Privacy Policy

Zayed AI - AI Assistant Platform

Effective Date: March 7, 2026

Last Updated: March 7, 2026

This Privacy Policy describes how Zayed AI ("we," "us," or "our"), a product of KimiBrain LLC, collects, uses, stores, shares, and protects your personal information when you use our AI assistant service at https://zayed-smart-assistant.replit.app.

By using Zayed AI, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use our service.

1. Information We Collect

1.1 Information You Provide Directly

When you create an account or use Zayed AI, we collect:

Account Information: Name, email address, profile picture (from Google Account)
Session Information: Login session data for keeping you signed in
Communication Data: Messages you send to our support team

1.2 Google User Data We Access

When you authorize Zayed AI to connect with your Google Account, we request access to:

Google Scope	Data Accessed	Purpose
`userinfo.email`	Your primary Google Account email address	Account creation and login authentication
`userinfo.profile`	Your name, profile picture, and publicly available info	Personalize your experience and display your profile
`gmail.readonly`	Read access to your Gmail messages and settings	Retrieve and display emails when you request them via voice or chat commands
`gmail.send`	Permission to send emails on your behalf	Send emails when you instruct Zayed AI to compose and send messages
`gmail.modify`	Ability to modify email messages (mark as read, archive)	Manage your inbox when you request actions like "mark as read" or "archive this email"

      Important: We only access your Gmail data when you explicitly request
      it through voice commands or chat interactions. We do not read, scan, or process your
      emails for any purpose other than fulfilling your direct requests.
    

1.3 Automatically Collected Information

Usage Data: Features you use, commands you give, time and duration of usage
Device Information: Browser type, operating system, IP address, device identifiers
Log Data: Access times, error logs, performance data
Voice Data: Voice recordings when you use voice commands (processed in real-time, not permanently stored)

2. How We Use Your Information

2.1 To Provide and Improve Our Service

Authenticate your identity and maintain your account
Process your voice commands and chat interactions
Access your Gmail to fulfill your email-related requests
Personalize your AI assistant experience
Analyze usage patterns to improve features and performance
Develop new features and functionality

2.2 To Communicate With You

Send service updates, security alerts, and support messages
Respond to your inquiries and support requests
Send important notices about changes to our Terms of Service or Privacy Policy

2.4 For Security and Fraud Prevention

Detect and prevent unauthorized access or fraudulent activity
Monitor and analyze security threats
Comply with legal obligations and enforce our Terms of Service

      We DO NOT use your Google user data for:
      Serving advertisements
Training AI models without explicit consent
Selling or renting to third parties
Any purpose unrelated to providing Zayed AI's functionality

    

3. How We Store and Protect Your Data

3.1 Data Storage

Database: PostgreSQL with encrypted connections
Email Tokens: Gmail access tokens are encrypted using AES-256 encryption before storage
Per-User Isolation: Each user's data is stored separately and cannot be accessed by other users

3.2 Security Measures

Encryption in Transit: All data transmission uses TLS encryption
Encryption at Rest: Sensitive data is encrypted using industry-standard AES-256 encryption
Authentication: OAuth 2.0 for Google login, secure session management with HTTP-only cookies
Access Controls: Database credentials stored as environment secrets, restricted access

3.3 Data Retention

Data Type	Retention Period	Reason
Account Information	Duration of account + 90 days after deletion	Service provision and legal compliance
Gmail Access Tokens	Until you revoke access or delete your account	Provide Gmail integration functionality
Email Content	Real-time processing only (not stored)	Fulfill your email requests
Usage Logs	90 days	Performance monitoring and troubleshooting
Voice Recordings	Real-time processing only (not stored)	Process voice commands

4. How We Share Your Information

4.1 We DO NOT Sell Your Data

We do not sell, rent, or trade your personal information or Google user data to third parties for marketing or advertising purposes.

4.2 Third-Party Service Providers

We share limited data with trusted service providers who help us operate Zayed AI:

Service Provider	Purpose	Data Shared	Data Protection
Google	Authentication & Gmail API	OAuth tokens	Google's security standards
OpenAI	AI processing (GPT API)	Chat messages, email snippets (per request, not stored)	Enterprise-level security, not used for training

All service providers are contractually required to:

Use data only for the specified purpose
Implement appropriate security measures
Not share data with other third parties
Delete data when no longer needed

4.3 Legal Requirements

We may disclose your information if required by law or to:

Comply with legal processes (subpoenas, court orders, legal proceedings)
Enforce our Terms of Service or other agreements
Protect the rights, property, or safety of Zayed AI, our users, or the public
Investigate and prevent fraud, security issues, or illegal activity

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you via email and/or prominent notice on our website before your data is transferred and becomes subject to a different privacy policy.

5. Your Privacy Rights and Choices

5.1 Access and Control Your Data

You have the right to:

Access: Request a copy of all personal data we hold about you
Correct: Update inaccurate or incomplete information
Delete: Request deletion of your account and all associated data
Export: Download your data in a machine-readable format
Object: Object to certain processing of your data

To exercise these rights, email us at: momo.rzq@gmail.com

5.2 Revoke Google Access

You can revoke Zayed AI's access to your Gmail at any time:

Go to Google Account Permissions
Find "Zayed AI"
Click "Remove Access"

Effect: Revoking access will immediately stop Zayed AI from accessing your Gmail. We will delete all stored Gmail tokens within 24 hours.

5.3 Delete Your Account

To permanently delete your account, email us at momo.rzq@gmail.com with the subject "Account Deletion Request".

What gets deleted:

Your profile and account information
Gmail access tokens (immediately)
Usage history and logs

What we retain:

Anonymized analytics data (no personal identifiers)
Financial records (for tax/legal compliance - 7 years)
Backup copies (deleted within 90 days)

6. Children's Privacy

Zayed AI is not intended for users under 18 years of age. We do not knowingly collect personal information from children under 18.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at momo.rzq@gmail.com, and we will delete such information immediately.

7. International Data Transfers

Zayed AI operates globally. Your information may be transferred to and processed in countries other than your country of residence, including the United States.

Data Protection Mechanisms:

Standard Contractual Clauses (SCCs) for EU data transfers
GDPR-compliant data processing agreements with all processors
Encryption of all data in transit and at rest

8. Cookies and Tracking Technologies

8.1 Cookies We Use

Cookie Type	Purpose	Duration
Essential Cookies	Authentication, session management, security	Session / 24 hours
Functional Cookies	Remember your preferences and settings	1 year

We do NOT use:

Advertising cookies
Third-party tracking cookies
Cross-site tracking

9. Your Rights Under Privacy Laws

9.1 GDPR (European Union Users)

If you are in the EU/EEA, you have additional rights under GDPR:

Right to Access: Obtain confirmation of data processing and a copy of your data
Right to Rectification: Correct inaccurate data
Right to Erasure ("Right to be Forgotten"): Request deletion of your data
Right to Restrict Processing: Limit how we use your data
Right to Data Portability: Receive your data in a structured, machine-readable format
Right to Object: Object to processing based on legitimate interests
Right to Withdraw Consent: Withdraw consent for data processing at any time
Right to Lodge a Complaint: File a complaint with your local data protection authority

Legal Basis for Processing:

Contract Performance: Providing Zayed AI services to you
Consent: Gmail API access (you explicitly authorize this)
Legitimate Interests: Improving our service, fraud prevention
Legal Obligations: Compliance with laws and regulations

9.2 CCPA (California Users)

If you are a California resident, you have rights under CCPA:

Right to Know: Request details about personal information we collect, use, and share
Right to Delete: Request deletion of your personal information
Right to Opt-Out: Opt-out of sale of personal information (we do not sell data)
Right to Non-Discrimination: Equal service regardless of exercising your rights

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

How We Notify You:

Email notification to your registered email address
Prominent notice on our website homepage
Update the "Last Updated" date at the top of this policy

Material Changes:

If we make material changes to how we handle your Google user data, we will:

Provide at least 30 days' advance notice
Require you to re-consent before the changes take effect
Give you the option to delete your account if you disagree

11. Third-Party Links

Zayed AI may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies:

12. Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

Notify you within 72 hours of discovering the breach
Inform you about the nature of the breach and data affected
Describe the steps we're taking to address the breach
Provide recommendations for protecting yourself
Notify relevant regulatory authorities as required by law

13. Business Information

About KimiBrain LLC

Zayed AI is developed and operated by KimiBrain LLC, a technology company specializing in artificial intelligence solutions.

Company Information:

Legal Name: KimiBrain LLC
Product Name: Zayed AI
CEO: Mohammed Ali Abdulla Mohammed Al Marzooqi

Registered Address:

KimiBrain LLC
Dubai, United Arab Emirates

14. Google API Services User Data Policy Compliance

Zayed AI's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Limited Use Disclosure:

We only use Gmail data to provide features you explicitly request
We do not use Gmail data to develop, improve, or train AI models
We do not allow humans to read your emails (unless required for support with your consent)
We do not share Gmail data with third parties except as necessary to provide the service
We do not use Gmail data for advertising purposes

15. Contact Us

Privacy and Data Protection Inquiries

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: momo.rzq@gmail.com
Phone: +971 55 194 6606
Hours: Sunday - Thursday, 9:00 AM - 6:00 PM (GST/UAE Time)
Response Time: Within 48 hours for privacy-related inquiries

16. Acknowledgment and Consent

By using Zayed AI, you acknowledge that:

You have read and understood this Privacy Policy
You consent to the collection, use, and sharing of your information as described
You understand how we access and use your Gmail data
You can revoke consent and delete your data at any time
You are at least 18 years of age