LOOOM
Back

Privacy Policy

Looom AI Privacy Policy & Notices

Effective Date: 22/08/2025

  1. Introduction

Looom AI (“we,” “our,” or “us”) is committed to protecting your privacy and ensuring that your personal and professional information is handled securely. This Privacy Policy explains how we collect, use, and protect data when you use the Looom AI platform.

By accessing or using Looom AI, you agree to the terms of this Privacy Policy.

  1. Information We Collect

Looom AI is designed to analyse content you provide. We do not automatically collect personal information from users. The types of data you provide may include:

  • Text, code, or documents you submit for analysis.
  • Optional contextual information such as project names, sections, or prompts.

Important: We do not store your data long-term. Inputs are processed in-memory or via AI services for the purpose of generating analysis results.

  1. How We Use Your Data

We use the information you provide only to perform the requested analysis. This includes:

  • Generating audit insights, code explanations, or risk analysis.
  • Returning results to your session for download or viewing.

We do not use your data for marketing, training, or other purposes.

  1. Data Storage & Security
  • Submitted data is processed securely using AI services (e.g., OpenAI API) and is not stored on our servers after processing.
  • All communications are encrypted via HTTPS.
  • We implement standard technical measures to prevent unauthorized access during data transmission.
  1. Cookies & Tracking
  • Looom AI does not use cookies to track personal usage.
  1. Third-Party Services
  • We may use third-party AI providers (e.g., OpenAI) to process your inputs.
  • Your data is transmitted securely to these providers solely for processing and is not stored beyond what the provider requires for service functionality.
  1. Your Rights
  • You have the right to withdraw or stop using the platform at any time.
  • Since we do not store your inputs, there is no personal data retention for which you need deletion requests.
  • You may request information on our privacy practices by contacting us at info@addigital.co.za
  1. Legal Notices & Disclaimers
  • Looom AI is a support tool. Outputs are suggestions or analysis, not official advice.
  • Users are responsible for verifying outputs before relying on them.
  • We are not liable for any decisions made based on the platform’s outputs.
  1. Security Measures

We take the security of your data seriously and implement industry-standard practices to protect it, including:

  • Encryption in Transit: All data transmitted between your device and our platform is encrypted using secure protocols (HTTPS).
  • Secure Infrastructure: Our servers and systems are protected with firewalls, access controls, and other security technologies to prevent unauthorized access.
  • Limited Internal Access: Only authorized personnel have access to data for operational purposes.
  • Regular Updates: We maintain up-to-date software, plugins, and security patches to safeguard against known vulnerabilities.

While we strive to protect your information, no system can be 100% secure, and you acknowledge the inherent risks when transmitting data online.

 

Third Parties & Hosting

  • Hosting: Looom AI is hosted on secure servers located in South Africa, in compliance with applicable data protection laws (POPIA, GDPR, etc.).
  • Third-Party Services: We may use trusted third-party services for:
    • Email/newsletters (e.g., Mailchimp)
    • Analytics (e.g., Google Analytics)
    • Payment processing (e.g., Stripe, PayPal, YOCO)
  • These providers are contractually required to comply with data protection laws.
  • The Privacy Policy is updated regularly to reflect any new third-party services used.

 

  1. Data Breach Readiness

Looom AI has procedures in place to respond promptly to potential data breaches:

  • Detection & Investigation: We actively monitor systems to detect unauthorized access, data loss, or security incidents, and investigate any suspected breaches.
  • Notification under POPIA (South Africa): If a breach involves personal information, we will notify the Information Regulator and affected users without undue delay.
  • Notification under GDPR (EU): For users in the European Union, we will notify the relevant data protection authority within 72 hours of becoming aware of a personal data breach. Affected users will also be informed when required.
  • Mitigation: We take immediate steps to limit the impact of any breach, including securing affected systems and implementing corrective measures to prevent recurrence.

Note: Despite our efforts, no system can be completely immune to breaches. Users are encouraged to follow good security practices when interacting with the platform.

 

 

  1. Changes to This Privacy Policy

We may update this Privacy Policy periodically. The effective date will be updated whenever changes are made. Users are encouraged to review this page regularly.

  1. Contact Us

For questions or concerns regarding privacy or data handling, contact:

Email: info@addigital.co.za