Legal

Privacy Policy

How Jolo collects, uses, protects, and shares personal data across the website, app, payments, integrations, and AI workflows.

Last updated: May 25, 2026

1. Introduction

This Privacy Policy explains how Jolo AI ("Jolo", "we", "our", or "us") collects, uses, stores, shares, and protects personal information when you use our platform, website, integrations, or related services (collectively, the "Service").

Jolo provides AI-powered automation tools for content generation, SEO optimization, social media management, customer support, and related workflows.

We are committed to handling personal data lawfully, transparently, and securely in accordance with applicable privacy laws, including:

  • The EU General Data Protection Regulation (GDPR).
  • The UK GDPR.
  • The California Consumer Privacy Act (CCPA/CPRA).
  • Other applicable data protection and consumer privacy laws.

Nothing in this Privacy Policy limits any rights granted under mandatory law.

2. Information We Collect

Information You Provide

We may collect information you directly submit, including:

  • Name and email address.
  • Login credentials, with passwords stored in hashed form.
  • Company or business information.
  • Billing details and tax information.
  • Connected website URLs and integration settings.
  • Brand voice preferences, prompts, workflows, and automation settings.
  • Customer support conversations, emails, and feedback.
  • Content, documents, text, or media submitted through the platform.

Information Collected Automatically

When you use Jolo, we may automatically collect:

  • IP address.
  • Browser type and device information.
  • Operating system.
  • Usage activity and interaction logs.
  • Session information.
  • Referring URLs.
  • Crash reports and diagnostics.
  • Cookies and analytics data.

Integration and Third-Party Platform Data

If you connect external services, we may receive data from platforms including:

  • WordPress.
  • Shopify.
  • Webflow.
  • Wix.
  • HubSpot.
  • Social media platforms.
  • Google services.
  • Customer support tools.
  • Other APIs or integrations you authorize.

This may include access tokens, publishing permissions, metadata, analytics, and automation-related information required for the Service to function.

3. How We Use Information

We use personal data to:

  • Provide and operate the Service.
  • Generate and optimize AI content.
  • Run automations and workflows.
  • Publish or schedule content on connected platforms.
  • Provide customer support.
  • Process payments and subscriptions.
  • Improve performance, reliability, and security.
  • Detect fraud, abuse, or unauthorized activity.
  • Comply with legal obligations.
  • Communicate important service or account updates.
  • Conduct analytics and product improvement.

We do not sell personal information to third parties.

4. Legal Bases for Processing (GDPR)

Where GDPR applies, we process personal data under one or more of the following legal bases:

  • Performance of a contract.
  • Legitimate interests.
  • Compliance with legal obligations.
  • Consent, where required.
  • Protection against fraud, abuse, or security threats.

5. AI-Generated Content and Inputs

Jolo uses AI systems and third-party AI providers to process prompts, instructions, uploaded content, and automation requests.

By using the Service, you acknowledge that:

  • AI-generated outputs may not always be accurate or appropriate.
  • You are responsible for reviewing and approving content before publication where necessary.
  • Inputs and generated outputs may be processed through third-party AI infrastructure providers.

We do not use private customer content for public advertising purposes without permission.

6. Sharing of Personal Data

We may share information with:

  • Cloud hosting and infrastructure providers.
  • Payment processors.
  • AI and machine learning providers.
  • Analytics providers.
  • Customer support tools.
  • Integration partners you connect.
  • Legal authorities where required by law.
  • Professional advisors or auditors.

We only share information where reasonably necessary to operate the Service, comply with law, or protect legitimate interests.

7. International Data Transfers

Jolo may process data in countries outside your country of residence, including outside the EU/EEA.

Where required, we use appropriate safeguards for international transfers, including:

  • Standard Contractual Clauses (SCCs).
  • Contractual data protection commitments.
  • Transfers to jurisdictions recognized as providing adequate protection.

8. Data Retention

We retain personal data only as long as needed for the purposes described in this policy, unless a longer period is required by law.

  • Providing the Service.
  • Legal and accounting obligations.
  • Security and fraud prevention.
  • Enforcement of agreements.
  • Backup and disaster recovery purposes.

Following account deletion or cancellation, some data may remain in backups temporarily, certain records may be retained where legally required, and unpublished drafts and account data may be retained for up to 30 days for export or recovery requests before permanent deletion.

9. Cookies and Tracking Technologies

We use cookies and similar technologies for:

  • Authentication and login sessions.
  • Security.
  • Analytics.
  • Preferences and settings.
  • Performance monitoring.

You can control cookies through your browser settings, though some functionality may stop working properly if cookies are disabled.

10. Your Privacy Rights

Depending on your jurisdiction, you may have rights including:

  • Accessing your personal data.
  • Correcting inaccurate information.
  • Requesting deletion.
  • Restricting or objecting to processing.
  • Data portability.
  • Withdrawing consent.
  • Opting out of certain analytics or marketing communications.

To exercise privacy rights, contact [email protected].

We may request verification before fulfilling requests.

11. California Privacy Rights

If you are a California resident, you may have rights under the CCPA/CPRA, including:

  • The right to know what personal data we collect.
  • The right to request deletion.
  • The right to correct inaccurate information.
  • The right to opt out of certain data sharing activities.
  • The right not to be discriminated against for exercising privacy rights.

Jolo does not sell personal information as defined under the CCPA.

12. Security Measures

We implement reasonable technical and organizational safeguards designed to protect personal data, including:

  • Encryption in transit where appropriate.
  • Access controls.
  • Authentication systems.
  • Infrastructure monitoring.
  • Security logging and abuse prevention measures.

However, no system can guarantee absolute security.

13. Children's Privacy

Jolo is not intended for children under the age of 13, or a higher minimum age where required by local law.

We do not knowingly collect personal data from children.

If we become aware that a child has submitted personal information unlawfully, we will delete it.

14. Third-Party Services and Links

The Service may contain integrations or links to third-party websites and platforms.

We are not responsible for the privacy practices, policies, or content of third-party services.

Your use of those services is governed by their own terms and policies.

15. Changes to This Privacy Policy

We may update this Privacy Policy periodically.

If material changes are made, we may notify users through email, dashboard notifications, or other appropriate methods before the changes become effective.

The "Last updated" date reflects the latest revision.

16. Contact Information

For privacy-related questions or requests, contact:

Jolo Team

[email protected]

This Privacy Policy should be read together with our Terms of Service, Refund Policy, and Money-Back Guarantee.