Legal
Privacy Policy
How we collect, use, and protect your personal information.
Last updated: March 1, 2026
1. Introduction
Maskki, a product of Leader Smart Technology LLC ("Company", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI conversational agent platform ("Service").
By using the Service, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use the Service.
2. Information We Collect
2.1 Account Information
When you create an account, we collect:
- Registration data: Name, email address, company name, password (hashed)
- Authentication data: OAuth tokens (if using Google or Apple Sign-In)
- Billing data: Subscription plan, payment method type (we do not store full card numbers; these are handled by Paddle)
2.2 Usage Data
We automatically collect certain information when you use the Service:
- Conversation metrics (count, duration, language used)
- Feature usage and interaction patterns
- API call logs (endpoint, timestamp, response status)
- Device and browser information
- IP address and approximate geographic location
2.3 Customer Content
Content you upload or create through the Service:
- Knowledge base documents and files
- Avatar configurations and custom voice profiles
- Integration settings and webhook configurations
2.4 Conversation Data
When end users interact with your AI agents, the following data may be processed:
- Text messages and chat transcripts
- Audio data (speech-to-text processing, temporary; not stored after transcription unless logging is enabled)
- Session metadata (timestamp, duration, language, sentiment analysis scores)
2.5 Cookies and Tracking
We use essential cookies for authentication and session management. We do not use third-party advertising trackers. Analytics data is collected in aggregate form.
3. How We Use Your Information
We use collected information for the following purposes:
- Provide the Service: Process conversations, render avatars, manage subscriptions
- Authentication: Verify your identity and manage account access
- Billing: Process payments, manage subscriptions, send invoices
- Support: Respond to your inquiries and provide technical assistance
- Analytics: Generate usage reports and conversation analytics for your dashboard
- Improvement: Analyze aggregate usage patterns to improve the Service (individual conversation content is NOT used for model training unless you opt in)
- Security: Detect and prevent fraud, abuse, and security threats
- Communication: Send service announcements, billing notifications, and security alerts
4. AI Model Training
🔒 Your Data Is Not Used for Training
By default, your conversation data and customer content are not used to train or improve our AI models. Your data is only used to provide the Service to you.
If you choose to participate in our optional Model Improvement Program, anonymized and aggregated conversation data may be used to improve AI response quality. This is strictly opt-in and can be revoked at any time from your account settings.
5. Data Sharing and Disclosure
We do not sell your personal information. We may share your information with:
- Service Providers: Third-party services that help us operate the platform:
- Paddle — payment processing and merchant of record
- Cloud infrastructure providers — hosting and compute
- Email service providers — transactional emails
- Legal Requirements: When required by law, regulation, legal process, or governmental request
- Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice)
- With Your Consent: For any other purpose with your explicit consent
6. Data Retention
- Account data: Retained for the duration of your account plus 30 days after deletion
- Conversation data: Retained according to your configured retention settings (default: 90 days). You can configure shorter or longer retention periods.
- Audio data: Temporarily processed for speech-to-text; deleted immediately after transcription unless conversation logging is enabled
- Billing records: Retained for 7 years as required by applicable tax and accounting regulations
- Usage analytics: Aggregated data retained indefinitely; individual records deleted after 12 months
7. Data Security
We implement appropriate technical and organizational measures to protect your data:
- TLS/SSL encryption for all data in transit
- Encryption at rest for stored data
- Access controls with role-based permissions
- Regular security audits and vulnerability assessments
- API key authentication for all programmatic access
- Rate limiting to prevent abuse
While we strive to protect your data, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.
8. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate or incomplete data
- Deletion: Request deletion of your personal data ("right to be forgotten")
- Portability: Request your data in a portable, machine-readable format
- Restriction: Request restriction of processing in certain circumstances
- Objection: Object to processing based on legitimate interests
- Withdrawal of Consent: Withdraw consent at any time where processing is based on consent
To exercise any of these rights, contact us at contact@lsmarttech.com. We will respond within 30 days.
9. International Data Transfers
Your data may be processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses where required by applicable law.
10. Children's Privacy
The Service is not intended for children under 18. We do not knowingly collect personal information from children. If you believe we have collected data from a child, contact us immediately and we will delete it.
11. Third-Party Links
The Service may contain links to third-party websites. We are not responsible for the privacy practices of those websites. We encourage you to review their privacy policies.
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes via email or through the Service at least 30 days before they take effect. The "Last updated" date at the top of this page indicates when the policy was last revised.
13. Contact Us
If you have questions or concerns about this Privacy Policy or our data practices: