PRIVACY MATTERS

ai.Bendito Privacy Policy

Effective Date: November 18, 2025

This Privacy Policy explains how ai.Bendito by Cambia Digital (“ai.Bendito,” “we,” “us,” or “our”) collects, uses, shares, and protects personal information when you visit or use:

Our website at aibendito.com and any subdomains
Our web apps, AI tools, chatbots, voice agents, and related services (collectively, the “Services”).

By using the Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use the Services.

CONTACT US

1. Information We Collect

We collect information in three main ways: (1) you provide it to us, (2) it’s collected automatically, and (3) it comes from third parties.

1.1 Information You Provide Directly

When you interact with ai.Bendito, you may provide:

Account and contact details: name, email address, phone number, company name, job title, role, and password or login credentials.
Billing and payment details: billing address, shipping address (if applicable), and limited payment information (most payment data is processed directly by our payment processors).
AI/chatbot content: the prompts, questions, messages, uploads, and other content you enter into our AI tools, chatbots, voice agents, forms, and contact widgets.
Business information: details about your company, industry, technology stack, use cases, or other information you provide while using our Services or during consultations.
Support communications: messages sent through support forms, chat, email, or other channels, including attachments you upload.
Surveys and feedback: responses to surveys, NPS feedback, testimonials, feature requests, and other feedback you choose to provide.

You can choose not to provide certain information, but this may limit your ability to use some features of the Services.

1.2 Usage, Log, and Device Information

When you use our website or apps, we automatically collect:

Device information: IP address, browser type and version, operating system, device type, device identifiers, language settings.
Usage data: pages and screens viewed, navigation paths, referring and exit pages, session duration, click and scroll activity, search queries on our site, date/time stamps, and error logs.
App interaction data: which features you use, which AI tools or chatbots you interact with, frequency of use, and performance metrics.

We use this information for analytics, troubleshooting, and to improve the functionality and security of our Services.

1.3 Cookies and Similar Technologies

We use:

Cookies (small text files placed on your device)
Web beacons/pixels
Local storage and similar technologies

These help us:

Keep you signed in
Remember your preferences
Measure traffic and usage
Deliver or measure marketing campaigns

You can manage cookies in your browser settings and, where available, via our cookie banner or cookie preference tools. Disabling certain cookies may impact site functionality.

1.4 Third-Party Data

We may receive information about you from:

Authentication providers (e.g., if you sign in with a social or SSO provider)
Analytics and advertising providers
Payment processors
CRM, email, or marketing tools you connect to ai.Bendito
Public sources, such as professional networking sites, business registries, or publicly available websites

We combine this information with data we collect directly when permitted by law.

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 To Provide and Improve the Services

Operate, maintain, and secure our website, apps, and AI tools
Process sign-ups, logins, subscriptions, and payments
Provide customer support and respond to inquiries
Configure and deliver chatbots, voice agents, and AI automations you request

2.2 To Power AI Features

Use your prompts, messages, and uploads to generate responses and perform actions requested by you
Maintain logs of AI interactions to troubleshoot issues, improve quality, and develop new features
Use de-identified or aggregated interaction data to train or fine-tune internal systems, analytics, and workflows

Note: In some cases, we may rely on third-party AI infrastructure or model providers to process your data. These providers act as service providers or processors and are contractually required to protect your information and use it only to deliver the Services we request.

2.3 To Communicate With You

Send transactional and administrative messages (e.g., account notices, security alerts, billing updates)
Respond to your emails, support tickets, and product questions
Provide onboarding resources, product updates, and feature announcements

2.4 Marketing, Education, and Lead Nurturing

Send newsletters, educational content, product recommendations, and promotional offers, subject to your preferences and applicable law
Personalize website and email content based on your behavior, preferences, and interactions
Run surveys, case studies, and testimonials (with your consent where required)

You can opt out of marketing communications at any time by following the unsubscribe link in our emails or contacting us.

2.5 Analytics, Security, and Fraud Prevention

Analyze usage trends to understand how our Services are used and where we should focus improvements
Monitor, detect, and prevent fraud, abuse, spam, and security incidents
Enforce our terms of use and other agreements

2.6 Legal and Compliance

Comply with applicable laws and regulations
Respond to lawful requests from public authorities
Establish, exercise, or defend legal claims

3. Legal Bases for Processing (Where Applicable)

If you are located in a region like the European Economic Area (EEA), the UK, or another jurisdiction that requires a legal basis for processing, we rely on one or more of the following:

Performance of a contract: When processing is necessary to provide the Services you request (e.g., account creation, subscription, support).
Legitimate interests: To operate, secure, and improve our Services; prevent fraud; understand usage; and send non-promotional service communications, where these interests are not overridden by your rights.
Consent: For certain marketing activities, cookie usage, or data sharing where required. You may withdraw consent at any time.
Legal obligations: When processing is necessary to comply with legal requirements (e.g., tax law, regulatory obligations).

4. How We Share Information

We do not sell your personal information as that term is defined in some privacy laws. We may share personal information in these situations:

4.1 Service Providers and Vendors

We share information with trusted third parties who help us operate the Services, including:

Website hosting and cloud infrastructure
AI infrastructure and model providers
Payment processors and billing systems
Email, SMS, and communication tools
Analytics and reporting services
Customer support platforms and CRM tools
Marketing and advertising partners (where allowed by law)

These providers may only use your information to perform services on our behalf and are contractually required to protect it.

4.2 Affiliates and Business Partners

We may share information with our affiliates or selected partners:

To offer joint products, services, or events
To co-market AI-powered solutions, where you’ve shown interest or consented

Where required by law, we will obtain your consent before such sharing.

4.3 Corporate Transactions

If we are involved in a merger, acquisition, asset sale, financing, or similar transaction, your information may be transferred as part of that transaction. We will take reasonable steps to ensure the recipient continues to protect your personal information as described in this policy.

4.4 Legal, Safety, and Protection

We may disclose information to:

Law enforcement, regulators, courts, or other third parties when required by law or legal process
Protect the rights, property, or safety of ai.Bendito, our users, or the public
Detect and prevent fraud, security issues, or misuse of our Services

4.5 Public or Shared Content

If you choose to post content publicly (for example, on a public forum, community, or as a case study/testimonial we publish with your permission), that information may be visible to others. Please do not share sensitive personal information in those areas.

5. Cookies and Tracking Technologies

We use cookies and similar technologies to:

Enable core functionality (e.g., login, session management)
Remember your preferences and language settings
Measure performance and usage patterns
Support marketing, retargeting, and advertising campaigns in compliance with applicable laws

You can manage cookies via your browser settings and, where available, through our cookie banner or cookie preference tool. Some features may not work properly if you disable certain cookies.

6. Data Retention

We retain personal information only for as long as necessary to:

Provide the Services
Fulfill the purposes outlined in this Privacy Policy
Comply with legal and accounting obligations
Resolve disputes and enforce agreements
Support analytics, security, and fraud prevention

Retention periods vary depending on the type of data and purpose. We may also retain aggregated or de-identified data that does not identify you personally for longer periods.

7. Security

We implement administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. These measures may include:

Encryption in transit and at rest (where applicable)
Access controls and authentication
Regular security monitoring and logging
Vendor risk assessments

No method of transmission over the internet or method of electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. If we become aware of a security incident that affects your personal information, we will notify you and/or regulators in accordance with applicable laws.

8. International Data Transfers

ai.Bendito is operated from the United States, and we may process and store information in the U.S. and other countries. These locations may have data protection laws that are different from those in your country.

When we transfer personal information internationally:

We do so in accordance with applicable data protection laws
Where required, we use appropriate safeguards (such as Standard Contractual Clauses or similar mechanisms) to protect your personal information

By using the Services, you understand that your information may be transferred to and processed in countries outside your country of residence.

9. Your Choices and Rights

Depending on your location and applicable law, you may have some or all of the following rights:

Access: Request confirmation whether we process your personal information and obtain a copy.
Correction: Request that we correct or update inaccurate or incomplete information.
Deletion: Request that we delete your personal information, subject to certain exceptions.
Restriction: Request that we restrict certain types of processing in specific circumstances.
Objection: Object to processing based on our legitimate interests, including certain marketing activities.
Data portability: Request a copy of your personal information in a structured, commonly used, machine-readable format, where technically feasible.
Withdraw consent: Where processing is based on consent, withdraw that consent at any time without affecting prior lawful processing.
Marketing opt-out: Opt out of marketing emails by using the unsubscribe link in the message or contacting us.

To exercise your rights, please contact us using the details in the Contact Us section below. We may need to verify your identity before responding. We will respond to your request in accordance with applicable law.

Additional Rights for Certain Regions

Residents of some jurisdictions (for example, the EEA, UK, California, and others) may have additional rights under local data protection laws. Where required, we will provide region-specific notices or forms to help you exercise those rights.

10. Children’s Privacy

Our Services are not directed to children under the age of 13 (or a higher age where required by local law), and we do not knowingly collect personal information from children.

If we learn that we have collected personal information from a child without appropriate consent, we will take reasonable steps to delete it. If you believe a child has provided us personal information, please contact us immediately.

11. Third-Party Websites and Services

Our website and content may include links to third-party websites, products, or services (for example, payment processors, learning platforms, AI tools, or social networks).

This Privacy Policy does not apply to those third parties. Their own privacy policies govern their handling of your information. We encourage you to review the privacy policies of any third-party sites or services before providing your information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in:

Our Services
Our data practices
Applicable laws and regulations

When we make changes, we will:

Post the updated Privacy Policy on aibendito.com, and
Update the Effective Date at the top of this page

For material changes, we may also provide additional notice (for example, by email or a prominent banner on the site), where required by law.

Your continued use of the Services after any changes become effective means you accept the updated Privacy Policy.

13. Contact Us

If you have questions about this Privacy Policy, want to exercise your privacy rights, or have a concern or complaint, you can contact us at:

ai.Bendito by Cambia Digital, LLC

Email: info@aibendito.com

Address: 44 Court Street, Brooklyn, NY 11201

Phone: 1-844-222-1912

If you are located in the European Economic Area or the United Kingdom, you also have the right to lodge a complaint with your local data protection authority.