Privacy Policy
Navidi.ai — operated by Navidi Investments · Last updated: June 25, 2026
1. Introduction
This Privacy Policy explains how Navidi Investments ("Navidi," "we," "us," or "our") collects, uses, shares, and protects information in connection with the Navidi.ai platform and related services (the "Services"). Navidi.ai is a white-label AI agent and marketing-analytics platform that businesses ("Clients") use to operate AI assistants, manage advertising, and measure marketing performance. This policy covers account users (Client personnel who sign in) and Client end-customer data (information about a Client's own customers that the Client connects or uploads). If you are an end customer of one of our Clients, that business — not Navidi — is responsible for how your information is used; we process it on their behalf, and you should refer to their privacy policy.
2. Information We Collect
- Account information: credentials (username and a securely hashed password), business name, contact details, configuration settings.
- Connected advertising and CRM data: with the Client's authorization, the Services connect to third-party platforms (Google Ads, Meta/Facebook, CRM tools) via official OAuth flows to read advertising performance, leads, and related data. We receive secure access tokens, never the Client's password for those platforms.
- Uploaded business records: Clients may upload records such as sales reports. We extract only the fields needed for measurement (transaction amount, date, a contact identifier) plus upload metadata; source files are deleted after processing.
- Personal identifiers for conversion matching: to measure which advertising produced paying customers, the Services match sales to leads using contact identifiers (email and/or phone). Wherever feasible these are processed in hashed (irreversible) form rather than readable text.
- Usage and technical data: standard logs (access times, actions, error diagnostics) to operate and secure the Services.
3. How We Use Information
We use information to: provide, operate, maintain, and secure the Services; authenticate users and protect accounts; read advertising and CRM data so Clients can view performance, cost-per-lead, and return-on-ad-spend; match sales to advertising and, with the Client's configuration and consent settings, send hashed conversion signals to advertising platforms so they can optimize the Client's campaigns; provide AI assistant functionality at the Client's direction; communicate with account users; and comply with legal obligations. We do not sell personal information, and we do not use Client end-customer data for our own advertising.
4. Google User Data — Limited Use
Navidi's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:
- We use Google user data only to provide and improve the user-facing features described in this policy (reading advertising performance and sending conversion measurement on the Client's behalf);
- We do not transfer or sell Google user data for advertising or any unrelated purpose;
- We do not use Google user data to train generalized or third-party AI/ML models;
- We do not allow humans to read Google user data except with the Client's explicit consent, for security or to comply with law, or where the data has been aggregated and anonymized.
5. AI Processing
The Services use third-party AI models to power assistant features, interpret uploaded data, and generate content at the Client's direction. Where data is sent to an AI provider to perform a requested task, we limit it to what is needed and mask or exclude readable personal contact identifiers from prompts where feasible. We do not permit our AI providers to train their models on Client data except as required to provide the Service.
6. How We Share Information
We share only: with advertising and service platforms the Client has connected (e.g. sending hashed conversion data to Google Ads or Meta as the Client directs); with service providers (cloud hosting, AI providers) under confidentiality obligations; for legal reasons; and in a business transfer, subject to this policy.
7. Data Retention and Deletion
We retain account and configuration data while an account is active. Uploaded source files are deleted after processing. Derived non-readable records (hashed identifiers, aggregate metrics) are retained as needed and may be deleted on Client request. To request deletion, contact [email protected].
8. Security
We protect information using encryption in transit, encryption of stored access tokens with server-held keys, hashing of credentials and contact identifiers, and access controls. No method is perfectly secure, but we use commercially reasonable safeguards.
9. Your Rights and Choices
Depending on location, you may have rights to access, correct, delete, or restrict use of personal information and to withdraw consent. Because Navidi often processes end-customer data on behalf of a Client, requests about that data should go to the relevant Client; we assist them in responding. Account users may contact [email protected].
10. International Users
Navidi operates in the United States; if you access the Services from outside the US, your information may be processed in the US.
11. Children's Privacy
The Services are intended for businesses and are not directed to children. We do not knowingly collect personal information from children.
12. Changes to This Policy
We may update this policy, posting the updated version with a new "Last updated" date and, where appropriate, notifying Clients.
13. Contact Us
Navidi Investments · 4150 SW 110th Ave, Beaverton, OR 97005 · Email: [email protected]