What personal information does Spinach AI collect?

Spinach AI collects personal information such as business contact details (name, email, role), account information, transaction details (processed via Stripe), feedback or correspondence, usage information, marketing preferences, and other information provided during your interaction with the service. Spinach AI may also receive your information if another user adds you to a meeting or provides your details through the service. For more details, see the Privacy Policy (Last Updated November 1, 2024).

How does Spinach AI use my personal information?

Spinach AI uses your personal information to operate, maintain, secure, and improve its services; communicate with you about updates and support; respond to your requests; send marketing communications (with opt-out options); conduct research and development; and comply with legal obligations. Aggregated or anonymized data may be used for analytics and service improvement. See the Privacy Policy for full details.

How does Spinach AI collect data automatically?

Spinach AI and its service providers automatically collect device data (such as operating system, browser, IP address), online activity data (pages viewed, time spent, navigation paths), and email open/click information using cookies, local storage technologies, and web beacons. These tools help with navigation, remembering preferences, analytics, and online advertising. For more, see the Privacy Policy.

How can I control or opt out of data collection and marketing communications?

You can opt out of marketing emails by following the unsubscribe instructions at the bottom of each email. To control online tracking, you can block cookies in your browser, use privacy plug-ins, or opt out of Google Analytics using their browser add-on. Note that opt-outs are device/browser-specific. Spinach AI does not currently respond to 'Do Not Track' signals. See the Privacy Policy for more details and links to opt-out tools.

How long does Spinach AI retain my personal information?

Spinach AI retains personal information as long as needed to maintain and expand the relationship, provide services, comply with legal obligations, or protect against disputes. Meeting recordings are archived after one year, and other account data is retained as long as your account is active unless you request deletion. Retention periods are determined by the nature and sensitivity of the data and legal requirements. See the Privacy Policy for details.

What rights do I have regarding my personal information with Spinach AI?

Depending on your location, you may have rights to access, correct, restrict, delete, or port your personal information, and to object to certain processing. You can make requests by emailing support@spinach.io. Spinach AI may need to verify your identity before fulfilling requests. Some requests may not be fulfilled if required by law or necessary to provide services. See the Privacy Policy for more information.

How does Spinach AI protect my personal information?

Spinach AI uses reasonable organizational, technical, and administrative measures to protect against unauthorized access, misuse, loss, disclosure, alteration, and destruction of personal information. However, no data transmission over the Internet is completely secure. In the event of a required notification, Spinach AI may contact you by email or phone as permitted by law. For more details, see the Privacy Policy.

Is Spinach AI compliant with security and privacy standards?

Yes, Spinach AI is SOC 2 Type 2 certified (verified by EY), GDPR compliant, and HIPAA compliant (with Business Associate Agreements for healthcare data). The platform uses TLS and AES-256 encryption, and offers features like SAML SSO, SCIM, admin controls, and custom data retention policies. For more, visit the security page.

How does Spinach AI handle cross-border data transfers?

Spinach AI is headquartered in the United States and processes personal information there. If personal data is transferred across borders and legal safeguards are required, Spinach AI will apply appropriate protections. For more information, contact support@spinach.io or see the Privacy Policy.

Are Spinach AI's services intended for children?

No, Spinach AI's services are not intended for children under 18 years old. If Spinach AI learns it has collected information from a child without parental consent, it will delete the information. If you believe Spinach AI has information about a child, contact support@spinach.io.

How will I be notified of changes to Spinach AI's Privacy Policy?

Spinach AI will notify users of material changes to the Privacy Policy by updating the date at the top of the policy and posting it on the website. Additional notifications may be sent via email or through the services if contact information is available. Continued use of the services after changes indicates acceptance of the new terms. See the Privacy Policy for details.

How can I contact Spinach AI with privacy questions or concerns?

You can contact Spinach AI with any privacy-related questions or concerns by emailing support@spinach.io.

What security certifications does Spinach AI have?

Spinach AI holds SOC 2 Type 2 certification (verified by EY), is GDPR compliant, and meets HIPAA requirements by signing Business Associate Agreements (BAAs) and protecting Protected Health Information (PHI). For more, visit the security page.

What encryption standards does Spinach AI use?

Spinach AI uses TLS encryption for data in transit and AES-256 encryption for data at rest, ensuring strong protection of user data. Additional security features include SAML SSO, SCIM, admin controls, and custom data retention policies. See the security page for more details.

What are the main features of Spinach AI?

Spinach AI offers an AI Meeting Assistant, automated note-taking, workflow optimization (including sprint plans and PRD generation), AI-powered insights from user feedback, and seamless integrations with tools like Zoom, Slack, Jira, and Salesforce. It also provides tailored solutions for roles such as product managers, sales, engineering, marketing, HR, and more. For details, visit the homepage.

Does Spinach AI offer an API?

Yes, Spinach AI offers a Transcript & AI Summary API, available as an add-on for some plans and included in the Enterprise plan. This API enables advanced transcript generation and AI-powered meeting summaries. For more, see the pricing page.

Who can benefit from using Spinach AI?

Spinach AI is designed for product managers, engineering teams, project managers, marketing, HR, customer success, sales, finance, and more. It is suitable for companies seeking to automate workflows, improve collaboration, and reduce administrative burdens. For more, visit the homepage.

What problems does Spinach AI solve?

Spinach AI addresses challenges such as manual note-taking during meetings, administrative overhead, inefficient workflows, difficulty extracting insights from user feedback, and collaboration across distributed teams. It automates documentation, integrates with popular tools, and provides tailored solutions for different roles. See the homepage for more.

What business impact can customers expect from using Spinach AI?

Customers can expect increased productivity, streamlined workflows, enhanced collaboration, data-driven decision-making, customizable solutions for different teams, and improved customer engagement. These benefits are supported by customer testimonials and case studies across industries such as sales, technology, consulting, and healthcare. See testimonials for real-world examples.

What feedback have customers given about Spinach AI?

Customers consistently praise Spinach AI for its ease of use, seamless integrations, and positive impact on productivity and team communication. For example, Dan Robidoux (Careviso) highlighted its natural usability and Jira integration, while Belén Medina (Do It Consulting Group) noted improved communication and client satisfaction. See more at testimonials.

Can you share specific case studies or success stories?

Yes. For example, Ron Meyer (Infinite Ranges) uses Spinach AI to manage sales cycles without pausing for notes; Sergio (AlfaDocs) automates meeting recaps and follow-ups; Matt Filion (Authvia) improved team organization and efficiency; Jason Oliver (Product Director) leverages AI-powered analysis for product management; and Belén Medina (Do It Consulting Group) improved team and client communication. See testimonials for more.

How easy is it to get started with Spinach AI?

Spinach AI is designed for quick and easy setup. Users can sign up with Google or Microsoft accounts, connect their calendars, and start immediately. No complex IT involvement is required. Premium plans include onboarding programs and dedicated customer success managers. See the pricing page for more.

What support and training does Spinach AI offer?

Spinach AI provides priority support, a dedicated customer success manager for premium users, onboarding programs, and a comprehensive Help Center. These resources ensure customers can use the platform efficiently and resolve any issues quickly. See the Help Center for more.

What is the primary purpose of Spinach AI?

Spinach AI is designed to enhance team collaboration and productivity by automating meeting notes, streamlining administrative tasks, improving workflow efficiency, and providing AI-powered insights. It supports a wide range of teams and roles, helping them focus on impactful work. For more, visit the homepage.

What makes Spinach.ai an enterprise-ready solution?

Spinach.ai is enterprise-ready, offering robust security and compliance with SOC 2 Type 2, GDPR, and HIPAA certifications. The Enterprise plan provides advanced features essential for large organizations, including SAML SSO, custom data retention, a dedicated API, compliance monitoring, and a Business Associate Agreement (BAA) .

Privacy Policy

Last Updated November 1, 2024

StayIn, Inc. (“Spinach,” “we,” “us,” or “our”) has prepared this Privacy Policy to explain (1) what personal information we collect, (2) how we use and share that information, and (3) your choices concerning our privacy and information practices.

Applicability of this Privacy Policy

We provide an AI-powered collaboration and productivity tools, software and other related technology (the “Services”). This Privacy Policy applies to personal information that we collect in connection with the Services, our website(s), including https://spinach.ai/, https://hypercontext.com/ and products and/or services that link to this Privacy Policy.

If you are a customer of Spinach, this Privacy Policy does not apply to personal information that we process on your behalf (if any) as your service provider. Such personal information shall instead be governed by the terms and conditions of the separate customer agreement or terms of service that you have agreed to with Spinach. In addition, our Services are designed for businesses and are not intended for personal, family, or household use. Accordingly, we treat all personal information covered by this Privacy Policy as pertaining to individuals acting as business representatives, rather than in their personal capacity.

Personal information we collect

Information you provide to us:

Business Contact Information: If you are a representative of one of our actual or prospective customers, suppliers or business partners, we may collect personal information about you (such as your name, contact details and role) when entering into an agreement with your company and during the course of our relationship with your company.
Account information, such as your name, email address, and other similar information when you register an account with us.
Transaction information, such as your credit card or other payment information and authentication details when you purchase a subscription for the Services. We do not directly process your credit card information and instead rely on Stripe as our payment processor.
Feedback or correspondence, such as information you provide when you contact us with questions, feedback, reviews, or otherwise correspond with us online.
Usage information, such as information about how you use the Services and interact with us.
Marketing information, such as your preferences for receiving communications about our activities, services, and publications, and details about how you engage with our communications.
Other information that we may collect which is not specifically listed here, but which we will use in accordance with this Privacy Policy or as otherwise disclosed at the time of collection.

Information received from our users. We may receive your personal information if another user or customer adds you to meeting or otherwise provides us with your personal information through the service. In such an instance, we may use your personal information to contact you on behalf of the user who provided us with your personal information (such as to send you a reminder about the meeting) or as otherwise described in this Privacy Policy, to the extent permitted under applicable laws and regulations.

Information we obtain from third parties. We may maintain pages on social media platforms, such as Facebook, Twitter, Instagram, and other third-party platforms. When you visit or interact with our pages on those platforms, the platform provider’s privacy policy will apply to your interactions and their collection, use and processing of your personal information. You or the platforms may provide us with information through the platform, and we will treat such information in accordance with this Privacy Policy. We may obtain your personal information from other third parties, such as marketing partners, publicly-available sources and data providers.

Automatic data collection. We and our service providers may automatically log information about you, your computer or mobile device, and your interaction over time with our Services, our communications and other online services, such as:

Device data, such as your computer’s or mobile device’s operating system type and version, manufacturer and model, browser type, screen resolution, RAM and disk size, CPU usage, device type (e.g., phone, tablet), IP address, unique identifiers (including identifiers used for advertising purposes), language settings, mobile device carrier, radio/network information (e.g., WiFi, LTE, 4G), and general location information such as city, state or geographic area.
Online activity data, such as pages or screens you viewed, how long you spent on a page or screen, browsing history, navigation paths between pages or screens, information about your activity on a page or screen, access times, and duration of access, and whether you have opened our marketing emails or clicked links within them.
Email Open/Click Information. We may use pixels in our email campaigns that allow us to collect your email and IP address as well as the date and time you open an email or click on any links in the email that we may send to you.

We use the following tools for automatic data collection:

Cookies, which are text files that websites store on a visitor’s device to uniquely identify the visitor’s browser or to store information or settings in the browser for the purpose of helping you navigate between pages efficiently, remembering your preferences, enabling functionality, helping us understand user activity and patterns, and facilitating online advertising.
Local storage technologies, like HTML5, that provide cookie-equivalent functionality but can store larger amounts of data, including on your device outside of your browser in connection with specific applications.
Web beacons, also known as pixel tags or clear GIFs, which are used to demonstrate that a webpage or email was accessed or opened, or that certain content was viewed or clicked.

How we use your personal information

To operate our Services:

Provide, operate, maintain, secure and improve our Services.
Provide information about our Services.
Communicate with you about our Services, including by sending you announcements, updates, security alerts, and support and administrative messages.
Respond to your requests, questions and feedback.

Marketing and advertising. We may from time-to-time send you direct marketing communications as permitted by law, including, but not limited to, notifying you of special promotions, offers and events via email and in-app notifications. You may opt out of our marketing communications as described in the “Opt out of marketing communications” section below.

For research and development. We may use your personal information for research and development purposes, including to analyze and improve our Services and our business. As part of these activities, we may create aggregated, de-identified, or other anonymous data from personal information we collect. We make personal information into anonymous data by removing information that makes the data personally identifiable to you. We may use this anonymous data and share it with third parties for our lawful business purposes, including to analyze and improve our Services and promote our business.

Compliance and protection. We may use personal information to:

Comply with applicable laws, lawful requests, and legal process, such as to respond to subpoenas or requests from government authorities.
Protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims).
Audit our internal processes for compliance with legal and contractual requirements and internal policies.
Enforce the terms and conditions that govern our Services.
Prevent, identify, investigate and deter fraudulent, harmful, unauthorized, unethical or illegal activity, including cyberattacks and identity theft.

Job Applicants

When you visit the careers portion of our website, we collect personal information that you provide to us in connection with your job application. This includes business and personal contact information, professional credentials and skills, educational and work history, and other information of the type that may be included in a resume. This may also include diversity information that you voluntarily provide. We use this information to facilitate our recruitment activities and process employment applications, such as by evaluating a job candidate for an employment activity, and monitoring recruitment statistics. We may also use and share this information to provide improved administration of the website, and as otherwise necessary: (a) to comply with relevant laws or to respond to subpoenas or warrants served on us; (b) to protect and defend the rights or property of us or others; or (c) in connection with a legal investigation.

How we share your personal information

Service providers. We may share your personal information with third party companies and individuals that provide services on our behalf or help us operate our Services (such as lawyers, bankers, auditors, insurers, and providers that assist with hosting, AI processing, analytics, email delivery, marketing, and database management).

Authorities and others. We may disclose your personal information to law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate for the compliance and protection purposes described above.

Business transfers. We may sell, transfer or otherwise share some or all of our business or assets, including your personal information, in connection with a business transaction (or potential business transaction) such as a corporate divestiture, merger, consolidation, acquisition, reorganization or sale of assets, or in the event of bankruptcy or dissolution. In such a case, we will make reasonable efforts to require the recipient to honor this Privacy Policy.

Affiliates: We may share personal information with our current and future affiliates, meaning an entity that controls, is controlled by, or is under common control with us. Our affiliates may use the personal information we share in a manner consistent with this Privacy Policy.

Cross-border processing of your personal information

We are headquartered in the United States. To provide and operate our services, it is necessary for us to process your personal information in the United States. If we transfer personal information across borders such that we are required to apply appropriate safeguards to personal information under applicable data protection laws, we will do so. Please contact us for further information about any such transfers or the specific safeguards applied.

Your choices

In this section, we describe the rights and choices available to all users.

Personal information requests: In certain circumstances (including based on where you are located), you may have the following rights in relation to your personal information:

the right to learn more about what personal information of yours is being processed, how and why such information is processed and the third parties who have access to such personal information. We have made this information available to you without having to request it by including it in this Privacy Policy;
the right to access your personal information;
the right to rectify/correct your personal information;
the right to restrict the use of your personal information where permitted under applicable law;
the right to request that your personal information is erased/deleted where permitted under applicable law;
the right to data portability (i.e. receive your personal information or have it transferred to another controller in a structured, commonly-used, machine readable format) where permitted under applicable law; and
the right to object to processing of your personal information or to direct us not to share your personal information with a non-affiliated third party where permitted under applicable law.

To make a request, please email us as provided in the “How to Contact Us” section below. We may ask for specific information from you to help us confirm your identity. We will require authorized agents to confirm their identity and authority, in accordance with applicable laws. You are entitled to exercise the rights described above free from discrimination.

Please note that in some circumstances, we may not be able to fully comply with your request, for example if we are required to retain certain information about you to comply with applicable laws and regulations or if the information is necessary in order for us to provide the services you requested. In particular, we, and our collection and processing of your personal information, may be governed by laws and regulations on anti-money laundering, fraud prevention, taxation and financial services. We will not discriminate against you for exercising your rights. We will not deny you access to our services, or provide you a lower quality of services if you exercise your rights.

Opt out of marketing communications. You may opt out of email communications by following the opt-out or unsubscribe instructions at the bottom of the email.

Online tracking opt-out. There are a number of ways to opt out of having your online activity and device data collected through our Services, which we have summarized below:

Blocking cookies in your browser. Most browsers let you remove or reject cookies. To do this, follow the instructions in your browser settings. Many browsers accept cookies by default until you change your settings. For more information about cookies, including how to see what cookies have been set on your device and how to manage and delete them, visit www.allaboutcookies.org.
Using privacy plug-ins or browsers. You can block our Services from setting cookies used for interest-based ads by using a browser with privacy features or installing browser plugins like Privacy Badger, DuckDuckGo, Ghostery or uBlock Origin, and configuring them to block third party cookies/trackers.
Google Analytics. We use Google Analytics to help us better understand how people engage with the Services by collecting information and creating reports about how users use our Services. For more information on Google Analytics, click here. For more information about Google’s privacy practices, click here. You can opt out of Google Analytics by downloading and installing the browser plug-in available at: https://tools.google.com/dlpage/gaoptout.

Note that because these opt-out mechanisms are specific to the device or browser on which they are exercised, you will need to opt-out on every browser and device that you use.

Do Not Track. Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.

Data Retention

We may retain your personal information for as long as it is reasonably needed in order to maintain and expand our relationship and provide you with our services; in order to comply with our legal and contractual obligations; or to protect ourselves from any potential disputes. To determine the appropriate retention period for personal information, we consider the amount, nature, and sensitivity of such information, the potential risk of harm from unauthorized use or disclosure of such information, the purposes for which we process it, and the applicable legal requirements.

As a product user, we archive meetings recorded through the Services after one (1) year from creation, and we retain other personal information associated with your account as long as you have an active account with us, in each case, unless you have requested deletion of your data in accordance with this Privacy Policy or as otherwise specified in your user agreement with us.

Other sites, mobile applications and services

Our Services may contain links to other websites, mobile applications, and other online services operated by third parties. These links are not an endorsement of, or representation that we are affiliated with, any third party. In addition, our content may be included on web pages or in mobile applications or online services that are not associated with us. We do not control third party websites, mobile applications or online services, and we are not responsible for their actions. Other websites and services follow different rules regarding the collection, use and sharing of your personal information. We encourage you to read the privacy policies of the other websites and mobile applications and online services you use.

Security practices

We use reasonable organizational, technical and administrative measures designed to protect against unauthorized access, misuse, loss, disclosure, alteration and destruction of personal information we maintain. Unfortunately, data transmission over the Internet cannot be guaranteed as completely secure. Therefore, while we strive to protect your personal information, we cannot guarantee the security of personal information. In the event that we are required to notify you about a situation involving your data, we may do so by email or telephone to the extent permitted by law.

Children

Our Services are not intended for children, and we do not collect personal information from them. We define “children” as anyone under 18 years old. If we learn we have collected or received personal information from a child without verification of parental consent, we will delete the information. If you believe we might have any information from or about a child, please contact us at [email protected].

Changes to this Privacy Policy

We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on our Services. We may also provide notification of changes in another way that we believe is reasonably likely to reach you, such as via e-mail (if you have an account where we have your contact information) or another manner through our Services.

Any modifications to this Privacy Policy will be effective upon our posting the new terms and/or upon implementation of the new changes on our Services (or as otherwise indicated at the time of posting). In all cases, your continued use of the Services after the posting of any modified Privacy Policy indicates your acceptance of the terms of the modified Privacy Policy.

How to contact us

If you have any questions or concerns, you can reach us by email at [email protected].

Frequently Asked Questions

Privacy & Data Protection