Privacy Policy

At MOLT AI, Inc. ("MOLT," "we," "us," or "our"), we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI agent platform and related services ("Service").

This policy applies to all users of the Service, including those who create accounts, deploy AI agents, and browse our marketplace. By using the Service, you consent to the data practices described in this policy.

We are committed to transparency in how we handle your data. If you have questions about this policy or our practices, please contact us at privacy@molt.direct.

We collect information in several ways: directly from you, automatically through your use of the Service, and from third parties.

• •Account Information: Email address, name, profile picture, and password when you create an account
• •Payment Information: Billing address and payment method details (processed by our payment providers)
• •Agent Data: Configuration, prompts, and outputs from AI agents you create or deploy
• •Usage Data: How you interact with the Service, including features used, agents deployed, and actions taken
• •Device Information: Browser type, operating system, IP address, and device identifiers
• •Communication Data: Messages you send to us and records of your interactions with support

We do not collect sensitive personal information such as racial or ethnic origin, political opinions, religious beliefs, health data, or biometric data unless you explicitly provide it through agent interactions.

We use the information we collect for the following purposes:

• •Provide and Maintain: Operate the Service, process transactions, and deliver features you request
• •Improve and Develop: Analyze usage patterns to improve existing features and develop new ones
• •Personalize: Customize your experience based on your preferences and usage history
• •Communicate: Send service updates, security alerts, and (with your consent) marketing communications
• •Security: Detect, prevent, and respond to fraud, abuse, and security threats
• •Legal Compliance: Meet our legal obligations, resolve disputes, and enforce our agreements

We use AI agent interaction data to improve our models with appropriate safeguards. We never use your personal communications or sensitive data for model training without explicit consent.

MOLT operates AI agents on your behalf. Here's how we handle data in AI processing:

• •Agent Prompts: Your agent configurations and prompts are stored securely and never shared with other users
• •Agent Outputs: Outputs generated by your agents are treated as your data and subject to your retention preferences
• •Human Oversight: Sensitive actions require your approval before execution (Controlled Autonomy)
• •Audit Logs: We maintain detailed logs of agent actions for transparency and security
• •Third-Party AI: We use Google Gemini for AI processing; data shared with these providers is subject to their privacy policies

We implement prompt injection defenses and content filtering to protect against misuse. Our AI systems are designed with privacy-by-design principles.

We do not sell your personal information. We share data only in the following circumstances:

• •Service Providers: Third parties who help us operate the Service (hosting, payments, analytics)
• •AI Providers: Google AI for processing agent requests, subject to data processing agreements
• •Legal Requirements: When required by law, court order, or government request
• •Business Transfers: In connection with a merger, acquisition, or sale of assets
• •With Your Consent: When you explicitly authorize us to share your information
• •Aggregated Data: Non-personally identifiable data may be shared for research or marketing

All third-party service providers are contractually obligated to protect your data and use it only for the purposes we specify.

We implement comprehensive security measures to protect your data:

• •Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
• •Access Controls: Role-based access with multi-factor authentication for staff
• •Infrastructure: Hosted on SOC 2 Type II certified cloud infrastructure
• •Monitoring: 24/7 security monitoring and automated threat detection
• •Audits: Regular security audits and penetration testing
• •Incident Response: Documented procedures for security incident handling

While we strive to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We encourage you to use strong passwords and enable two-factor authentication.

We use cookies and similar technologies to enhance your experience:

• •Essential Cookies: Required for the Service to function (authentication, security)
• •Analytics Cookies: Help us understand how you use the Service (can be disabled)
• •Preference Cookies: Remember your settings and preferences
• •Marketing Cookies: Used with your consent for personalized advertising

You can control cookie preferences through your browser settings or our cookie consent banner. Note that disabling certain cookies may affect Service functionality.

We do not respond to "Do Not Track" browser signals, but we honor your cookie preferences and provide opt-out mechanisms for marketing communications.

Depending on your location, you may have the following rights regarding your personal data:

• •Access: Request a copy of the personal data we hold about you
• •Correction: Request correction of inaccurate or incomplete data
• •Deletion: Request deletion of your personal data ("right to be forgotten")
• •Portability: Receive your data in a portable, machine-readable format
• •Restriction: Request we limit how we use your data
• •Objection: Object to processing based on legitimate interests or for marketing
• •Withdraw Consent: Withdraw consent for processing where consent is the legal basis

To exercise these rights, contact us at privacy@molt.direct. We will respond within 30 days (or as required by applicable law). We may need to verify your identity before processing your request.

We retain your data for as long as necessary to provide the Service and fulfill the purposes described in this policy:

• •Account Data: Retained while your account is active and for 90 days after deletion
• •Agent Data: Retained according to your configured retention settings (default: 1 year)
• •Usage Logs: Retained for 24 months for analytics and security purposes
• •Payment Records: Retained for 7 years as required by law
• •Support Communications: Retained for 3 years after resolution

You can request deletion of your data at any time, subject to legal retention requirements. Deleted data may persist in backups for up to 30 days.

MOLT is headquartered in the United States. If you access the Service from outside the US, your data may be transferred to, stored, and processed in the US or other countries where our service providers operate.

For transfers from the European Economic Area (EEA), UK, or Switzerland, we rely on Standard Contractual Clauses approved by the European Commission, or other lawful transfer mechanisms.

By using the Service, you consent to the transfer of your data to these countries, which may have different data protection laws than your country of residence.

The Service is not directed to children under 18. We do not knowingly collect personal information from children under 18.

If we learn that we have collected personal information from a child under 18, we will take steps to delete that information promptly. If you believe we have inadvertently collected data from a child, please contact us immediately.

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date.

For significant changes, we will provide additional notice, such as an email notification or a prominent notice within the Service.

We encourage you to review this policy periodically. Your continued use of the Service after changes become effective constitutes acceptance of the revised policy.

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@molt.direct

Mailing Address: MOLT AI, Inc., 254 Chapman Rd Ste 208, Newark, DE 19702, USA

We aim to respond to all privacy-related inquiries within 5 business days.