Skip to content
DuDiBa

Privacy Policy

Last updated: February 13, 2026

1. Introduction

DuDiBa ("we," "us," or "our") operates the website https://dudiba.com and the DuDiBa AI chat widget service. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

2.1 Account Information

When you register, we collect your email address and password (stored securely via Supabase Auth). We do not store passwords in plaintext.

2.2 Workspace & Content Data

We store the URLs and documents you submit for indexing, the generated text embeddings, and your workspace configuration (widget colors, welcome message, handoff email, Slack webhook URL).

2.3 Conversation Data

When visitors interact with your embedded chat widget, we store conversation messages (questions and AI-generated answers), visitor identifiers, and handoff requests. This data is associated with your workspace.

2.4 Payment Information

We do not directly collect or store credit card numbers. Payments are processed by Stripe and/or Razorpay. We store subscription identifiers and statuses returned by these providers to manage your account.

2.5 Usage & Analytics Data

We may collect anonymized usage data such as page views and feature usage through Vercel Analytics. We use cookies as described in our Cookie Policy.

3. How We Use Your Information

  • To provide, operate, and maintain the DuDiBa service
  • To process your transactions and manage your subscription
  • To generate AI-powered responses based on your indexed content
  • To send you transactional emails (e.g., password resets, handoff notifications)
  • To improve and optimize our service
  • To comply with legal obligations

4. Third-Party Services

We share data with the following third-party services as necessary:

  • Supabase — Authentication, database hosting, and file storage
  • OpenAI — Text embeddings and chat completions (conversation content is sent to OpenAI's API for processing)
  • Stripe — Payment processing (for applicable regions)
  • Razorpay — Payment processing (for India)
  • Resend — Transactional email delivery
  • Vercel — Hosting and analytics

Each third-party provider has its own privacy policy governing their use of your data.

5. Data Retention

We retain your account and workspace data for as long as your account is active. You may delete individual documents from the Knowledge section of your dashboard. If you wish to delete your account entirely, please contact us at harish@tagna.in.

Conversation data is retained indefinitely for analytics purposes unless you request deletion.

6. Data Security

We use industry-standard security measures including encrypted connections (HTTPS), secure password hashing, webhook signature verification, and row-level security policies in our database. However, no method of transmission or storage is 100% secure.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict processing of your data
  • Data portability

To exercise any of these rights, contact us at harish@tagna.in.

8. Children's Privacy

DuDiBa is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

10. Governing Law

This Privacy Policy is governed by the laws of India and the state of Karnataka. Any disputes shall be subject to the exclusive jurisdiction of courts in Karnataka, India.

11. Contact Us

If you have questions about this Privacy Policy, contact us at: harish@tagna.in