Privacy Policy

Welcome to Theta AI ("the Bot," "we," "us," or "our"), a product of TeraMind, a research lab operated by TService. Theta AI is a fully autonomous AI persona that operates on the Facebook platform, including Facebook Pages and Facebook Messenger.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you interact with Theta AI through any Facebook integration, our website at https://thetallm.com, or any related services (collectively, the "Service").

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.

We are committed to collecting only the minimum data necessary to provide the Service. The types of information we may collect include:

2.1 Information Received from Facebook

When you interact with Theta AI on Facebook (e.g., by mentioning our Page in a comment or sending a message via Messenger), we may receive the following data through the Facebook Platform and Webhooks API:

• Your Public Profile Information: Your Facebook name, profile picture, and public profile URL, as made available by Facebook's API.
• Message Content: The text content of messages you send to our Page via Messenger, or comments/posts in which you mention or tag our Page.
• Post & Comment Context: The content of public posts and comments that you tag us in, which we access via the Facebook Graph API to understand the context of your request.
• User & Page IDs: Facebook-assigned identifiers used to identify users, pages, posts, and comments within the Facebook ecosystem.

2.2 Automatically Collected Information

When you visit our website, we may automatically collect limited technical information, including:

• Browser type and version
• Operating system
• Referring URL and pages visited
• Date and time of access
• IP address (anonymized where possible)

2.3 Information We Do NOT Collect

• We do not collect or store passwords or login credentials.
• We do not access your private Facebook messages with other users.
• We do not collect financial or payment information of any kind.
• We do not collect sensitive personal data such as health records, biometric data, or government-issued identifiers.

We use the information we collect solely for the following purposes:

• To Provide the Service: Processing your mentions and messages, fetching post context, generating AI-powered responses, and posting replies to your comments or messages.
• To Improve the Service: Analyzing aggregate, anonymized usage patterns to improve response quality, reduce errors, and optimize performance.
• To Ensure Security: Detecting and preventing abuse, spam, or unauthorized use of the Service.
• To Comply with Legal Obligations: Responding to lawful requests from governmental authorities where required by law.

We do not use your data for advertising, profiling, or selling to third parties.

We store only the minimum data necessary to provide and improve the Service:

• Interaction Logs: We may retain anonymized records of interactions (e.g., post IDs, timestamps, and aggregate statistics) for a maximum period of 90 days for debugging and service improvement purposes.
• No Long-Term User Profiles: We do not build persistent profiles or data stores tied to individual Facebook users.
• Message Content: The text content of messages is processed in real-time and is not permanently stored. It may be temporarily cached in server memory during processing and is discarded immediately after.

Data is stored on secure servers hosted by DigitalOcean with industry-standard encryption and access controls.

We do not sell, trade, or rent your personal information. We may share limited data only under the following circumstances:

• With Facebook/Meta: As required by Facebook's Platform Terms and Policies for the operation of our integration. All interactions are subject to Meta's Privacy Policy.
• With AI Service Providers: We send the text content of public posts to our Model for analysis using search engines and it's own knowledge. This data is transmitted securely and is subject to Google's Privacy Policy.
• For Legal Compliance: If required by law, court order, or governmental authority, we may disclose data to comply with legal obligations.
• To Protect Rights: To enforce our policies, protect our rights or safety, or investigate potential violations.

Our Service integrates with the following third-party platforms:

• Facebook/Meta Platform: For receiving webhooks, reading public post content, and posting replies. Subject to Meta's Privacy Policy.
• TeraMind's Theta LLM: For AI-powered content analysis and autonomous engagement with search grounding. Subject to Google's Privacy Policy.
• DigitalOcean: For server hosting and infrastructure. Subject to DigitalOcean's Privacy Policy.

We encourage you to review the privacy policies of these third-party services.

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Right of Access: You may request a copy of the personal data we hold about you.
• Right to Rectification: You may request that we correct any inaccurate or incomplete personal data.
• Right to Erasure: You may request deletion of your personal data. Since we do not maintain persistent user profiles, this can typically be fulfilled immediately.
• Right to Restriction: You may request that we restrict the processing of your personal data.
• Right to Object: You may object to our processing of your personal data for certain purposes.
• Right to Data Portability: Where applicable, you may request a machine-readable copy of your data.

To exercise any of these rights, please contact us at privacy@tservice.tech. We will respond to your request within 30 days.

You may request the deletion of all data associated with your interactions with Theta AI at any time. To initiate a data deletion request:

• Send an email to privacy@tservice.tech with the subject line "Data Deletion Request."
• Include your Facebook username or the approximate date of your interactions.

We will process your request within 30 days and confirm the deletion via email. Note that since we do not maintain persistent user profiles, most user data is already ephemeral and automatically purged.

Our Service is not intended for children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected personal data from a child, we will take immediate steps to delete that information.

If you are a parent or guardian and believe that your child has provided personal information to us, please contact us at privacy@tservice.tech.

We implement industry-standard security measures to protect your data, including:

• HTTPS/TLS encryption for all data in transit between our servers, Facebook's API, and third-party services.
• Environment-variable-based secret management (access tokens and API keys are never hardcoded or exposed in client-side code).
• Server-level firewalls and restricted SSH access on our hosting infrastructure.
• Regular security audits and dependency updates.

While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

Our servers are located in the United States (DigitalOcean). If you are accessing the Service from outside the United States, please be aware that your data may be transferred to, stored, and processed in the United States. By using the Service, you consent to the transfer of your information to the United States.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Update the "Last Updated" date at the top of this page.
• Post a notice on our website or Facebook Page for significant changes.

Your continued use of the Service after any changes indicates your acceptance of the updated Privacy Policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

By using Theta AI, you hereby consent to this Privacy Policy and agree to its terms. This includes consent for Theta AI to:

• Receive and process public post and comment data when you mention our Page.
• Receive and process messages you send to us via Facebook Messenger.
• Send AI-generated replies to your posts, comments, or messages.
• Use third-party AI services (Theta LLM) to analyze public content.