DiliPilotOverview

Version privacy-2026-06-29

Privacy Policy

Effective date: June 29, 2026. Draft for attorney review.

This Privacy Policy describes how DiliPilot collects, uses, discloses, and protects personal information through dilipilot.com, the DiliPilot application, communications, and related services. It does not govern personal information that DiliPilot processes solely on behalf of a business customer within uploaded diligence materials; for that information, the customer generally acts as controller/business and DiliPilot acts as processor/service provider under the applicable agreement.

Information We Collect

  • Account and contact information, such as name, business email, phone number, company, role, login credentials, and preferences.
  • Billing and transaction information, such as subscription, invoice, tax, and payment status. Payment-card details should be collected directly by the payment processor.
  • Customer content and uploaded materials, including financial statements, tax records, bank records, payroll files, contracts, diligence questions, prompts, notes, reports, and metadata.
  • Usage and device information, such as IP address, browser, device type, operating system, pages viewed, features used, timestamps, diagnostics, and security logs.
  • Communications, including support requests, product feedback, sales correspondence, and survey responses.

How We Use Information

  • Provide, authenticate, operate, maintain, and support the Services.
  • Process documents and generate requested analyses, reports, summaries, classifications, and workflow outputs.
  • Secure accounts, detect abuse, investigate incidents, prevent fraud, and enforce agreements.
  • Bill customers, administer subscriptions, and maintain business records.
  • Communicate about service, security, support, product updates, and permitted marketing.
  • Analyze performance and improve usability, reliability, and safety using aggregated or de-identified information.
  • Comply with law, respond to legal process, and protect rights, safety, and property.

AI and Automated Processing

DiliPilot may send portions of Customer Data and prompts to contracted AI or document-processing subprocessors to provide requested functionality. DiliPilot does not use Customer Data to train generalized models for use across customers unless the customer affirmatively opts in through a separate written agreement. Automated outputs are not intended to make final decisions about individuals.

How We Disclose Information

  • Service providers and subprocessors that perform hosting, AI processing, document extraction, security, analytics, communications, support, and payment processing.
  • Professional advisers, auditors, insurers, and financing sources under confidentiality obligations.
  • Authorities or other parties where reasonably necessary to comply with law, enforce agreements, investigate fraud or security issues, or protect rights and safety.
  • Parties to a merger, financing, acquisition, reorganization, bankruptcy, or sale of assets, subject to appropriate protections.
  • Other parties at your direction or with your consent.

Sale, Sharing, and Targeted Advertising

DiliPilot does not currently publish advertising pixels or retargeting scripts in this application. If advertising or cross-context behavioral advertising is added, DiliPilot must update this Policy, provide required opt-out controls, and avoid loading non-essential scripts before required consent.

Cookies and Similar Technologies

DiliPilot currently uses essential cookies for authentication, security, session continuity, and service operation. See the Cookie Notice. No non-essential analytics or advertising scripts are currently loaded by the app.

Retention

Account, billing, and contractual records are retained for the relationship and applicable legal, tax, audit, and dispute periods. Customer Data is retained according to the customer agreement, account controls, and backup lifecycle, then deleted or de-identified unless law requires retention. DiliPilot has not published a guaranteed deletion period.

Security

DiliPilot uses reasonable safeguards designed to protect personal information, but no system is completely secure. Users should avoid uploading unnecessary sensitive information and must protect account credentials.

Your Choices and Rights

You may update account information and communication preferences through the product or by contacting privacy@dilipilot.com. Depending on location and law, you may have rights to access, correct, delete, restrict, object to, or receive a portable copy of personal information, and to opt out of certain sale, sharing, targeted advertising, profiling, or marketing.

For personal information contained in a customer's uploaded materials, direct requests to that customer. DiliPilot will assist customers as required by contract and law.

California, International Transfers, and Children

California privacy obligations, international transfer mechanisms, and representative/DPO obligations must be assessed based on final operations and customer locations. The Services are not directed to children under 18.

Contact

Privacy questions or requests: privacy@dilipilot.com. Mailing address and any required EU/UK representative details have not been publicly finalized.