Privacy Policy
Last updated Jan 23, 2026
Elements Inc. (hereinafter referred to as the "Company") complies with all applicable privacy regulations and data protection laws, including relevant US federal and state laws. The Company is committed to protecting the rights and interests of all users (hereinafter referred to as "Users") who use the Cicely Ai service (hereinafter referred to as the "Service"). The Company makes its Privacy Policy publicly available on its website and application so that Users can easily access it at any time.
Our order process is conducted by our online reseller Paddle.com. Paddle.com is the Merchant of Record for all our orders. Elements Inc. handles responsibilities regarding content access and complaints for Cicely Ai. For inquiries, please contact contact@elements.im.
1. Purpose of Collection and Use of Personal Information
The "Company" uses collected personal information for the following purposes:
Member Registration and Communication: Verification of identity, prevention of fraudulent sign-ups, confirmation of intent to join, age verification, handling of complaints, and delivery of notices.
Service Provision: Payment processing, service usage management, issuance of payment receipts, identity verification for financial transactions, and financial services.
Events, Marketing, and Research: Delivery of event and promotional information, statistical analysis of service usage.
Other Service Provisions.
2. Personal data we collect
A. Personal data you provide to us directly
We collect personal data if you create an account to use our Service or communicate with us. This includes:
Account Information: Elements collects identifiers, such as your name and email address, when you sign up for an Elements account or to receive information about our Service.
Payment Information: We collect your payment information if you seek to access any paid Elements products and services.
Inputs and Suggestions: The Service allows you to submit content ("Inputs"), which generate responses ("Suggestions") based on your Inputs. If you include personal data or reference external content in your Inputs, we will collect that information and it may be reproduced in the Suggestions we provide.
Communication Information: If you communicate with us, we collect your name, contact information, and the contents of any messages you send.
Feedback: While using the Service, you may provide feedback, including ideas and suggestions for improvement or rating a Suggestion in response to an Input ("Feedback"). If you provide Feedback on the Service, we may store the entire exchange as part of your Feedback.
B. Personal data we receive from your use of the Service
When you use the Service, we also receive certain technical data automatically. This includes:
Device Information. Your device automatically sends us information about when and how you install, access, or use our Service. This information may include your device type, browser information, operating system information, and mobile network or ISP. This information may depend on your settings and the type of device you use to access the Service.
Log Information. We collect information about how our Service is performing, including your IP address, device type and settings, error logs, and other ways that you interact with the Service.
Usage Data. We collect information about your use of the Service, such as the dates and times of access, search, information about the links you click, pages you view, and other information about how you use the Service, and technology on the devices you use to access the Service.
Cookies & Similar Technologies. We and our service providers utilize cookies, pixels, scripts, or similar technologies to operate and manage the Service and improve your experience. These technologies help us to recognize you, customize or personalize your experience, market additional products or services to you, and analyze and optimize your use of the Service, for example to help maintain your preferences.
C. Information We Do Not Collect
Elements does not collect, store, or access any of the following:
Documents and files processed through the Service
Chat histories or conversations
Files added during chat sessions
Local files on users' devices
Additionally, Elements does not knowingly collect sensitive or special category personal information, such as genetic data, biometric data for the purposes of uniquely identifying a natural person, health information, or religious information.
Elements does not knowingly collect information from or direct any of our Service or content to children under the age of 18. If we learn or have reason to suspect that a user is under the age of 18, we will investigate and, if appropriate, delete the personal data and/or the account.
3. File/Documents Data Storage and Processing Method
All file data added/used by the "User" in the "Service" is never uploaded to our server. We do not collect your local files, the documents that you open, or the files you add / the "Service" adds to the AI Agent Sessions.
All your data stays in your local computer.
The data is only accessible in your specific device, as we do not upload the data to our cloud server.
We do not utilize semantic RAG or embedding technology. Therefore we do not store any chunk of your data/text/chat in our server.
Zero Data Retention
The "Company" has signed Zero Data Retention agreements with AI model providers such as OpenAI and Anthropic, with whom the "Company" collaborates to provide the "Service," ensuring that no document/file records are retained.
All AI systems operate in data centers based in the United States.
Providers in other regions, especially in China, are not used at all.
Destruction Procedures and Methods
In principle, the "Company" destroys personal information without delay once the purpose of collection and use has been achieved. The procedures and methods are as follows:
Destruction Procedure
Information entered by the "User" for membership registration, etc., is transferred to a separate database (or separate filing cabinet for paper) after the purpose is achieved and destroyed according to internal policies and other relevant laws (refer to Retention and Use Period).
Destruction Method
Personal information stored in electronic file formats is deleted using technical methods that make the records unrecoverable.
User Rights and How to Exercise Them
Deletion of Local File Data
The "User" can delete file data within the "Service" at any time by deleting the "Service" installed on their local computer.
The "User" can individually delete files within the "Service" at any time.
This is no different from deleting files on the "User's" local computer, so it can be done at the "User's" convenience.
Account Deletion
The "Company" deletes all forms of data immediately upon the "User's" withdrawal of membership.
Installation, Operation, and Rejection of Automatic Collection Tools
The "Company" takes the following technical/managerial measures to ensure the safety of "Users'" personal information and prevent loss, theft, leakage, alteration, or damage.
Password Encryption
Member ID passwords are encrypted for storage and management. Only the user knows the password, and confirmation or changes to personal information can only be made by the user who knows the password.
Measures Against Hacking, etc.
The "Company" does its best to prevent leakage or damage of members' personal information caused by hacking or computer viruses.
Data is backed up frequently in preparation for damage to personal information, and the latest antivirus programs are used to prevent leakage or damage to users' personal information or data. Encrypted communication is used to safely transmit personal information on the network.
Intrusion prevention systems are used to control unauthorized access from the outside, and all possible technical devices are equipped to ensure systemic security.
Minimization and Training of Handling Staff
The "Company" limits the number of employees handling personal information to the person in charge, grants a separate password for this purpose which is updated regularly, and emphasizes compliance with the Privacy Policy through frequent training.
Operation of Privacy Protection Organization
Through an internal privacy protection organization, etc., the "Company" checks the implementation of the Privacy Policy and compliance of the person in charge, and strives to correct and rectify any problems immediately if found.
However, the Company is not responsible for any problems caused by the leakage of personal information such as ID, password, or sensitive numbers due to the user's own negligence or internet problems.
Others
Please be advised that this "Cicely AI Privacy Policy" does not apply to the collection of personal information by websites linked to the Company.
Duty of Notification
If there are any additions, deletions, or modifications to the contents of this current Privacy Policy, we will notify you through the "Notice" section of the website at least 7 days prior to the revision. However, if there are significant changes to user rights, such as the collection and use of personal information or provision to third parties, we will notify you at least 30 days in advance.
