.2 Correction and Update
You can update your account information through your account settings.
6.3 Deletion
You can request deletion of your account and associated data by contacting us at [email protected]. Note that we may retain certain information as required by law or for legitimate business purposes.
6.4 Opt-Out
You can opt out of marketing communications by following the unsubscribe link in emails or updating your communication preferences.
6.5 Withdraw Consent
You can revoke OAuth permissions through your Google or Microsoft account settings at any time.
7. Data Retention
We retain your information for as long as necessary to provide the Service and fulfill the purposes outlined in this Privacy Policy. When you delete your account, we will delete or anonymize your information within 90 days, except where we are required to retain it for legal, regulatory, or security purposes.
8. Children's Privacy
inchambers.ai is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us, and we will take steps to delete such information.
9. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using the Service, you consent to the transfer of your information to India and other countries where we operate.
10. Microsoft Office Add-in Compliance
inchambers.ai complies with Microsoft Office Add-in Store privacy requirements:
- We only access document content when you explicitly use AI features
- We do not transmit or store document content unless necessary to provide the requested service
- We do not use document content for advertising or marketing purposes
- We implement appropriate security measures to protect data processed through the add-in
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, we will provide additional notice (such as an email notification).
12. Contact Us
inchambers.ai
Owned by: Richago Technologies - Sole Proprietorship of Pawan Khatri
All rights reserved.
Registered in: India
Email: [email protected]
Data Protection Officer: [email protected]
Website: https://inchambers.ai
13. Jurisdiction-Specific Rights
13.1 European Economic Area (EEA) Users
If you are located in the EEA, you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with a supervisory authority.
13.2 California Users
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to request disclosure of information we collect and share.
13.3 Canadian Users
If you are located in Canada, your information may be processed by our Canadian operations and you have rights under the Personal Information Protection and Electronic Documents Act (PIPEDA).
13.4 Indian Users
If you are located in India, your information is subject to the Information Technology Act, 2000 and associated rules, including the Sensitive Personal Data or Information Rules, 2011.
By using inchambers.ai, you acknowledge that you have read and understood this Privacy Policy and agree to its terms. Please also review our Terms of Service and Disclaimer.