Chimo AI

Get Started

Privacy Policy

PRIVACY POLICY

Chimo AI Inc.

Effective Date: April 23, 2025
Last Updated: April 23, 2025

1. INTRODUCTION

Chimo AI Inc. (“Chimo AI,” “we,” “us,” or “our”) is committed to protecting your privacy and safeguarding your personal information. This Privacy Policy explains how we collect, use, disclose, and secure your information when you use our services to file unclaimed property requests with state agencies and file class action claims, or when you visit our website (https://chimo.ai). By accessing or using our services, you agree to the terms of this Privacy Policy.

2. CONTACT INFORMATION

  • Mailing Address: 12060 Industry Blvd PMB 1058, Jackson, CA 95642, USA
  • Email for Privacy Matters: privacy@chimo.ai
  • Privacy Officer: Erik Jones
  • Customer Support: support@chimo.ai

3. INFORMATION WE COLLECT

3.1 Categories of Personal Information

We collect the following categories of personal information as necessary to provide our unclaimed property and class action claim filing services:

  • Identifiers: Name, email address, phone number, mailing address, IP address, device identifiers
  • Government-Issued Identifiers: Social Security Number (SSN), Tax Identification Number (necessary for state unclaimed property claims)
  • Financial Information: Credit card information (processed directly by Stripe; we do not store or access full credit card numbers)
  • Demographic Information: Date of birth
  • Commercial Information: Services purchased, claim history
  • Internet Activity: Browsing history, search history, and information regarding interactions with our website
  • Geolocation Data: General location based on IP address
  • Professional Information: Employment history (when relevant to certain class action claims)
  • Inferences: Information derived from other personal information that could create a profile about preferences, characteristics, behavior, etc.
  • Claim-Specific Information: Documentation and information specific to your unclaimed property or class action claims, which may include purchase records, proof of residence, or other qualifying information

We do not collect:

  • Bank account information
  • Biometric information
  • Health information (unless specifically relevant and provided voluntarily for certain class action claims)

3.2 Sources of Personal Information

We collect personal information from:

  • Direct interactions with you when you register for our services, submit claims, or contact customer support
  • Automated technologies such as cookies, server logs, and similar technologies
  • Third parties such as class action settlement administrators (with your consent)
  • Publicly available sources, such as state unclaimed property databases

4. HOW WE USE YOUR INFORMATION

We use your personal information for the following purposes:

4.1 Service Provision and Contract Fulfillment

  • To establish and maintain your account
  • To verify your identity and eligibility for unclaimed property and class action claims
  • To prepare, submit, and track your claims with state agencies and class action administrators
  • To process payments for our services (via Stripe)
  • To provide customer service and respond to your inquiries

4.2 Legitimate Business Interests

  • To improve our services and develop new features
  • For fraud detection and prevention
  • To maintain the security of our systems and services
  • For analytics to understand user behavior and optimize our website

4.3 Marketing and Communications

  • To send service updates and notifications regarding your claims
  • To provide marketing communications about our services (where permitted by law)
  • To conduct surveys and collect feedback

4.4 Legal Compliance

  • To comply with legal and regulatory obligations
  • To respond to legal processes or government requests
  • To establish, exercise, or defend legal claims

5. USE OF AI AND AUTOMATED PROCESSING

Chimo AI uses artificial intelligence (AI) technologies to enhance our claim filing services. Personal data you provide may be processed by AI systems for the following specific purposes:

  • Identity verification
  • Eligibility assessment for claims
  • Document parsing and extraction
  • Fraud detection
  • Customer support automation

We implement safeguards to ensure that AI-based decisions that significantly affect you involve human oversight. We do not use your data to train AI models beyond what is necessary to operate our services, and we do not share your data with third-party AI platforms except as described in this policy.

You have the right to:

  • Request human intervention for any decision made solely by automated means
  • Express your point of view regarding automated decisions
  • Contest any automated decision

6. COOKIES, TRACKING, AND ANALYTICS

6.1 Cookies and Similar Technologies

We use cookies and similar tracking technologies on our website. These technologies collect information about how you interact with our site and allow us to remember you. Cookies are small files placed on your device that help us provide and improve our services.

We use the following types of cookies:

  • Essential Cookies: Required for the operation of our website and services
  • Analytical/Performance Cookies: Allow us to recognize and count the number of visitors and see how visitors move around our website
  • Functionality Cookies: Enable us to personalize content for you
  • Targeting Cookies: Record your visit to our website, the pages you have visited, and the links you have followed

6.2 Analytics and Third-Party Tracking

We use analytics services, such as Google Analytics, to help us understand how users engage with our website. These services may use cookies and other tracking technologies to collect information about your use of our website.

6.3 Your Choices Regarding Cookies

You can control cookies through your browser settings. Most web browsers automatically accept cookies, but you can usually modify your browser settings to decline cookies if you prefer.

We honor “Do Not Track” signals from browsers. When this signal is detected, we disable all non-essential tracking. Additionally, we provide a Cookie Preference Center on our website where you can manage your cookie preferences at any time.

7. ADVERTISING AND TARGETING

7.1 Geographic Limitations

Our services are intended for users residing in the United States. We do not knowingly collect or target personal information from individuals outside the United States.

7.2 Age Restrictions

We do not knowingly collect or target personal information from individuals under 18 years of age, and we do not advertise to minors.

7.3 Online Advertising

We may use information collected about you to show you relevant ads on other websites. We work with third-party advertising networks that collect information about your visits to our website to provide more relevant advertising based on your interests.

You can opt out of interest-based advertising from participating companies through:

8. DISCLOSURE OF YOUR INFORMATION

We may share your information with:

8.1 Service Providers

  • Payment processors (Stripe)
  • Cloud service providers (Amazon Web Services)
  • Analytics providers (Google Analytics)
  • Communication service providers
  • Customer support software providers
  • Claim processing partners (including state agencies and class action administrators)

8.2 Business Partners

  • Class action settlement administrators (as necessary to process your claims)
  • State unclaimed property offices (as necessary to process your claims)

8.3 Legal Compliance and Protection

  • In response to a subpoena, court order, or other legal process
  • To comply with laws, regulations, or legal obligations
  • To establish, exercise, or defend our legal rights
  • To prevent fraud, security issues, or technical issues

8.4 Business Transfers

  • If Chimo AI is involved in a merger, acquisition, financing, or sale of assets

We do not sell, rent, or lease your personal information to third parties for monetary or other valuable consideration.

9. DATA RETENTION

We retain your personal information only as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce our agreements. Specifically:

  • Account information: Retained as long as you maintain an active account with us, plus a reasonable period thereafter
  • Claim information: Retained for the duration of the claim processing plus a period necessary for legal compliance (generally 7 years)
  • Transaction records: Retained for 7 years as required by tax and financial regulations
  • Communication records: Retained for 2 years after your last interaction with us
  • Marketing preferences: Retained until you opt out or request deletion

When personal information is no longer needed, we securely delete or anonymize it.

10. YOUR RIGHTS AND CHOICES

10.1 General Privacy Rights

You have the following rights regarding your personal information:

  • Access: Request access to the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your data (subject to legal or business record-keeping requirements)
  • Restriction: Request that we restrict the processing of your data
  • Portability: Request a copy of your data in a structured, machine-readable format
  • Objection: Object to the processing of your data for marketing or other purposes
  • Automated Decisions: Request human intervention for automated decisions

10.2 State-Specific Privacy Rights

California Residents

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), California residents have additional rights:

  • The right to know what personal information we collect, use, disclose, and sell
  • The right to request deletion of personal information
  • The right to correct inaccurate personal information
  • The right to opt-out of the “sale” or “sharing” of personal information
  • The right to limit the use of sensitive personal information
  • The right to non-discrimination for exercising your rights

To designate an authorized agent to make a request on your behalf, please contact our Privacy Officer with written permission and verification of your identity.

Virginia, Colorado, Connecticut, Utah, and Other States with Comprehensive Privacy Laws

Residents of states with comprehensive privacy laws may have additional rights similar to those listed above. We will comply with applicable state privacy laws when processing your requests.

10.3 How to Exercise Your Rights

To exercise your privacy rights or submit a request:

  • Email our Privacy Officer at privacy@chimo.ai

We will respond to verifiable consumer requests within 45 days, unless we need additional time, in which case we will notify you.

11. INTERNATIONAL USERS

Chimo AI’s services are intended for U.S. residents. If you are located outside the United States, please note:

  • Your data will be transferred to and processed in the United States
  • U.S. privacy laws may not be as comprehensive as those in your country
  • Your data may be subject to access by U.S. law enforcement and regulatory authorities

By using our services, you consent to these transfers and processing. While we are primarily focused on compliance with U.S. privacy laws, we incorporate certain international privacy principles from frameworks such as the GDPR as best practices.

12. DATA SECURITY

We implement comprehensive technical, administrative, and physical safeguards to protect your personal information, including:

  • Encryption: All sensitive data is encrypted in transit and at rest using industry-standard encryption protocols (TLS 1.3 and AES-256)
  • Access Controls: Strict role-based access controls and multi-factor authentication for our systems
  • Vulnerability Management: Regular security assessments, vulnerability scanning, and penetration testing
  • Employee Training: Mandatory security and privacy training for all employees
  • Incident Response: Documented procedures for detecting, reporting, and responding to security incidents
  • Disaster Recovery: Regular backups and disaster recovery planning to ensure data resilience
  • Compliance: Adherence to NIST standards and security frameworks

Our data is hosted on secure infrastructure provided by Amazon Web Services (AWS), which maintains rigorous security certifications and controls.

Despite our efforts, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to protecting your information using commercially reasonable measures.

13. DATA BREACH NOTIFICATION

In the event of a data breach involving your personal information, we will:

  • Assess the nature and scope of the incident
  • Take immediate steps to contain the breach and restore security
  • Notify affected individuals without unreasonable delay, typically within 45-60 days
  • Provide information about the incident, steps we’ve taken, and measures you can take to protect yourself
  • Notify relevant authorities as required by applicable law

Notifications will be provided via email or, if email is not possible, via postal mail or telephone.

14. SUBPROCESSORS

We use the following key subprocessors to deliver our services:

  • Amazon Web Services (AWS): Cloud hosting and infrastructure
  • Google Analytics: Website analytics
  • Stripe: Payment processing
  • SendGrid: Email communications
  • Klavio: Customer support
  • Klavio: Customer relationship management

A complete and up-to-date list of our subprocessors is available upon request.

15. CHILDREN’S PRIVACY

Our services are not intended for individuals under the age of 18. We do not knowingly collect information from children under 18, and we do not advertise or target those under 18. If we discover that we have collected personal information from a child under 18, we will promptly delete such information.

16. CHANGES TO THIS POLICY

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. Changes will be posted on this page with an updated effective date. For significant changes, we will provide a more prominent notice, which may include an email notification to the address associated with your account.

Your continued use of our services after any changes constitutes your acceptance of the revised policy. We encourage you to review this Privacy Policy periodically to stay informed about our privacy practices.

17. DISPUTE RESOLUTION

If you have a privacy-related complaint or dispute, please contact our Privacy Officer first. If your issue is not resolved to your satisfaction, you may have the right to file a complaint with your state’s Attorney General’s office or other relevant privacy authority.

18. CONTACT US

For questions, requests, or complaints regarding this Privacy Policy or your personal data, please contact:

Privacy Officer: Erik Jones
Email: privacy@chimo.ai
Mail: 12060 Industry Blvd PMB 1058, Jackson, CA 95642, USA

This policy is designed to provide transparency and comply with applicable U.S. privacy laws, with reference to best practices under frameworks such as the EU GDPR and state privacy laws including CCPA/CPRA.