ABCD

Privacy policy

Dalberg Development Advisors Private Limited and team managing the Atlas Of Behavior Change In Development (ABCD) (“we”, “us”, “our”) are committed to protecting your privacy. This Privacy Policy outlines how we collect, use, store, process and disclose your information (including personal/sensitive personal information). By accessing www.abcd.guide (“Site”), the related mobile app, and any other features, services, tools, materials, or other services offered from time to time by us (“Platform”) and sharing your personal/sensitive personal information on the Platform, you agree to the terms of this Privacy Policy and to be governed by the laws of India including but not limited to the laws applicable to data protection and privacy. If you do not agree please do not use or access our Platform.

This Privacy Policy shall form an integral part of the Terms and Conditions of Use of the Platform and shall be read along with the Terms and Conditions of Use. Any capitalized terms that have not been defined herein shall draw its meaning from the meaning ascribed to such term in the Terms and Conditions of Use.

A. What Information do we collect and how we use it

  1. Technical Data including internet protocol (IP) address, browser type and version, the pages you visit, and the time and date of your visit. This information is used to analyze the traffic on the Platform and improve the user experience.
  2. User Information - You provide us information about yourself, such as your name, mobile number and e-mail address or any other information you choose to provide us in connection with your use of the Platform while signing up for our newsletter, creating an account on the Platform, or while contacting us.
  3. We will only use your personal/sensitive personal information for the purpose for which it is collected. We will not share, sell, or rent your personal/sensitive personal information to third parties without your explicit consent, unless we are required to do so by law.

B. Data Confidentiality and Protection for the ABCD Analyzer & Evaluator

In our continuous effort to provide secure and confidential data processing services through The Atlas of Behavior Change in Development (ABCD) Analyzer & Evaluator, we uphold stringent data protection measures. These updated clauses reflect our commitment to maintaining the security of our users' data across various interactions with the ABCD Analyzer & Evaluator, ensuring comprehensive data protection for all users.

1. Security During Email Transmission

1.1 Email Handling Security: ABCD employs advanced email handling protocols, utilizing Mail Transfer Agents (MTA) along with Two-Factor Authentication (2FA). This ensures that email transmissions, both inbound and outbound, are securely managed by authorized systems only, significantly reducing the risk of unauthorized data access.

1.2 Expedited Email Processing: To minimize data exposure, emails directed to the ABCD Analyzer & Evaluator and related AI tools are processed promptly, with documents being relocated to secure processing servers within 2-3 seconds of receipt. Outgoing analyzed documents are similarly managed, with immediate deletion from the sending folder once dispatched to the recipient.

2. Security During Document Storage

2.1 AES-256 Encrypted Storage: ABCD leverages AES-256 encryption for document storage on secure servers, ensuring that data is safeguarded against unauthorized access. This encryption standard is applied to all documents awaiting analysis or stored temporarily for further processing.

2.2 Document Retention Policy: We offer customizable document retention options, allowing for the secure deletion of documents within a specified timeframe ranging from 0 to 90 days, tailored to the unique needs of each client for secure data management.

3. Document Transmission Security

3.1 HTTPS and TLS Protection: ABCD ensures the secure transmission of documents to summarizer tools through HTTPS and TLS encryption, safeguarding data against interception during transfer, thus enhancing data confidentiality across our services.

4. Dedicated User Data Handling

4.1 Isolated Data Storage: Each client's data is stored in isolated environments on AWS S3 with no shared folders or storage spaces on the server, effectively eliminating the risk of data mixing between clients. This is done programmatically with new folders on our AWS S3 getting created whenever new client organisations signed up

4.2 Non-Utilization of Client Data for Model Training: ABCD's commitment to data privacy extends to our policy of not using client data for the training of our models, ensuring that the integrity and confidentiality of user data are preserved.

5. Advanced Analytical Architecture

5.1 Retrieval-Augmented Generation (RAG) Model: The ABCD Analyzer & Evaluator is powered by an advanced Retrieval-Augmented Generation (RAG) model, utilizing well-curated data to deliver precise analysis. This architecture ensures high-quality, relevant output while maintaining strict data confidentiality and security standards.

5.2 The use of OpenAI ChatGPT and privacy policy: The ABCD Analyzer & Evaluator uses the OpenAI’s ChatGPT-4 APIs for certain processes including document summarization and final output generation. We selected OpenAI on account of their very stringent privacy policy that ensures that no client data is shared or is used for model training. The Figure below, is a screenshot of their Data Protection terms (captured on 25th April 2024) and more details of their compliance can be found here: https://openai.com/enterprise-privacy. More details can be found on their Trust portal - https://trust.openai.com/

Figure 1: Privacy policy of OpenAI ChatGPT For Enterprise

6. Non-Disclosure Agreement (NDA)

6.1 Comprehensive NDA Protection: ABCD is prepared to enter into Non-Disclosure Agreements with all users, reinforcing our commitment to data confidentiality. This agreement will encompass all aspects of data handling within the ABCD Analyzer, ensuring a secure environment for data processing.

6.2 Human in the loop only for pilots and initial configuration: ABCD, in certain cases, needs to customize our AI architecture, including prompts, based on a partner’s use-case, document types, internal guidelines related to behaviour change, and also internal success criteria. In these cases, a senior member from the ABCD team reviews input and output documents from the ABCD Analyzer & Evaluator till the model is optimized for the partner organisation. Once the model is optimized and the partner organisation is happy with the outputs, there are no further human-in-the-loop processes from ABCD and all processes are fully automated with accompanying data and privacy safeguards as outlined above.

These terms underscore ABCD's dedication to providing a secure, confidential service for the processing and analysis of data through the ABCD Analyzer. By implementing these measures, we affirm our commitment to safeguarding our users' data, ensuring that all interactions with our services are conducted within a secure and protected framework

C. Cookies

The Platform may use cookies to enhance your user experience. A cookie is a small piece of information stored by a web server so that it can be later read back from that browser. Cookies help us remember your preferences and track your website usage. The cookies do not contain any personal/sensitive personal Information.

You can choose to erase or disable cookies in your browser settings if you do not wish to allow them.

D. Security

We take reasonable precautions to protect your personal/sensitive personal information from unauthorized access, disclosure, or misuse. However, we cannot guarantee that our security measures will prevent all unauthorized access.

E. Links to Other Websites

Our Platform may provide links to other websites or applications that may collect personal information about you. We are not responsible for the privacy practices or content of those linked websites.

F. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. We may notify you about changes to this Privacy Policy by posting an updated version of this Privacy Policy on our Platform.

G. Modification /deletion of your personal/sensitive personal information

If you wish to modify/delete any information shared with us, you can reach to us at shivangi.adani@dalberg.com for specific requests.

H. Grievance Officer

For any queries related to this Privacy Policy, correction of any personal/sensitive personal information provided by you or for making a complaint about breach of privacy, you may contact the Company Grievance Officer at shivangi.adani@dalberg.

Last updated on 25th April, 2024