Codely.ai
Legal

Privacy Policy

Last updated: June 2026

Codely.ai is committed to protecting your privacy. This Privacy Policy describes how we collect, use, disclose, and safeguard your personal information when you visit our website, engage our services, or use our products.

00

Privacy at a Glance

We value your trust and are committed to protecting your personal information. Here are the key points:

  • Who we are: Codely.ai Inc. operates codely.ai, DialoGen, and ConvyFlow.
  • What we collect: Contact details, project information, account credentials, communications, payment info (via secure processors), usage data, and cookies.
  • How we use it: To deliver services, manage projects, process payments, send updates, improve products, and comply with legal obligations.
  • Your rights: You can request access, correction, deletion, portability, restriction, or withdrawal of consent. You can also unsubscribe from marketing at any time.
  • Sharing: We do not sell your data. We only share with trusted service providers, for legal reasons, or with your consent.
  • Retention: Data is kept only as long as necessary (e.g., project data 7 years, analytics 26 months).
  • Security: We use encryption, access controls, and secure development practices. Breach notifications will be issued within 72 hours if required.
  • International transfers: Data may be processed in Canada, India, UAE, or other countries with safeguards in place.
  • Contact: For privacy requests, email privacy@codely.ai.

For full details, please read the complete policy below.

01

Introduction

Codely.ai Inc. ("Codely.ai", "we", "us", or "our") operates the website at https://codely.ai, as well as the DialoGen and ConvyFlow platforms. This Privacy Policy applies to all information collected through these platforms and any related services.

We are committed to compliance with:

  • The Personal Information Protection and Electronic Documents Act (PIPEDA) of Canada
  • The General Data Protection Regulation (GDPR) for individuals in the European Economic Area
  • The Digital Personal Data Protection Act, 2023 (DPDP Act) in India
  • Applicable data protection laws in the United Arab Emirates (UAE)

By using our website, engaging our services, or using our products, you consent to the practices described in this Privacy Policy.

02

Information We Collect

  • Information you provide directly: Contact details, project information, account credentials, communications, payment info (via secure processors).
  • Information collected automatically: Usage data, cookies, log data.
  • Information from third parties: Partners, referral sources, or publicly available professional profiles.
03

How We Use Your Information

We use personal information to:

  • Respond to enquiries and provide quotes
  • Deliver services and manage engagements
  • Operate and improve products
  • Process payments and billing
  • Send service-related communications
  • Send marketing communications (opt‑in only)
  • Comply with legal obligations
  • Protect systems and prevent fraud
  • Analyse usage patterns

We do not sell personal information or use it for automated decision-making without consent.

05

Sharing & Disclosure

We may share information with:

  • Trusted service providers (cloud, payment, analytics, email)
  • In business transfers (merger, acquisition, sale)
  • Where legally required
  • With your explicit consent

We do not sell, rent, or trade personal information.

06

Cookies & Tracking

Our website uses cookies to enhance functionality and personalise experiences.

  • Essential cookies (cannot be disabled)
  • Analytics cookies (privacy‑respecting, not shared with ad networks)
  • Preference cookies

EEA/UK users will see a cookie consent banner to manage preferences.

07

Data Retention

We retain data only as long as necessary:

  • Client project data: minimum 7 years
  • Marketing contact data: until you unsubscribe or request deletion
  • Website analytics data: up to 26 months
  • Contact form submissions: up to 2 years

Data is securely deleted or anonymised when no longer required.

08

Security

We implement:

  • TLS/HTTPS encryption
  • Encryption at rest
  • Access controls
  • Regular security assessments
  • OWASP-aligned secure development practices

In case of a breach, we will notify affected users and authorities within 72 hours where required.

09

Your Rights

Depending on jurisdiction, you may request: access, correction, deletion, portability, restriction, objection, consent withdrawal, unsubscribe.

Contact our Data Protection Officer (DPO): privacy@codely.ai. We respond within 30 days. You may also lodge a complaint with your local authority.

10

International Transfers

Data may be processed in Canada, India, UAE, or other countries. For EEA/UK, transfers use approved safeguards (Standard Contractual Clauses, adequacy decisions).

11

Changes to This Policy

We may update this Privacy Policy periodically. The "Last updated" date shows the latest revision. For material changes, we will notify you by email (if available) or via a notice on our website. Continued use after changes constitutes acceptance.

12

Contact & DPO

If you have any questions, concerns, or requests relating to this Privacy Policy or your personal data, please contact us:

We will respond to privacy-related requests within 30 days. For unresolved concerns, you may contact the Office of the Privacy Commissioner of Canada at priv.gc.ca.

Last updated: June 2026