PRIVACY POLICY

Solsti.ai respects your privacy. This Privacy Policy explains how we collect, use, disclose, and protect information when you visit www.solsti.ai (the “Site”) and when we provide AI implementation, automation, and consulting services (our “Services”). This Policy applies to residents of the United States only.

By using our Site or Services, you agree to this Privacy Policy. If you do not agree, please do not use the Site or Services.

1) Who we are

  • Legal entity: Solsti AI

  • Address: Mtn Green, UT 84050, USA

  • Email: support@solsti.ai

  • Phone: (385) 217-2317

For Site visitors and our own marketing/operations, Solsti.ai acts as the business that determines how personal information is processed. For client engagements, we process information only as needed to provide the Services under our agreement with you.

2) Definitions (plain English)

  • “Personal Information” means information that identifies, relates to, describes, or could reasonably be linked with a particular consumer or household (e.g., name, email, IP address, account identifiers).

  • “Sensitive Personal Information” includes precise geolocation, account log-in with credentials, government IDs, health data, etc.

  • “De-identified” means data that cannot reasonably be linked to an individual.

  • “Sell” / “Share” follow U.S. state privacy laws (e.g., California) and generally refer to disclosure to third parties for monetary or other valuable consideration (sell) or for cross-context behavioral advertising (share).

3) What we collect

A. From Site visitors & prospects

  • Identifiers & contact info: name, email, phone, company, role (when you submit forms, book meetings, or message us).

  • Usage/technical data: IP address, device and browser type/version, pages viewed, timestamps, referring/exit pages, and similar analytics.

  • Cookies & similar tech: pixels/tags used for Site functionality, analytics, and (optional) advertising—see Cookie Notice below.

B. From clients (during service delivery)

  • Business contact info: names, roles, emails, phone numbers of your team.

  • Operational data you provide: workflows, configuration files, tickets, logs, transcripts, lead lists, CRM/ERP data, and similar.

  • Content for AI workflows: prompts, context documents, and outputs.

  • Sensitive/regulated data (if applicable): only when your engagement requires it (e.g., PHI for healthcare use cases under a Business Associate Agreement (BAA)).

We do not intentionally collect information from children under 13, and our Site/Services are not directed to them.

4) Sources of information

  • Directly from you (forms, emails, calls, demos).

  • Automatically from your device/browser (cookies, pixels, logs).

  • From your organization or service providers you authorize us to integrate with (e.g., CRM/EMR/ERP/marketing tools).

  • From publicly available sources (e.g., company websites, LinkedIn) to support B2B marketing.

5) How we use information

  • Provide and improve the Site (including troubleshooting, analytics, security).

  • Respond to inquiries and provide demos, proposals, and customer support.

  • Deliver the Services (configure, deploy, monitor, and maintain AI/automation solutions as requested).

  • Business operations (billing, accounting, audits, preventing fraud, enforcing agreements).

  • Marketing (with your consent where required)—you can opt out anytime.

  • Legal/compliance (comply with laws, respond to lawful requests, enforce our rights).

We do not use client-provided data to train AI models unless you have given express prior written consent and any applicable provider settings permit it.

6) AI & service providers

To deliver the Services, we may transmit inputs/outputs to third-party AI and cloud providers (e.g., OpenAI/Azure OpenAI, Anthropic, Google Cloud, orchestration tools like Zapier or n8n) and other processors (hosting, analytics, ticketing, project tools, communications). We contractually require vendors to protect data and use it only as instructed. For PHI, we will use providers and deployment patterns appropriate for HIPAA (e.g., BAAs, private endpoints) if your engagement requires it.

7) When we disclose information

We disclose personal information to:

  • Vendors/Processors that help us host, secure, analyze, support, or deliver Services.

  • Your authorized partners when you ask us to connect or share (e.g., your CRM/EMR/ERP/marketing stack).

  • Legal & safety recipients (e.g., regulatory authorities, courts) if required or to protect rights, safety, or security.

  • Business transfers (e.g., merger, acquisition, financing, sale of assets), subject to appropriate safeguards.

We do not permit our vendors to use your personal information for their own unrelated purposes.

8) Your privacy choices

  • Marketing emails: unsubscribe via the email footer or privacy@solsti.ai.

  • Cookies: manage through our cookie banner or your browser settings (blocking some cookies may impact functionality).

  • Targeted advertising (where used): follow the choices in our cookie banner or the “Do Not Sell or Share My Personal Information” link (if applicable).

9) U.S. state privacy disclosures (CCPA/CPRA, UCPA, and similar laws)

Depending on your state, you may have rights to:

  • Know/Access the personal information we maintain about you.

  • Delete personal information (subject to exceptions).

  • Correct inaccuracies.

  • Opt out of “sale” or “sharing” for targeted advertising, if we engage in those activities.

  • Limit use/disclosure of Sensitive Personal Information (California).

How to exercise rights

Email privacy@solsti.ai with “Privacy Request” in the subject and tell us what you want to do. We’ll verify your identity, and where permitted, you may use an authorized agent. We won’t discriminate against you for exercising your rights.

Sale/Share disclosure

Solsti.ai does not sell personal information for money. If we ever use third-party advertising or analytics that qualifies as a “share” under applicable law, you can opt out via our cookie banner or “[Do Not Sell or Share My Personal Information]” link.

10) Data retention

  • Site & marketing data: retained as long as needed for the purposes above and to comply with legal/accounting requirements, then deleted or de-identified.

  • Client engagement data: retained for the term of your agreement and a reasonable period thereafter for backup, support, dispute resolution, and legal compliance, then deleted or returned per your instructions and our contract.

11) Security

We use reasonable administrative, technical, and physical safeguards, including encryption in transit, access controls, least-privilege permissions, logging/monitoring, and vendor due diligence. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

12) Cookies & tracking (Cookie Notice)

We use:

  • Strictly necessary cookies for core functionality, security, load balancing, and consent management.

  • Analytics cookies to understand Site performance and improve features.

  • Advertising/retargeting cookies (optional and only if/where used) to measure and deliver ads.

Manage your preferences via our cookie banner or your browser settings. For details, see our [Cookie Policy].

13) HIPAA & PHI (if applicable)

For healthcare engagements involving Protected Health Information (PHI), we will execute a Business Associate Agreement (BAA) and comply with applicable HIPAA/HITECH requirements. We use or disclose PHI only as permitted by the BAA and your instructions. If your engagement does not require PHI, please do not transmit PHI to us.

14) Children’s privacy

We do not knowingly collect personal information from children under 13. If you believe a child has provided us information, contact privacy@solsti.ai and we will take appropriate action.

15) Third-party websites & links

Our Site may link to third-party websites and services. Their privacy practices are governed by their own policies. We are not responsible for third-party content or practices. When you leave our Site, review the privacy policy of every site you visit.

16) Changes to this Policy

We may update this Privacy Policy periodically. We will post the updated version with a new “Last updated” date. Material changes may be communicated by additional notice.

17) Contact us

Questions or requests?
Legal entity: Solsti AI

  • Address: Mtn Green, UT 84050, USA

  • Email: support@solsti.ai

  • Phone: (385) 217-2317

18) U.S. arbitration; Utah venue, governing law

By using the Site or Services, you agree that any disputes, claims, or controversies arising out of or relating to this Privacy Policy, our Site, or our Services will be resolved by binding individual arbitration administered by [AAA or JAMS] under its applicable rules, and held in Salt Lake County, Utah (or remote/virtual by mutual agreement).

  • Governing law: The laws of the State of Utah (without regard to conflict-of-law principles).

  • Venue for non-arbitrable claims and to compel arbitration: State or federal courts in Utah; you consent to jurisdiction there.

  • Waiver: To the fullest extent permitted by law, you and Solsti.ai waive any right to a jury trial or to participate in a class action.

  • This section does not limit either party’s right to seek injunctive or equitable relief in court to protect confidential information, intellectual property, or data security.

19) State-specific notices (summary)

  • California: You have rights to know, delete, correct, and opt out of sale/share. We do not collect Sensitive Personal Information for the purpose of inferring characteristics. Use our cookie banner or “[Do Not Sell or Share My Personal Information]” link for targeted advertising choices.

  • Colorado, Connecticut, Virginia, Utah (UCPA), and similar: Comparable rights to access, delete, correct (varies by state), and opt out of targeted advertising and certain profiling.

For full details or to exercise your rights, email privacy@solsti.ai.

20) Additional documents available on request

  • Data Processing Addendum (DPA) for B2B clients.

  • Business Associate Agreement (BAA) for healthcare/PHI use cases.

  • Information Security Overview and Vendor/Sub-processor List.

  • Cookie Policy and “Do Not Sell or Share” page content.

Quick implementation checklist for your site

  • Link this Privacy Policy in your footer.

  • Add a Cookie Banner with category toggles (Necessary, Analytics, Advertising) + a preferences panel.

  • Add a “Do Not Sell or Share My Personal Information” link (if you enable cross-context behavioral ads).

  • Add a Contact/Privacy Request form (routes to privacy@solsti.ai).

  • If you serve healthcare clients, publish a notice that BAAs are available upon request and PHI is handled only under BAA.

Updated: Sep 9th 2025