This policy establishes the guidelines for the use of Artificial Intelligence (AI) technologies in our products and services.

Our priority is to ensure the confidentiality, integrity, and availability of our customers' data while providing the most secure, advanced, and effective services possible.

The purpose of this policy is to protect the interests of our customers, maintain the trust they place in us, comply with all legal and regulatory requirements, and promote ethical AI usage.

This policy applies to all AI systems and applications developed, deployed, or provided by Hearsay Social, Inc.

Definitions

Personal Data - Personally identifiable information that alone or in combination with other information can be used to reasonably identify you. Examples include name,email address, contacts, calendar appointments, etc. 

Company Data - Any private or sensitive company information that is not publicly available (e.g. text messages or other direct messages)

AI development and deployment

Opt-In: All AI features will maintain the ability for the customer to explicitly disable them at the organization level and will require an explicit enabling to turn them on for their users.

Data minimization: We will follow the principle of data minimization, using only the data necessary for the purpose for which the AI is being used. Data that does not directly contribute to system performance will not be used.

Transparency: All AI models and systems should be explainable and transparent to the extent possible. We aim to ensure that our customers understand why and how AI is being used in our products.

Fairness and bias: We are committed to minimizing and mitigating biases in AI applications. The AI models will be tested and reviewed regularly for potential bias and unfair outcomes.

Customer data protection

Hearsay will always strive to partner with AI providers in ways that commit to not using company or personal data to train the models.

Consent:  Explicit informed consent will be sought from our customers before using their personal data* for AI applications.

Data security: We will apply the same security measures to protect data used by AI applications from unauthorized access, alteration, disclosure, or destruction as we do for all of our applications according to our SOC2 report.

Privacy by design: Privacy will be an integral part of the AI system design. All AI applications will comply with our data privacy standards, including data anonymization and pseudonymization techniques where applicable.

Regulatory compliance

All AI applications will comply with relevant legal and regulatory requirements, including but not limited to GDPR, CCPA, and other local data protection laws as they may be updated from time to time.

Accountability

Human oversight: There will always be human oversight over AI systems to ensure correct and ethical operation, and AI will not be the final decision for any actions unless explicitly granted the ability to do so.

Audit and review: Regular audits will be conducted to assess the performance, fairness, and privacy implications of our AI systems. Independent third-party audits may also be undertaken.

Policy updates

This policy will be reviewed and updated regularly to reflect changes in technology, business practices, or regulatory requirements.

This AI Usage and Data Privacy Policy is intended to foster trust with our customers, promote responsible AI usage, and ensure the protection and respect of personal data.