Privacy Policy

1. Information We Collect

We collect information that you provide to us directly, information collected automatically, and information from third parties:

A. Information You Provide to Us

• Account Data: First name, last name, email address, phone number, profile avatar, and bio.
• Business Data: Business name, business email, business phone number, address/shipping address, business tags, and business descriptions.
• Security Data: Hashed passwords and Multi-Factor Authentication (MFA) status.
• Preferences & Settings: System preferences including your selected theme (light/dark/system), locale/language (e.g., en-US), timezone, and notification preferences (push, email, marketing, and digest frequencies).

B. Information Collected Automatically

• Device & Usage Data: IP addresses, login timestamps, account onboarding status, and system activity logs.
• Cookies: We do not use tracking or advertising cookies (e.g., no Meta Pixels or Google Analytics trackers). However, we do use strictly necessary session tokens/cookies required to keep you logged in and authenticate your sessions securely.

C. Information from Third Parties

If you choose to register or log in using third-party services (Google or Facebook OAuth), we will receive your name, email address, and profile picture from those platforms.

D. End-Customer Data & Local AI Processing

Because our AI agents interact with your customers across your website and messaging channels, we process the contents of those conversations, order details, and payment statuses on your behalf. In this context, you are the Data Controller, and Bloom is the Data Processor. All conversations are processed using our locally hosted AI models. We do not send your customers' data to external, third-party AI providers.

2. How We Use Your Information

We use the collected information to:

• Create, verify, and secure your account.
• Deploy, train, and manage your AI sales agents securely on our internal infrastructure based on your specific business profile, timezone, and locale.
• Process subscription payments securely via Dodo Payments and Paystack.
• Send you relevant communications based on your preferences, including transactional emails, daily/weekly activity digests, and optional marketing updates.
• Provide customer support and maintain the security of our platform.

3. How We Share Your Information

We do not sell your personal information. We may share your data in the following strictly limited situations:

• Service Providers: We share data with trusted third parties who assist us in operating our platform, such as secure cloud hosting services and payment processors (Dodo Payments, Paystack). Because we utilize local AI models, your customer conversation data is processed internally on our secure infrastructure and is never shared with external third-party AI providers.
• Third-Party Integrations: When you connect Bloom to external messaging channels, data is routed through those channels as required for the AI agent to interact with your customers.
• Legal Compliance: We may disclose your data if required by law, subpoena, or other legal processes, or to protect the rights and safety of Bloom, our users, or others.

4. Data Security

We implement robust security measures to protect your data, including encrypted password hashing, local AI processing to prevent third-party data leaks, and optional Multi-Factor Authentication (MFA). However, no system is completely secure, and we cannot guarantee the absolute security of your information.

5. International Data Transfers

Bloom operates out of Nigeria, but our services are available globally. Your information may be transferred to, stored, and processed in countries other than your own via our secure cloud hosting providers. By using Bloom, you consent to the transfer of your data to our global servers.

6. Your Privacy Rights & Choices

Depending on your location (including under the Nigeria Data Protection Regulation - NDPR, GDPR, or CCPA), you may have the right to:

• Access the personal data we hold about you.
• Request corrections to inaccurate data.
• Request the deletion of your account and personal data.
• Opt-Out of Communications: You can manage or disable push notifications, marketing emails, and activity digests at any time directly within your account settings.

To exercise your data rights, please contact us at info@trybloomapp.com.

7. Children's Privacy

Our Service is restricted to users who are 18 years of age or older. We do not knowingly collect personal information from children under 18. If we become aware that a child under 18 has provided us with personal data, we will take steps to delete such information immediately.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top.

9. Contact Us

If you have questions or concerns about this Privacy Policy or how we handle your data, please contact us at:

• Email: info@trybloomapp.com
• Phone: +2347032622430
• Address: Lagos, Nigeria