Privacy Policy

1. The BYOI Principle and What It Means for Your Privacy

Juniors is built on a zero-data-residency model. This is the single most important fact about how we handle data:

• Customer conversation data,support tickets, chat histories, agent notes, and end-user messages,is stored exclusively in the infrastructure you provide and control. It never passes through or resides on Juniors' servers.
• Your knowledge base,documents, FAQs, and other content you index for RAG-powered AI resolution,is processed in your designated infrastructure. Juniors does not retain copies of this content.
• LLM inference,all AI requests are routed directly to your chosen LLM provider using credentials you supply. Juniors does not intercept, log, or store these requests or responses on our side.

This architecture means the bulk of operational data in your support platform is governed by your own privacy obligations, not ours. This policy covers the narrower category of data Juniors does handle directly.

2. Information We Collect

2.1 Account and Registration Data

When you create a Juniors account or register for our services, we collect:

• Full name and work email address of account holders and invited team members
• Company name and website
• Job title or role (where provided)
• Billing information (processed via our payment provider; we do not store raw card details)
• Account preferences and configuration settings

2.2 Platform Usage and Metadata

As you use the Juniors console, we collect anonymised or aggregated platform metadata to understand how the product is used and to improve it:

• Feature interaction events (e.g., which modules are accessed, configuration changes made)
• Session duration and frequency
• Error logs and performance diagnostics
• Agent and admin action logs within the console (for audit trail purposes, stored on your infrastructure)

This metadata does not include the content of customer conversations, ticket data, or knowledge base material.

2.3 Technical and Device Information

When you access the Juniors web console or our website, we automatically collect:

• IP address and general geographic region
• Browser type and version
• Operating system
• Referring URLs and page navigation within our site

2.4 Communications Data

If you contact us for support, submit an early access request, or otherwise communicate with us directly, we retain:

• The content of your messages and enquiries
• Your contact details as provided
• Records of our responses

2.5 Integration Credentials

When you configure third-party integrations (e.g., Slack, LLM providers, webhooks), you provide API keys and connection credentials. These are encrypted at rest and used solely to facilitate the integrations you configure. We do not use your credentials for any other purpose.

3. How We Use Your Information

We use the information we collect for the following purposes:

• Service delivery: Provisioning and maintaining your Juniors account, processing subscription payments, and enabling the features you configure.
• Platform improvement: Analysing anonymised usage metadata to identify friction points, improve UX, and prioritise new features.
• Customer support: Responding to your support requests, bug reports, and account queries.
• Security and fraud prevention: Detecting and preventing unauthorised access, abuse, and security incidents.
• Legal compliance: Meeting our obligations under applicable Indian laws, including the Digital Personal Data Protection Act, 2023 (DPDPA), and other applicable regulations.
• Communications: Sending transactional emails (e.g., payment confirmations, account alerts) and, with your consent, product updates or early access announcements. You may opt out of non-transactional communications at any time.

We do not use your data to train AI models, build advertising profiles, or sell insights to third parties.

4. Legal Basis for Processing

Where applicable (including under GDPR for users in the European Economic Area), we process personal data on the following legal bases:

• Contract performance: Processing necessary to provide the Juniors platform under your subscription agreement.
• Legitimate interests: Security monitoring, product analytics, and fraud prevention,where these interests are not overridden by your rights.
• Legal obligation: Compliance with applicable laws and regulatory requirements.
• Consent: Marketing communications and optional data uses, where we have obtained your explicit consent. You may withdraw consent at any time.

5. Information Sharing and Disclosure

We do not sell, rent, or broker your personal information. We share data only in the following limited circumstances:

5.1 Service Providers

We engage trusted third-party vendors to operate the Juniors platform, including cloud infrastructure providers, payment processors, email delivery services, and analytics tools. These providers process data on our behalf under contractual obligations that require them to protect it and use it only for the purposes we specify.

5.2 Your LLM and Integration Providers

When you configure third-party integrations (LLMs, Slack, webhooks, CRM systems), data flows to those services as directed by your configuration. Juniors does not control these providers. You are responsible for reviewing their privacy policies and ensuring your use of those integrations complies with your own obligations to your end-customers.

5.3 Legal Requirements

We may disclose information when required by law, court order, or regulatory authority, or when we believe in good faith that disclosure is necessary to protect the rights, property, or safety of Juniors, our customers, or the public.

5.4 Business Transfers

In the event of a merger, acquisition, restructuring, or sale of all or substantially all of our assets, your account information may be transferred to the successor entity. We will notify you of any such transfer and the resulting privacy implications with reasonable advance notice.

5.5 With Your Consent

We may share information in other circumstances with your explicit prior consent.

6. Data We Do Not Collect

Given the BYOI architecture, the following data categories are explicitly not collected or stored by Juniors:

• The content of customer support conversations or chat transcripts
• Support ticket data, customer profiles, or CRM records from your system
• Knowledge base documents or training material you index for AI resolution
• LLM prompts, completions, or AI-generated responses within your support console
• End-user (your customers') personal information of any kind
• Agent activity logs beyond what is stored on your own infrastructure

You are the data controller for all of the above. Juniors acts as a processor only for the limited account and usage data described in Section 2.

7. Cookies and Tracking Technologies

We use cookies and similar technologies on our website and within the Juniors console for the following purposes:

• Essential cookies: Required for the platform to function,session management, authentication tokens, and security features. These cannot be disabled without breaking core functionality.
• Analytics cookies: Anonymised tracking of page views, feature usage, and navigation flows to improve the product. We use privacy-respecting analytics tools that do not build individual advertising profiles.
• Preference cookies: Storing your UI preferences (e.g., theme, language, dashboard layout) across sessions.

You can manage cookie preferences through your browser settings. Disabling non-essential cookies will not affect your ability to use the platform.

8. Data Retention

We retain personal data only for as long as necessary for the purposes outlined in this policy:

• Account data: Retained for the duration of your subscription and for up to 2 years after account closure, unless a shorter period is requested or required by law.
• Billing records: Retained for 7 years in compliance with Indian tax and financial record-keeping requirements.
• Support communications: Retained for up to 3 years from the date of the last interaction.
• Usage metadata: Anonymised aggregated metrics may be retained indefinitely as they cannot be linked to individuals.
• Integration credentials: Deleted promptly upon disconnection of the relevant integration or account closure.

9. Data Security

We implement industry-standard technical and organisational measures to protect the data we hold:

• Encryption in transit (TLS 1.2+) for all data exchanged with the Juniors platform
• Encryption at rest for stored account data and integration credentials
• Role-based access controls within our own engineering and operations teams
• Regular security assessments and vulnerability monitoring
• Incident response procedures for detecting and addressing data breaches

In the event of a data breach affecting your account information, we will notify you as required under applicable law, and in any case within 72 hours of becoming aware of the breach where feasible.

No method of transmission over the internet is completely secure. While we take reasonable precautions, we cannot guarantee absolute security.

10. Your Rights

Depending on your location, you may have the following rights with respect to your personal data:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete information.
• Deletion: Request deletion of your personal data, subject to legal retention obligations.
• Portability: Request your data in a structured, machine-readable format.
• Restriction: Request that we limit how we process your data in certain circumstances.
• Objection: Object to processing based on legitimate interests.
• Withdraw consent: Withdraw consent for any processing based on consent (e.g., marketing emails) at any time, without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at rahul@juniors.ai. We will respond within 30 days. We may need to verify your identity before processing your request.

If you are located in the EU/EEA and are not satisfied with our response, you have the right to lodge a complaint with your local supervisory authority.

11. Your Obligations as a Customer (Data Controller)

Because Juniors' BYOI model means your customers' data resides on your infrastructure, you are the data controller for all end-user personal data processed through the platform. This means you are responsible for:

• Providing your end-customers with a privacy notice that discloses the use of AI in support interactions;
• Obtaining any consents required by applicable law for AI-assisted communication, data processing, and any recording or logging of interactions on your infrastructure;
• Complying with data subject rights requests from your end-customers in relation to data stored on your infrastructure;
• Ensuring your infrastructure configuration meets applicable security and data protection standards;
• Entering into appropriate data processing agreements with any third-party LLM or integration providers you connect to Juniors.

12. International Data Transfers

Herpenza Technologies Pvt Ltd is based in India. If you access Juniors from outside India, your account and usage data may be transferred to and processed in India.

Where we engage service providers located in other jurisdictions, we ensure appropriate safeguards are in place, such as standard contractual clauses or equivalent mechanisms, to protect your data in accordance with applicable law.

Because your operational support data (conversations, tickets, knowledge base) resides on your own infrastructure, international transfer rules for that data are governed by your own configuration and compliance obligations.

13. Children's Privacy

The Juniors platform is designed for business use and is not intended for individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe a minor has provided us with personal information, please contact us at rahul@juniors.ai and we will delete it promptly.

14. Third-Party Links

Our website and platform may contain links to third-party websites or services. This Privacy Policy does not apply to those sites. We encourage you to review the privacy policies of any third-party services you access through links on our platform.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or product features. When we make material changes:

• We will update the "Last Updated" date at the top of this page;
• We will notify you via email to your account's primary contact address and/or an in-platform notification at least 14 days before changes take effect;
• For significant changes that affect how we use your data in a materially different way, we will seek fresh consent where required.

Your continued use of the platform after the effective date of any changes constitutes acceptance of the updated policy.

16. Contact Us

For any questions, concerns, or requests related to this Privacy Policy or your personal data, please reach out to us:

We aim to respond to all privacy-related enquiries within 30 days.