Privacy Policy

1. What We Collect

When you use Airbok, we collect information that allows the platform to function as intended. This includes account details like your name, email, password (hashed), and user type (company or tester). For testers, we collect profile data such as gender, age group, country, device specs, and availability. For companies, we collect company details, billing information, and test-related content.

We also collect technical data such as IP address, browser type, session duration, and device identifiers to ensure security and performance. If you participate in a test, we may collect recordings (voice, screen, or video) as part of the feedback you provide.

2. How We Use Your Information

Airbok uses your information exclusively to provide the services you've requested. For testers, your data is used to match you with relevant tests, notify you of upcoming opportunities, and process your payments after successful completion. For companies, we use your data to manage test creation, match suitable testers, and generate reports and results.

None of your personal data is sold, shared, or used for advertising purposes. We do not show your identity to other users unless explicitly required for a test (e.g., video feedback). Internal analytics help us improve platform efficiency and quality, but are always aggregated and anonymized.

3. Recordings, Feedback & Confidentiality

Many of our tests involve user feedback in the form of screen recordings, voiceovers, or webcam sessions. These recordings are encrypted and stored securely, and only accessible to the company that created the test and our quality assurance team. Recordings are automatically deleted after 90 days unless the company requests an extension, which requires tester consent.

NDA-protected tests carry additional obligations. Testers who agree to an NDA must keep all test content strictly confidential, including designs, prototypes, and internal client information. Likewise, companies must treat tester submissions respectfully and only use recordings for internal product research.

4. How We Protect Your Data

Security is built into every layer of the Airbok platform. All personal data is encrypted in transit (HTTPS) and at rest (AES-256). We follow industry best practices including regular penetration testing, audit trails, and strict access controls. Only authorized employees can access sensitive data — and only for operational purposes like resolving support tickets or processing payouts.

We never store raw payment data. All financial transactions are handled by PCI-compliant third-party processors. Your login credentials are hashed using secure algorithms and never stored in plain text. We also implement rate-limiting and IP-level protections to defend against brute-force and DDoS attacks.

5. Your Rights & Choices

As a user, you have the right to access, modify, or delete your personal data at any time. You can view and update your information directly through your account settings. If you wish to delete your account, simply contact us at privacy@airbok.com, and we will process the deletion within 7 days — unless we're legally required to retain some records (e.g. financial transactions).

You also have the right to restrict certain data uses, opt out of non-essential communication, and request a copy of the data we store about you. We do not use your data for any form of advertising or behavioral profiling.

6. Data Retention Policy

We retain account and profile information for as long as your account remains active. After 24 months of inactivity, your account is flagged for deletion and fully removed from our systems within 30 days unless you log in during that period. Feedback recordings are deleted 90 days after completion unless the company has obtained your permission to retain them longer.

Financial transaction logs are stored for 7 years, as required by accounting and tax regulations. These records are separated from your user profile and contain no sensitive personal identifiers.

7. International Transfers

Airbok operates globally. If you're accessing the platform from outside the United States, please note that your information may be transferred to and processed on servers located in the U.S. We apply safeguards such as Standard Contractual Clauses (SCCs) and data minimization practices to ensure your data is protected across borders.

8. Compliance with Law

We comply with all applicable privacy laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other regional regulations. Our privacy practices are regularly reviewed and updated to maintain compliance.

9. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, technology, or how we operate. When we do, we’ll notify you via email or platform banners. The "Last Updated" date at the top of this page will always indicate the latest version.

10. Contact Information

If you have any questions about this policy or how your data is handled, please contact our Data Protection Officer at privacy@airbok.com. We respond to all inquiries within 7 business days.