Privacy Policy
Effective Date: July 1, 2026
This Privacy Policy describes how Assembly Networks, LLC (“Company,” “we,” “us,” or “our”) collects, uses, shares, and retains information in connection with the Assembly AI website, application, APIs, and related services (collectively, the “Services”). It applies to our business customers (“Customer”) and the individual users who access the Services on Customer’s behalf.
Capitalized terms used but not defined here have the meanings given in our Terms of Service.
1) Information We Collect
Account Information. When you register, we collect information you provide such as your name, email address, workspace/organization name, role, and password credentials (stored in hashed form by our auth provider).
Usage Data. We collect data about how you interact with the Services, including pages viewed, features used, clicks, session timestamps, device and browser information, IP address, and approximate location. This includes product analytics events (e.g., onboarding step completions, journey activity).
Customer Content. We process content you submit to the Services, including company profile data, target market segments, survey questions and responses, decision clarity profiles, journey step outputs, generated drafts, prompts, and other materials you or your users upload or create.
Payment Information. If you purchase a paid plan, payment is processed by Stripe. We do not store full payment card numbers on our servers.
Communications. If you contact us (e.g., support emails to info@assemblynetworks.net), we retain the content of those communications.
2) How We Use Information
- To provide, operate, secure, and support the Services;
- To authenticate users and maintain account access;
- To process AI-assisted features (e.g., Copilot drafts) using the information you submit;
- To improve the platform in aggregate and de-identified form (not in a way that identifies you or builds individual profiles);
- To communicate with you about the Services, including service notices, security alerts, and support responses;
- To process payments and manage billing through our payment processor;
- To detect, investigate, and prevent fraud, abuse, or violations of our Terms;
- To comply with applicable law and enforce our agreements.
We do not sell Customer Content, and we do not use Customer Content to train third-party foundation models.
3) How We Share Information
We share information only with service providers (“subprocessors”) acting on our behalf to provide the Services, and only as needed for them to perform their functions. Our current subprocessors include:
- Supabase — authentication, database hosting, and storage for account data and Customer Content.
- Vercel — application hosting and edge delivery of the Services.
- Anthropic (Claude API) — AI processing for Copilot drafts and other AI-assisted features. Inputs you send to Copilot are processed by Anthropic to generate outputs.
- Stripe — payment processing for paid subscriptions (if applicable).
- PostHog — product analytics for usage events.
We may also disclose information: (a) to comply with law, legal process, or lawful government requests; (b) to protect the rights, safety, or property of Company, our users, or others; (c) in connection with a merger, acquisition, financing, or sale of assets, subject to appropriate confidentiality protections; or (d) with your direction or consent.
4) Data Retention
We retain Customer Content and account information for as long as your account is active. After account closure or termination, retention follows the schedule in Section 8 of our Terms of Service: we delete or de-identify Customer Content within thirty (30) days, with limited exceptions for extended export windows, legal requirements, dispute resolution, and rolling backup deletion within sixty (60) days. We may retain limited transactional records (invoices, payment status, audit/security logs) for accounting, tax, compliance, and security purposes as permitted by law.
5) Security
We maintain reasonable administrative, technical, and physical safeguards designed to protect information processed through the Services, including encryption in transit, access controls, and audit logging. No system can be guaranteed 100% secure. You are responsible for maintaining the confidentiality of your credentials and for the access controls you apply within your workspace.
6) Your Rights
Subject to applicable law, you may have the right to:
- Access the personal information we hold about you;
- Correct inaccurate or incomplete information;
- Delete personal information, subject to legal retention obligations;
- Export a copy of your data in a portable format;
- Object to or restrict certain processing activities;
- Withdraw consent where processing is based on consent.
For workspace users, requests are typically routed through your workspace administrator. To submit a request, contact us at info@assemblynetworks.net. We will respond within the timeframes required by applicable law.
7) Children
The Services are intended for business use by individuals 18 years or older and are not directed to children. We do not knowingly collect personal information from children.
8) International Data Transfers
The Services are operated from the United States. If you access the Services from outside the United States, your information may be processed in the United States or other jurisdictions where our subprocessors operate. By using the Services, you understand your information will be transferred to and processed in those jurisdictions.
9) Changes to this Policy
We may update this Privacy Policy from time to time. If we make material changes, we will provide reasonable notice (e.g., via the Services or email). Continued use of the Services after the effective date of an update constitutes acceptance of the updated Policy.
10) Governing Law
This Privacy Policy is governed by the laws of the State of Colorado, without regard to its conflict of laws rules. Any disputes arising from this Policy will be handled in accordance with the dispute resolution provisions in Section 17 of our Terms of Service, including binding arbitration in Denver County, Colorado.
11) Contact
Questions about this Privacy Policy or our data practices? Contact us at:
Assembly Networks, LLC
2443 S. University Blvd, Suite 281
Denver, CO 80210
Email: info@assemblynetworks.net