Privacy Policy for Sofist AI Advisor Extension

Effective Date: October 4, 2024

At Sofist, we are committed to protecting your privacy and ensuring that your personal data is handled with care. This Privacy Policy explains what information the Sofist AI Advisor extension collects, how it is used, and the steps we take to safeguard your information.

1. Information We Collect

The Sofist AI Advisor extension collects only the minimum information necessary to provide its core functionality.

• Authentication Information: We collect e-mails and passwords provided by users to authenticate them with the Sofist AI toolkit API. This authentication allows users to log in securely and use the features of the extension within Jira and Azure DevOps.

No other personally identifiable information, location data, or web browsing history is collected by the extension.

2. How We Use the Information

The information collected by the Sofist AI Advisor is used solely for the following purposes:

• Authentication: E-mails and passwords are used to authenticate users with the AI-powered backend and maintain secure sessions within the extension.
• AI Integration: Once authenticated, users can interact with various AI-powered advisors to assist with tasks such as generating user stories, test cases, and effort estimations.

No other personal communications, location data, financial information, or browsing history is collected or stored by the extension.

3. Data Storage and Security

Local Storage: The extension uses local storage (chrome.storage.sync) to store the user's authentication token securely. This allows the extension to maintain user sessions across interactions without requiring repeated logins.

Data Retention: The authentication token is automatically removed from local storage when it expires or when the user logs out. No long-term storage of personal data is performed by the extension.

All communication between the extension and the Sofist API is encrypted using secure HTTPS protocols to protect the user's data during transmission.

4. Sharing of Data

We do not sell, trade, or transfer any personally identifiable information to third parties. The data collected is used solely for the purpose of authentication and interaction with the AI toolkit within the Jira and Azure DevOps environment.

• We do not use or transfer user data for purposes unrelated to the single purpose of the extension, which is to integrate AI functionality into Jira and Azure DevOps.
• We do not use or transfer user data to determine creditworthiness or for lending purposes.

5. Third-Party Services

The extension communicates with the Sofist AI toolkit API hosted at https://ai-toolkit-api.sofist.co/. This API is responsible for processing user requests and returning AI-generated responses. No additional third-party services are involved in this data exchange.

6. User Control

Users can remove their authentication information at any time by logging out from the extension, which will clear the stored token. Additionally, users can uninstall the extension from their browser to discontinue any future data collection.

7. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in how we handle data or to comply with legal requirements. Any updates to the policy will be posted on this page with a revised effective date.

8. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at:

• Email: felipe.nardon@sofist.co
• Website: https://www.sofist.co/en