Our Privacy Policy

To provide our service and integrations, we need access to certain information from your Slack, Discord, and Linear accounts. This includes:

• Authentication credentials for secure access

• Message content related to integration functionality

• Workspace configuration and settings

• User roles and permissions

• Project and task metadata

• Billing information where applicable

Introduction

Duster AI ("we," "us," "our," or "Duster") respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy describes how we collect, use, store, and handle your information when you use our AI-powered product management and project management platform (the "Service"), including our integrations with communication platforms like Slack and Discord, and project management tools like Linear.

Please read this Privacy Policy carefully to understand our practices regarding your personal information and how we treat it. By accessing or using our Service, you acknowledge that you have read and understood this Privacy Policy.

Definitions

• Personal Information: Any information that identifies or can be used to identify an individual, directly or indirectly.

• Service Data: Information collected from integrated platforms (Slack, Discord, Linear) including messages, conversations, and project-related content.

• Platform: The Duster AI software, websites, and services.

• User: Any individual who uses our Service, including employees of our customers.

• Customer: The organization or entity that has contracted with Duster AI to use our Service.

• Integration Platforms: Third-party services that Duster AI integrates with, including but not limited to Slack, Discord, and Linear.

Understanding Key Terms

Before diving deeper into our privacy practices, it's important to understand some key terms we'll be using throughout this policy. Personal Information refers to any data that can identify you, either directly or indirectly. When we mention Service Data, we're talking about the information we collect from integrated platforms like Slack, Discord, and Linear, including your messages, conversations, and project-related content. Our Platform encompasses all Duster AI software, websites, and services. We consider anyone using our Service a User, while the organization subscribing to our Service is the Customer.

Information Collection

Our approach to information collection is guided by the principle of collecting only what's necessary to provide you with an excellent service experience. We handle several categories of information:

Account Information: Your Duster AI journey begins with basic but essential information. This includes your name and email address, along with details about your organization and workplace. We also maintain professional information such as your role and department, and practical preferences like your time zone and language settings. If you choose to upload a profile picture, we'll store that too.

Service Integration Data: At the heart of our platform lies the ability to process and understand your workflow. We carefully handle messages and conversations from your designated Slack channels or Discord servers, always respecting your privacy and confidentiality. Your organization's Standard Operating Procedures (SOPs), structure, and project-related communications help us provide a more tailored experience. We maintain records of your workflow configurations and preferences to ensure consistent service delivery.

Technical Details: To maintain a secure and efficient service, we process certain technical information in the background. This includes your IP address and basic device information, helping us ensure service compatibility and security. We monitor access patterns and performance metrics solely to improve your experience and maintain service reliability.

How We Use Your Information

Our use of your information is purposeful and focused on delivering value. For core functionality, we process communication data from your integrated platforms to generate and manage project issues in Linear, maintaining conversation context and enabling smooth cross-platform integration. This allows us to provide AI-powered insights that enhance your workflow efficiency.

Service enhancement is another key focus area. We analyze usage patterns and performance metrics to improve our platform's capabilities. This includes developing new features and optimizing existing ones, always with your productivity in mind. Our AI models are continuously trained and improved based on aggregated data insights, ensuring better recommendations and automation capabilities.

Customer support is fundamental to our service. We use your information to provide timely and effective technical assistance, keeping you informed about service updates and ensuring you get the most value from our platform. This includes sending important notifications about your account status and gathering feedback to improve our service.

Security and Data Protection

Security is not just a feature – it's the foundation of our service. We employ enterprise-grade encryption for all data, both in transit and at rest. Our security measures include:

Our infrastructure is built on secure cloud platforms with industry-standard data centers, ensuring high availability and data protection. We maintain comprehensive backup systems and implement geographic data replication for added security. Regular security audits and penetration testing help us identify and address potential vulnerabilities before they become risks.

Access to your data is strictly controlled through role-based permissions and multi-factor authentication. Our security team continuously monitors for potential threats and maintains robust incident response procedures.

Third-Party Integrations and Data Sharing

Our service thrives on seamless integration with platforms that enhance your workflow. When you connect Duster AI with Slack or Discord, we access only the channels and messages you explicitly designate for integration. This includes necessary workspace metadata and message history to maintain context and provide intelligent project management capabilities.

For Linear integration, we process project and issue data, including assignments, workflow states, and task information. This integration allows us to automatically create and update issues based on your team's communications and decisions.

We carefully select third-party service providers to support our infrastructure, payment processing, and analytics needs. Each provider undergoes rigorous security assessment and must adhere to strict data protection standards through formal data processing agreements. These agreements ensure your data remains protected with the same level of care we provide directly.

Your Rights and Control Over Your Data

We believe in giving you complete control over your information. You have the right to access all personal data we hold about you, export it in a machine-readable format, and review how your data flows through our integrations. Our platform provides intuitive interfaces for managing your privacy preferences and integration settings.

You can modify your personal information at any time, adjust notification preferences, and control how your data is used across our platform. If you choose to delete your account, we've made the process straightforward and comprehensive. Account deletion initiates a complete purge of your personal data across our systems, including disconnection from all integrations and removal from our backups.

Data Retention and Security

Your data is retained only as long as necessary to provide our services and comply with legal obligations. Active account data remains available throughout your service subscription. We maintain integration data only as required for functionality, and usage logs are kept for 90 days to support troubleshooting and security monitoring.

Our backup systems retain data for 30 days to ensure business continuity and protect against data loss. When you request deletion, we ensure your data is removed from all systems, including backups, through a verified deletion process.

International Operations and Data Transfers

As a global service provider, we transfer data across borders with utmost care and compliance. We employ Standard Contractual Clauses and maintain Privacy Shield certification to ensure lawful data transfers. Our infrastructure spans multiple geographic regions, allowing us to optimize performance while respecting local data protection requirements.

Data centers are strategically located to serve our global customer base while adhering to regional data sovereignty requirements. Each transfer mechanism is carefully selected to provide appropriate safeguards for your data.

Compliance and Your Regional Rights

We maintain a comprehensive compliance program aligned with major privacy regulations worldwide. Under the GDPR, European users enjoy enhanced privacy rights, including data portability and the right to be forgotten. California residents have specific rights under the CCPA, including detailed access requests and opt-out options for data sharing.

Our privacy framework incorporates Privacy by Design principles, ensuring data protection is built into every aspect of our service. We regularly conduct impact assessments and compliance audits to maintain the highest standards of data protection.

Updates and Business Changes

Our commitment to transparency extends to how we handle policy updates and business changes. When we modify this policy, we'll notify you through multiple channels: direct email notifications, platform announcements, and website updates. Significant changes require your acknowledgment before continuing service use.

In the event of a business transfer or merger, we ensure your data rights are protected through appropriate agreements and notifications. You'll always have the opportunity to understand how your data will be handled under new ownership.

Contact and Support

We've established dedicated channels for privacy-related inquiries and concerns. Our privacy team can be reached at privacy@duster.ai for general questions. For urgent matters or potential data breaches, contact our Data Protection Officer directly at dpo@duster.ai.

Our support team is trained to handle privacy-related requests with the utmost care and professionalism. Whether you need to exercise your data rights or understand how we handle specific types of information, we're here to help.

Cookie Management

Our cookie practices are detailed in a separate Cookie Policy, which explains how we use these technologies to improve your experience. You'll find comprehensive controls for managing cookie preferences, ensuring you have full control over how these technologies interact with your browser.

Notes

Your trust is fundamental to our service. We maintain this trust through transparent practices, robust security measures, and respect for your privacy choices. As we continue to innovate and enhance our platform, our commitment to protecting your privacy remains unwavering.