Privacy Policy
Last updated: June 17, 2026
1. Information We Collect
When you use Root AI, we collect the minimal information necessary to provide you with our services. This includes your account details (email address and name) when you register, your conversation history and AI chat interactions to maintain context and improve your experience, usage analytics to understand how features are being used, and payment information processed securely through our payment partners — we never store full credit card details on our servers.
2. How We Use Your Information
Your data is used exclusively to provide and improve Root AI services. Specifically, we use your information to process and respond to AI chat requests across our supported models, generate music and video content you request, maintain your conversation history for continuity across sessions, analyze platform performance and reliability, and send important service notifications such as billing updates or security alerts. We do not sell your data, share it with advertisers, or use your conversations to train third-party models.
3. Data Storage & Security
All user data is stored on encrypted servers with AES-256 encryption at rest. Communications between your browser and our servers are protected with TLS 1.3 encryption in transit. We maintain regular security audits, automated threat detection, and strict access controls to ensure your data remains private and secure. Our infrastructure follows industry best practices for security, including firewalls, intrusion detection systems, and routine vulnerability scanning.
4. Third-Party Models
Root AI integrates with third-party AI models to provide its services. Here's how each model handles your data:
DeepSeek
Used for conversational AI and reasoning tasks. Root AI sends prompt data to DeepSeek's API for processing. DeepSeek does not use customer data for model training.
- API endpoint: encrypted in transit
- No data retention by DeepSeek
- Prompt data is not logged
xAI
Provides fast, broad-domain conversational responses. Prompt data is transmitted to xAI's servers with TLS encryption. xAI's privacy policy governs their data handling.
- Encrypted transmission
- No training on user data
- Prompts processed in real-time
Suno
Handles music generation requests. Your prompts and generated audio metadata are sent to Suno's API. Suno does not use customer-generated content for training.
- Audio generated server-side
- No prompt data retention
- Generation metadata minimal
5. Cookies
Root AI uses essential cookies to maintain your session state, remember your theme preferences (light/dark mode), and provide security features such as CSRF protection. We use Laravel's built-in session cookies, which are httpOnly and secure in production. We do not use tracking cookies, third-party advertising cookies, or cross-site tracking. You can disable cookies in your browser settings, but this may affect the functionality of the platform.
6. Your Rights
You have full control over your data. At any time, you can access and export your conversation history through the platform, delete individual conversations or your entire account, request a complete copy of all data we store about you, and opt out of non-essential communications. To exercise any of these rights, please contact us at [email protected]. We will respond to all requests within 30 days.
7. Data Retention
We retain your account data and conversation history for as long as your account remains active. If you delete your account, all associated data including conversations, generated media, and personal information is permanently deleted within 30 days. For deleted conversations, data is immediately removed from our active systems and permanently purged from backups during the next backup rotation cycle, typically within 7 days. Payment records are retained as required by financial regulations for a period of 7 years.
8. Children's Privacy
Root AI is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at [email protected] and we will promptly delete such information from our records.
9. Changes to This Policy
We may update this privacy policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make significant changes, we will notify you via email and through a notice on our platform at least 14 days before the changes take effect. Continued use of Root AI after changes become effective constitutes acceptance of the updated policy. We encourage you to review this page periodically for the latest information.
10. Contact Us
If you have any questions, concerns, or requests regarding this privacy policy or your data, please reach out to us. We're committed to transparency and protecting your privacy.
Response Time
Within 48 hours