Privacy Policy

Soloprojekt (“Soloprojekt”, “we”, “us”) provides a multi-tenant AI customer-assistant platform at soloprojekt.id. This policy explains what we collect, why, and the choices you have. It covers the people who run a workspace (our customers) and the end-customers they serve through it.

Account data — name, email, and authentication identifiers when you sign up or sign in with Google.

Workspace content — the knowledge you add (documents, links, Google Sheets you connect) so the assistant can answer for your shop.

Conversations — messages exchanged with your customers over WhatsApp, Instagram, and TikTok, including contact phone numbers/handles, so the assistant can reply and your team can follow up.

Usage & billing — feature usage, message counts, wallet balance, and payment status (card details are handled by Xendit, never by us).

To operate the service: generate replies, organize your contacts, deliver analytics and summaries, process payments, provide support, secure the platform, and meet legal obligations. We do not sell your data, and we do not use your customers’ message content to train third-party models.

If you connect Google Sheets, we access only the spreadsheets you authorize, and only to sync their contents into your assistant’s knowledge base. Soloprojekt’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We do not use Google data for advertising, do not sell it, and do not allow humans to read it except where you ask us to for support, for security, or where required by law. You can disconnect Google access at any time from your integration settings.

We share data only with processors that help us run the service:

• VercelApplication hosting
• SupabaseDatabase, authentication
• PineconeVector search for your knowledge base
• Anthropic (Claude)AI reply generation
• Voyage AIText embeddings
• Cloudflare R2File storage
• Meta / WhatsAppWhatsApp & Instagram messaging
• TikTok ShopTikTok customer messaging
• GoogleSign-in & optional Google Sheets sync
• XenditPayments (Indonesia)
• ResendTransactional email
• UpstashRate limiting & caching

We keep your data while your workspace is active and for a reasonable period afterward to meet legal, accounting, and security needs. You may request deletion of your workspace data at any time (see Contact).

Access tokens and credentials are encrypted at rest. We use row-level isolation so one workspace cannot read another’s data, transport encryption (HTTPS) everywhere, and least-privilege access for our team. No system is perfectly secure, but we work to protect your data and to notify you of incidents that affect you.

You can access, correct, export, or delete your data, and object to or restrict certain processing. To exercise these rights, contact us at the address below and we will respond within a reasonable time.

The service is for businesses and is not directed to children under 18.

We may update this policy as the product evolves. Material changes will be reflected by the “last updated” date above and, where appropriate, an in-app notice.

Questions or requests: privacy@soloprojekt.id.