Bidara
← Back to Home

Privacy Policy

Effective: January 1, 2025Last updated: January 5, 2025

Infinite Grow Ventures, Inc. d/b/a Bidara ("Bidara," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered proposal generation platform and related services (collectively, the "Service").

By using Bidara, you consent to the data practices described in this policy. If you do not agree with our policies and practices, please do not use our Service.

1. Information We Collect

1.1 Information You Provide to Us

  • Account Information: Name, email address, password, company name, and company address when you create an account
  • Company Profile: Business information including company address, logo, branding colors, capabilities documentation, and certification materials
  • Proposal Content: RFP documents, proposal responses, company documentation, past performance examples, and other materials you upload or create
  • Team Information: Names and email addresses of team members you invite to your workspace, along with their assigned roles
  • Payment Information: During beta, no payment information is collected. Future billing will be processed securely through Stripe
  • Communications: Information you provide when you contact support, submit feedback, or participate in surveys
  • AI Training Feedback: Corrections, improvements, and feedback you provide on AI-generated content
  • Integration Data: When you connect third-party services like HubSpot, we store necessary tokens and connection status

1.2 Information Collected Automatically

  • Usage Data: Pages viewed, features used, time spent on pages, click patterns, and search queries
  • Device Information: IP address, browser type, operating system, device type, and unique device identifiers
  • Log Data: Access times, error logs, and system performance metrics
  • Cookies and Tracking: Session cookies, authentication tokens, and preference settings
  • AI Interaction Data: Prompts submitted, generation parameters, and content improvement patterns

1.3 Information from Third Parties

  • Authentication Providers: Basic profile information if you sign in using Google or other OAuth providers
  • Integration Partners: Data from connected services like document storage platforms (when authorized by you)
  • Public Sources: Publicly available business information to enhance company profiles

2. How We Use Your Information

2.1 To Provide and Improve Our Service

  • Generate AI-powered proposal content tailored to your requirements
  • Store and organize your proposals, documents, and templates
  • Enable collaboration features within your workspace
  • Process and analyze RFP documents to extract requirements
  • Improve AI model accuracy and relevance through machine learning
  • Provide customer support and respond to inquiries
  • Send service-related notifications and updates

2.2 For Business Operations

  • Process payments and manage billing
  • Detect and prevent fraud, abuse, and security incidents
  • Comply with legal obligations and enforce our terms
  • Analyze usage patterns to improve features and user experience
  • Conduct research and development for new features

2.3 For Communications

  • Send product updates, tips, and best practices (with consent)
  • Notify you of changes to our Service or policies
  • Respond to support requests and feedback
  • Send promotional communications (you can opt-out anytime)

3. AI and Machine Learning

Important: Your Control Over AI Training

We prioritize your data privacy. Your proprietary content is never used to train our general AI models without explicit consent. You maintain full control over how your data is used for AI improvements.

How We Use AI:

  • Content Generation: We use AI models (including OpenAI's GPT) to generate proposal content based on your inputs
  • Document Analysis: AI processes uploaded RFPs to extract requirements and key information
  • Personalization: Your company's style and preferences are used to customize AI outputs for your workspace only
  • Quality Improvement: Aggregated and anonymized usage patterns help improve our AI's general capabilities

Your Data Protection:

  • Your uploaded documents and generated content remain confidential to your workspace
  • We do not share your content with other customers or use it for their benefit
  • AI model improvements using your data require opt-in consent
  • You can request deletion of your training data at any time

4. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information. We share information only in these circumstances:

4.1 With Your Consent

  • When you explicitly authorize sharing for integrations or features
  • With team members you invite to your workspace
  • When you choose to make proposals public or shareable

4.2 Service Providers

  • Infrastructure: Google Cloud Platform and Firebase for hosting, databases, and authentication
  • AI Processing: OpenAI for content generation and document analysis
  • Communications: SendGrid for email delivery and notifications
  • Analytics: Firebase Analytics and Google Analytics (anonymized usage patterns)
  • Payment Processing: Stripe for secure payment handling (when billing is implemented)
  • Integrations: HubSpot for CRM connectivity (when authorized by users)

All service providers are contractually obligated to protect your data and use it only for providing their services.

4.3 Legal Requirements

  • To comply with court orders, subpoenas, or legal processes
  • To protect our rights, property, and safety
  • To investigate fraud or security issues
  • To enforce our Terms of Service

4.4 Business Transfers

If Bidara is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you via email and prominent notice on our Service before your information is transferred and becomes subject to a different privacy policy.

5. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: All data is encrypted in transit (TLS/SSL) and at rest (AES-256)
  • Access Controls: Role-based permissions and multi-factor authentication available
  • Infrastructure: Secure cloud hosting with enterprise-grade security controls
  • Monitoring: 24/7 security monitoring and intrusion detection
  • Regular Audits: Security assessments and penetration testing
  • Incident Response: Established procedures for security incidents
  • Employee Training: Regular security awareness training for our team

While we strive to protect your information, no method of electronic storage is 100% secure. We cannot guarantee absolute security but commit to promptly notifying you of any breaches affecting your data.

6. Data Retention and Deletion

We retain your information only as long as necessary to provide our Service and fulfill the purposes outlined in this policy:

  • Active Accounts: Data is retained while your account is active
  • Deleted Content: Removed from active systems immediately, purged from backups within 90 days
  • Closed Accounts: Personal data deleted within 30 days, except as required for legal/tax purposes
  • Usage Analytics: Anonymized and aggregated after 24 months
  • Legal Holds: Data may be retained longer if required by law or litigation

Your Deletion Rights:

  • Request account deletion at any time through Settings or support
  • Export your data before deletion using our data portability tools
  • Specific content can be deleted individually within the platform
  • Deletion requests are processed within 30 days

7. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

7.1 Universal Rights

  • Access: Request a copy of your personal information
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your personal information
  • Portability: Receive your data in a portable format
  • Opt-Out: Unsubscribe from marketing communications

7.2 California Residents (CCPA/CPRA)

  • Right to know what personal information we collect and how it's used
  • Right to delete personal information (with exceptions)
  • Right to opt-out of the "sale" of personal information (we do not sell data)
  • Right to non-discrimination for exercising privacy rights
  • Right to correct inaccurate personal information
  • Right to limit use of sensitive personal information

7.3 European Users (GDPR)

  • Right to be informed about data collection and use
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights regarding automated decision-making

Legal Basis: We process data based on contract performance, legitimate interests, consent, and legal obligations.

To exercise any of these rights, contact us at support@bidara.ai. We will respond within 30 days (or as required by applicable law).

8. Children's Privacy

Bidara is not intended for users under 18 years of age. We do not knowingly collect personal information from children under 18. If we discover that we have collected information from a child under 18, we will promptly delete it. If you believe we have information from or about a child under 18, please contact us immediately.

9. International Data Transfers

Bidara operates from the United States. If you access our Service from outside the United States:

  • Your information will be transferred to and processed in the United States
  • Data protection laws may differ from those in your country
  • By using our Service, you consent to this transfer and processing
  • We use appropriate safeguards for international transfers (e.g., Standard Contractual Clauses)

10. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience:

Essential Cookies

  • Authentication and security tokens
  • Session management
  • Load balancing and performance

Functional Cookies

  • User preferences and settings
  • Language and display preferences
  • Recently viewed proposals

Analytics Cookies

  • Usage patterns and feature adoption
  • Performance monitoring
  • Error tracking and debugging

You can control cookies through your browser settings. Note that disabling certain cookies may limit functionality of our Service.

11. Third-Party Links and Services

Our Service may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing them with any personal information.

12. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

  • Posting the updated policy with a new "Last Updated" date
  • Sending an email notification to registered users
  • Displaying a prominent notice on our Service

Continued use of our Service after changes indicates acceptance of the updated policy.

13. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or our data practices:

Infinite Grow Ventures, Inc.

d/b/a Bidara

Email: support@bidara.ai

Response Time: Within 30 days

For data protection inquiries in the European Union, you may also contact your local data protection authority.

Terms of ServiceSupport CenterBack to Bidara