ART (arealtimetech.com) — a product of Aiotrix Private Limited
Last updated on 14 October 2025
| Who we are | Aiotrix Private Limited (aiotrix.com) operates ART (arealtimetech.com) and the AgentX companion app. |
| What we collect | Account details, billing information, technical data, and — only when you ask — backups of your AgentX chat history. |
| What we collect | Account details, billing information, technical data, and — only when you ask — backups of your AgentX chat history. |
| How chat works | Your AgentX conversations live on your device. We do not store them on our servers unless you explicitly create a backup to Google Drive (Android) or iCloud (Apple). |
| AI training | We do not use your conversations or content to train AI models. |
| Your rights | You can access, correct, delete, or export your data, withdraw consent, and raise grievances at any time. |
| Who to contact | Grievance Officer details are at the bottom of this policy. |
Aiotrix Private Limited (“Aiotrix,” “we,” “us,” or “our”) is a company registered in India with its corporate website at aiotrix.com. We operate ART, our real-time messaging and agent platform available at arealtimetech.com, along with the AgentX companion application for mobile devices (together, the “Services”). This Privacy Policy explains how we collect, use, store, share, and protect personal data when you use the Services.
This policy should be read together with our Terms of Service and our Cookie Policy. If there is any conflict between this Privacy Policy and our Terms of Service, the Terms of Service shall prevail.
By using the Services, you agree to the practices described in this policy. We review this policy regularly and will post updates to this page with a revised Last updated date.
When we act as Data Controller
We are the data controller for personal data we collect directly from you, such as:
Account registration and login data
Account registration and login data
Communications with our support and sales teams
Website analytics and marketing data
For this data, we determine why and how it is processed, and this Privacy Policy describes our practices in full.
When we act as Data Processor
When our customers build agents using ART’s Agent Builder and deploy them through AgentX or other channels, those customers (not us) decide what data their end users provide, how long it is kept, and for what purpose. In these cases, our customer is the data controller and we are a data processor acting on their instructions.
If you are an end user interacting with an agent built by one of our customers, please refer to that customer’s privacy policy for details on how your data is handled. We process such data only as instructed by our customer and as permitted by applicable law.
| Category | Information Collected |
|---|---|
| Registration data | First name, last name, organization name, job title or role, and login credentials (email, hashed password or single sign-on identifiers). |
| Contact data | Billing address, email address, and phone number. |
| Transaction data | Records of products and services purchased, subscription plan, payment status, invoices, and usage tied to your account. |
| Technical data | IP address, device identifiers, device type and model, operating system, browser version, language, time zone, and access logs. We use this data for security, fraud prevention, debugging, and to operate the Services. |
| Usage data | Aggregated and event-level information about how you use the Services, such as features accessed, error events, and performance metrics. |
| AgentX session data | Chat history and related session data are stored locally on your device while you are using AgentX. We do not retain your chat history on our servers in the normal course of operation. If you choose to enable backup, an encrypted backup of your session data is stored in your own Google Drive (on Android) or iCloud (on Apple devices). These backups remain under your control — we do not read them, modify them, or share them with third parties. |
| Sensitive data | We do not intentionally collect special categories of data such as health information, biometric data, racial or ethnic origin, religious beliefs, sexual orientation, or political opinions. Please avoid sharing such data through chats or backups. If you do share it, you are responsible for ensuring you have the right to do so. |
We collect data in the following ways:
Directly from you when you register an account, make a purchase, fill out a form, or contact our support team.
Automatically through cookies, similar technologies, and server logs when you visit our website or use the Services. See our Cookie Policy for details.
From third parties such as authentication providers (e.g. Google sign-in), payment processors, and analytics providers.
We process your personal data only when we have a lawful basis to do so. The table below summarizes our key purposes and the basis we rely on:
| Purpose | What this involves | Lawful basis |
|---|---|---|
| Provide the Services | Authenticate logins, deliver features, send service notifications | Performance of contract |
| Process payments and billing | Generate invoices, charge subscriptions, prevent payment fraud | Performance of contract / legal obligation |
| Customer support | Respond to your questions and resolve issues | Performance of contract / legitimate interest |
| Improve and secure the Services | Monitor performance, fix bugs, prevent abuse, investigate incidents | Legitimate interest |
| Send service updates | Notify you of changes, outages, or critical product updates | Legitimate interest / legal obligation |
| Marketing communications | Send product news, feature announcements, and promotions | Consent (you may opt out anytime) |
| Legal and regulatory compliance | Respond to lawful requests, comply with tax and accounting rules | Legal obligation |
We do not use your data to make automated decisions that produce legal or similarly significant effects on you without human review.
ART and AgentX use artificial intelligence to power agent functionality. The following commitments apply:
No model training on your content We do not use your conversations, prompts, agent configurations, or files to train our own AI models or those of our third-party AI providers.
Third-party AI processing. Depending on the features and models you select, messages may be sent to third-party AI providers solely to generate responses. These providers are bound by confidentiality and data protection commitments.
AI output limitations AI-generated responses may be inaccurate, incomplete, or unsuitable for specific decisions. Do not rely on them for legal, medical, financial, or other professional advice without independent verification.
Your control You decide what information to share with the AI through your prompts. We recommend not sharing sensitive personal data in chats or backups.
Chat history and related session data are stored locally on your device while you are signed in. AgentX connects to our services only to load your agent configuration and to enable communication-related features.
When you log out, locally stored session data is removed from the device unless you have explicitly created a backup. If no backup exists, previous session data cannot be recovered.
AgentX offers an optional backup and restore feature:
Backups are initiated and controlled entirely by you. AgentX accesses only the backup files you choose to create or restore. We do not read unrelated content in your Drive or iCloud, do not modify other files, and do not share backup content with any third party.
Outside of backups you create, AgentX does not permanently retain your chat history on our servers after you log out.
AgentX requests only the device permissions necessary for specific features:
No permission is used for any purpose beyond what is described here.
We do not sell, rent, or trade your personal data. We share data only in the limited circumstances below:
To run the Services, we work with third-party providers, some of which are based outside India. The table below lists the main categories of providers, where they are based, and what kind of data they receive.
| Category | Provider | Location | Data shared |
|---|---|---|---|
| AI model providers | OpenAI, Anthropic, Google (Gemini) | United States | Prompts and conversation content needed to generate AI responses |
| Cloud hosting and infrastructure | Azure | India | All Service data we host |
| Payment processing | Razorpay | India; United States | Name, billing address, email; card data goes directly to the provider, not to us |
| Analytics | Google Analytics; Hotjar | United States; European Union | Cookie identifiers, device and browser data, usage events (see Cookie Policy) |
| Advertising | Meta Platforms (Facebook) | United States | Marketing cookies set with your consent (see Cookie Policy) |
| Backup storage (user-controlled) | Google Drive (Android); Apple iCloud (iOS) | Your own account region | AgentX session backups, only when you create them |
Wherever your personal data is transferred outside the country in which you reside, we put safeguards in place to protect it. These include written data processing agreements with each provider, confidentiality and security commitments, and — where applicable — Standard Contractual Clauses or equivalent transfer mechanisms recognised under applicable data protection laws.
We do not transfer personal data to any country that the Government of India has restricted under applicable law. We review our providers periodically; the list above may change as our infrastructure evolves and we will update this section when material changes occur.
We retain personal data only for as long as needed to fulfil the purposes described in this policy. Where Indian law sets a minimum or maximum retention period, we follow it. Where it does not, we apply the periods set out below based on industry practice and the nature of the data.
| Data category | Retention period |
|---|---|
| Account and registration data | For the life of your account, plus up to 90 days after account deletion to handle disputes and final reconciliation |
| Billing and tax records | 8 years from the end of the relevant financial year (Income Tax Act, 1961 §44AA and GST Act, 2017) |
| Support tickets and communications | Up to 3 years from last interaction |
| Server logs and security data | At least 180 days (as required under the Information Technology Rules, 2011) and up to 12 months, longer if needed for an active investigation |
| AgentX chat history (server-side) | Not retained server-side outside user-initiated backups , |
| AgentX backups in Google Drive / iCloud | Retained as long as you choose to keep them in your own account |
| Marketing data | Until you withdraw consent, plus up to 30 days to action the withdrawal |
Where Indian law requires us to keep data for longer (for example, to defend a legal claim, respond to a court order, or comply with a regulator), we will retain it only for as long as the obligation requires and then delete or anonymise it.
We implement reasonable technical and organizational measures designed to protect personal data against accidental loss, unauthorized access, disclosure, alteration, and destruction. These measures include:
Encryption of data in transit using industry-standard protocols (TLS)
Encryption of sensitive data at rest
Role-based access controls for our internal teams
Regular security reviews of our infrastructure and code
Written confidentiality and security agreements with service providers
No method of transmission or storage is completely secure. While we strive to protect your data, we cannot guarantee absolute security. You are responsible for keeping your account credentials confidential and notifying us of any suspected unauthorized use.
In the event of a personal data breach that is likely to result in risk to your rights and interests, we will notify the relevant supervisory authority and affected users without undue delay, in accordance with applicable law. Where required, this notification will be made within 72 hours of becoming aware of the breach. Notifications will describe the nature of the breach, the data involved, the likely consequences, and the steps we are taking to address it.
| Right | Description |
|---|---|
| Access | request a copy of the personal data we hold about you. |
| Correction | ask us to correct data that is inaccurate or incomplete. |
| Erasure | ask us to delete your data where there is no good reason for us to continue processing it. |
| Withdraw consent | where we rely on consent, withdraw it at any time. This will not affect the lawfulness of processing carried out before withdrawal. |
| Object or restrict | object to processing based on our legitimate interests or ask us to restrict processing in certain situations. |
| Portability | receive a copy of certain data in a structured, commonly used, machine-readable format. |
| Nominate | nominate another individual to exercise these rights on your behalf in the event of your death or incapacity. |
| Grievance redressal | raise a complaint with our Grievance Officer about how your data has been handled. |
To exercise any of these rights, contact our Grievance Officer using the details in Section 18. We aim to respond to verifiable requests within 30 days. Where a request is complex, or where we need additional information to verify your identity, we may take longer and will let you know.
With your consent, we may send you product updates, feature announcements, and promotional offers. You can opt out at any time by clicking the “unsubscribe” link in any marketing email, or by contacting us. Opting out of marketing will not stop service-related communications such as billing notices, security alerts, and changes to our terms or policies.
The Services are not directed at children under the age of 18. We do not knowingly collect personal data from children. If you are under 18, you may use the Services only with the consent and supervision of a parent or legal guardian, and where such consent has been verifiably provided. If you believe a child has provided us with personal data without verifiable parental consent, please contact our Grievance Officer and we will delete the data.
Our website uses cookies and similar technologies. Details — including the cookies we use, why we use them, and how you can manage your preferences — are set out in our Cookie Policy at arealtimetech.com/cookie-policy.
If you have questions about this Privacy Policy, want to exercise your rights, or wish to raise a concern about how we handle your data, please contact us:
Email: info@aiotrix.com
Address:Door No. 2, PANCHAL, Bejai Main Road, Mangaluru, Karnataka, India
We will acknowledge your grievance within a reasonable time and aim to resolve it within 30 days of receipt, in line with applicable Indian law.
We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date at the top and — where appropriate — notify you through the Services or by email. We encourage you to review this page periodically.
By using the Services, you consent to the collection and use of your personal data as described in this Privacy Policy, including in any future updates posted on this page. In the event of a merger, acquisition, reorganization, or similar corporate transaction, your personal data may be transferred as part of the business assets. Any successor entity will be required to honor this Privacy Policy unless and until it provides notice of an updated policy.