Privacy Policy

1. Introduction and Scope

DashAPI, Inc. ("DashAPI," "Company," "we," "us," or "our"), a Delaware corporation, operates LinkMe, an AI-powered relationship intelligence application available on iOS (collectively, the "Application" or "Service"). This Privacy Policy ("Policy") governs the collection, processing, storage, disclosure, and protection of personal information in connection with your use of LinkMe.

This Policy applies to: (a) registered users of the LinkMe iOS application ("Users"); (b) individuals whose contact or professional information is captured within the Application by a User ("Contacts"); and (c) recipients of web-based profile cards shared through the Application ("Recipients"). Each category is addressed specifically where the applicable practices differ.

By downloading, installing, or using the Application, you acknowledge that you have read, understood, and agree to be bound by this Policy. If you do not agree, you must discontinue use of the Application immediately.

2. Information We Collect

2.1 Information You Provide Directly

When you create an account and use LinkMe, you may provide the following categories of information:

• Account Information: Your name, email address, phone number, professional title, and employer.
• Voice Recordings and Transcriptions: Audio captured through the voice-to-card feature, which is transcribed and processed on-device to generate structured contact records. Raw audio is processed locally and is not transmitted to our servers unless you explicitly opt into cloud-enhanced processing.
• Contact Records: Information you input or dictate regarding third-party individuals, including their name, employer, professional role, relationship context, follow-up items, and personal details you choose to record.
• Profile Information: Information contained in claimable profiles, including your professional biography, contact details, and any content you elect to make available to Recipients.
• Communications: Any correspondence you direct to us, including support inquiries and feedback submissions.

2.2 Information Collected Automatically

We collect certain information automatically when you use the Application:

• Device Information: Device type, operating system version, unique device identifiers, and hardware model.
• Usage Data: Feature interaction logs, session duration, capture events, briefing requests, and share events, used solely for product improvement and as described in Section 4.
• Calendar and Contact Data: Only if you grant explicit permission through the iOS permission system; used to surface just-in-time meeting briefings. This data is processed on-device and is not transmitted to our servers without your separate, affirmative consent.
• NFC, QR, and NameDrop Exchange Data: Contact information exchanged via Apple NameDrop, NFC tap, or QR code, processed on-device at the moment of capture.

2.3 Information About Third Parties (Contacts)

A central function of LinkMe is the capture and organization of information about individuals you meet. You may record notes, observations, and relationship context concerning third parties. You represent and warrant that any information you record about third parties was obtained lawfully, that you have a legitimate professional interest in maintaining such records, and that you will not use the Application to record information in violation of applicable law or in a manner that would constitute harassment, stalking, or invasion of privacy.

Information recorded about third-party Contacts is stored on-device by default. Where you have opted into cloud synchronization or backup, such information is transmitted to our secure servers in encrypted form as described in Section 5.

3. On-Device Processing and the Privacy Architecture

LinkMe is architected with a strong on-device-first philosophy. The Application uses Apple's on-device AI framework to perform the following operations entirely on your device, without transmission to our servers:

• Voice transcription and structured data extraction from voice notes.
• Relationship graph construction and maintenance.
• Just-in-time briefing generation from locally stored records.
• Contact record classification and summarization.
• AI-assisted follow-up drafting from local context.

Cloud processing is used only where: (a) you have granted affirmative, per-action consent within the Application; or (b) it is necessary to deliver a specific feature you have explicitly requested, such as web enrichment of a contact record. The Application presents a visible indicator of whether a given operation is processed on-device or in the cloud. You may withdraw consent for cloud processing at any time through the Application's privacy settings, without affecting the core functionality of the Service.

We do not use your personal relationship data to train third-party AI models. Where cloud-side AI processing occurs with your consent, such processing is governed by data processing agreements that prohibit model training on your data.

4. How We Use Your Information

We process personal information for the following purposes and under the following legal bases:

• Service Delivery (Contractual Necessity): Creating and maintaining your account; processing voice notes into structured contact records; generating relationship briefings; facilitating contact card exchange and recipient web card delivery.
• Product Improvement (Legitimate Interest): Analyzing aggregate, de-identified usage patterns to improve Application features and performance. We do not use identifiable relationship content for this purpose.
• Security and Fraud Prevention (Legitimate Interest / Legal Obligation): Detecting and preventing unauthorized access, abuse, and violations of our Terms of Service.
• Communications (Consent / Contractual Necessity): Responding to support requests; sending transactional notifications relating to your account; sending product update communications where you have opted in.
• Legal Compliance (Legal Obligation): Complying with applicable laws, regulations, court orders, and lawful requests from governmental authorities.

We do not sell your personal information. We do not use your relationship data or Contact records for advertising targeting, whether by us or third parties.

5. Data Storage, Security, and Retention

On-Device Storage: Data processed and stored on-device is protected by iOS device encryption and is subject to the access controls you configure on your device. We do not have access to on-device data unless you elect to synchronize it to our servers.

Cloud Storage: Where you enable cloud synchronization, your data is transmitted over TLS-encrypted connections and stored in encrypted form on servers located in the United States. We implement industry-standard administrative, technical, and physical safeguards designed to protect your information against unauthorized access, loss, or destruction.

Retention: We retain your account information and synchronized data for as long as your account remains active, and for a period of up to thirty (30) days following account deletion to permit recovery in the event of accidental deletion. Certain information may be retained longer where required by applicable law or for the resolution of disputes.

No method of electronic transmission or storage is one hundred percent secure. While we use commercially reasonable measures to protect your information, we cannot guarantee absolute security.

6. Sharing and Disclosure of Information

We do not disclose your personal information to third parties except in the following circumstances:

• Service Providers: We engage third-party vendors to assist in operating the Service (e.g., cloud infrastructure, analytics, customer support tooling). These vendors are contractually bound to process your information only on our behalf and in accordance with our instructions.
• Recipient Web Cards: When you share a contact card with a Recipient, we display a web-accessible profile card containing only the information you choose to include. Recipients do not receive your underlying relationship notes or records.
• Claimable Profile Features: If a Contact claims their profile, information within that profile that they elect to update or control is governed by their own privacy choices within the Application.
• Business Transfers: In connection with a merger, acquisition, reorganization, or sale of all or substantially all of our assets, your information may be transferred to the successor entity. We will provide notice of such transfer and the Privacy Policy applicable thereafter.
• Legal Requirements: We may disclose information where we believe, in good faith, that disclosure is required by applicable law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of DashAPI, our users, or the public.
• With Your Consent: We may share information with third parties for any other purpose with your explicit prior consent.

7. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights with respect to your personal information:

• Access: The right to request a copy of the personal information we hold about you.
• Correction: The right to request correction of inaccurate or incomplete personal information.
• Deletion: The right to request deletion of your personal information, subject to our legal retention obligations.
• Restriction and Objection: The right to request restriction of processing or to object to certain processing activities.
• Data Portability: The right to receive your personal information in a structured, commonly used, machine-readable format.
• Withdrawal of Consent: Where processing is based on your consent, the right to withdraw consent at any time without affecting the lawfulness of prior processing.

You may exercise these rights by submitting a request to privacy@dashapi.ai. We will respond to verified requests within the timeframe required by applicable law. We may require verification of your identity before processing your request.

California Residents: California residents have additional rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), including the right to know, the right to delete, the right to opt out of sale or sharing, and the right to non-discrimination. We do not sell or share personal information as those terms are defined under California law.

8. Children's Privacy

LinkMe is not directed to individuals under the age of eighteen (18) and is designed for professional use by adults. We do not knowingly collect personal information from individuals under 18. If we become aware that we have collected personal information from a child under 18 without verifiable parental consent, we will take steps to delete such information promptly. If you believe we have inadvertently collected information from a minor, please contact us at privacy@dashapi.ai.

9. International Data Transfers

DashAPI is based in the United States, and our servers are located in the United States. If you access the Service from outside the United States, your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your jurisdiction. Where required by applicable law, we implement appropriate safeguards for international data transfers, including standard contractual clauses approved by the relevant regulatory authority.

10. Third-Party Links and Integrations

The Application may, in future releases, integrate with or link to third-party services (e.g., CRM platforms, calendar services). This Policy does not govern the privacy practices of such third parties. We encourage you to review the privacy policies of any third-party services you connect to or access through the Application.

11. Changes to This Policy

We reserve the right to modify this Policy at any time. Material changes will be communicated to you via in-application notice or email to the address associated with your account at least fourteen (14) days before the change takes effect. Your continued use of the Application after the effective date of a revised Policy constitutes your acceptance of the revised terms. If you do not agree to the revised Policy, you must discontinue use of the Application.

12. Contact Information

If you have questions, concerns, or requests regarding this Policy or our privacy practices, please contact us at: