Privacy
Privacy
Privacy
1. Introduction
Cura is an AI operational layer designed for SMEs to automate customer engagement, bookings, and payments.
We understand that you are aware of and care about your own personal privacy interests, and we take that seriously. This Privacy Policy describes Cura’s policies and practices regarding its collection and use of your personal data and sets forth your privacy rights. Information privacy is an ongoing responsibility, and we may update this Privacy Policy from time to time as our services or practices evolve.
Cura Group Co., Ltd. acts as the data controller for personal data processed through the Cura platform, unless otherwise agreed in writing with the Client.
2. Contacting Us About Data Protection
For any inquiries, concerns, or requests regarding our personal data policies or your privacy rights, please contact us:
Cura Group Co., Ltd.
Address: 18/407, Khlong Ton Sai, Khlong San, Bangkok 10600, Thailand
Email: support@cura.so
Tel: +66 81-750-5473
3. How We Collect and Use Your Personal Information
Cura collects personal information about Clients (business owners using the platform) and End-Users (customers interacting with the AI agent).
A. Information from Clients (Business Owners)
This information is generally limited to:
Name, job title, and business name
Work email address and phone number
Billing information (processed via secure third-party payment providers)
Operational Data, such as FAQs, service lists, and SOPs, are uploaded to configure your AI agent
B. Information from End-Users (Your Customers)
When End-Users interact with Cura through supported channels (WhatsApp, LINE, Facebook, Instagram, SMS, or Voice), we process:
Communication Data: chat logs, transcripts, and voice recordings
Identity Data: phone numbers or profile names provided by the messaging platform
Transaction Data: appointment details, booking history, and deposit or payment status
C. How We Use This Information
We use personal information solely to deliver and improve our services, including to:
Automate responses to inquiries
Schedule and confirm appointments
Process deposits or payments
Send reminders, confirmations, and follow-ups
Cura does not sell personal data and only shares information with third parties necessary to operate the service.
4. Use of Google Workspace APIs
Cura uses Google Workspace APIs to provide certain features, such as synchronizing bookings with Google Calendar.
Data obtained through Google Workspace APIs is not used to develop, improve, or train generalized AI or machine learning models. This data is used solely to provide specific service functionality, such as checking availability and creating calendar events, and is handled in accordance with this Privacy Policy.
5. Data Protection Mechanisms
Cura implements appropriate technical and organizational measures to protect personal data, including:
Encryption: Data is encrypted in transit and at rest using industry-standard practices
Access Control: Role-based access ensures only authorized personnel can access sensitive data
Rate Limiting: Implemented to prevent abuse and system misuse
No Generalized AI Training: Private Knowledge Base data and customer conversations are not used to train open or generalized AI models. Cura uses retrieval-based techniques to generate responses specific to each Client without exposing or reusing private data.
6. Sharing Information with Third Parties
Personal information collected by Cura may be stored in databases hosted by third-party cloud providers. These providers are contractually restricted from using the data for any purpose other than providing storage and infrastructure services.
To operate the platform, Cura may share data with:
Messaging Platforms: Meta (WhatsApp, Facebook, Instagram) and LINE Corp
Payment Processors: For deposits and subscription payments
Voice Telephony Providers: To enable AI voice calls
We may also disclose information if required to comply with legal obligations, protect our rights, or ensure the safety of users.
7. Data Storage and Retention
Cura retains personal data for the duration of the Client’s relationship with Cura and for a reasonable period thereafter to support operational continuity (such as recognizing returning customers).
All personal data under Cura’s control may be deleted upon verified request, subject to legal or contractual retention requirements.
8. International Data Transfers
Personal information may be processed in countries outside your country of residence, including the United States and Singapore. Cura applies appropriate safeguards to protect personal data during international transfers, consistent with applicable data protection standards.
9. Data Subject Rights
Depending on your location, you may have the following rights:
Right to be informed
Right of access
Right to rectification
Right to erasure
Right to restrict or object to processing
To exercise these rights, please contact support@cura.so.
10. Children’s Data
Cura does not knowingly collect personal information from children. If we become aware that personal data from a child has been collected without appropriate consent, we will delete it promptly.
11. Questions, Concerns, or Complaints
If you have questions, concerns, complaints, or wish to exercise your privacy rights, please contact:
Cura Group Co., Ltd.
Address: 18/407, Khlong Ton Sai, Khlong San, Bangkok 10600, Thailand
Email: support@cura.so
Tel: +66 81-750-5473