Back to Home

Legal and Compliance

Effective Date: 28 March 2026

These documents are tailored for Thinnest.ai, an AI SaaS platform providing AI chat agents and AI voice/call agents (web, phone, WebRTC) to businesses, operating primarily in India.

1. Terms and Conditions / Terms of Use

1.1 Introduction

Welcome to Thinnest.ai ("Thinnest", "we", "our", "us"). These Terms and Conditions ("Terms") govern your access to and use of our website, dashboard, APIs, software, AI models, voice and chat agents, and related services (collectively, the "Services").

By accessing or using the Services, you agree to be bound by these Terms, our Privacy Policy, and other referenced policies.

1.2 Eligibility

  • You must be at least 18 years old and legally capable of entering into a binding contract under Indian law.
  • If you are using Thinnest on behalf of a company, you represent that you are authorized to bind that entity.

1.3 Account Registration

  • You must provide accurate and complete information during signup.
  • You are responsible for all activity occurring under your account.
  • You must keep your login credentials secure.

1.4 Services Description

Thinnest.ai provides:

  • AI-powered chat agents
  • AI-powered voice agents (phone calls, WebRTC)
  • Usage-based and subscription-based billing
  • Analytics, logs, and conversation management tools

AI outputs are generated automatically and may not always be accurate.

1.5 Pricing, Usage & Billing

a) Pricing Model

Thinnest uses a usage-based pricing model, which may include:

  • Per-message fees (chat)
  • Per-minute fees (voice)
  • Platform fees
  • Third-party pass-through costs (LLM, STT, TTS, telephony)

Current pricing is displayed on the website or dashboard and may change with notice.

b) Billing & Payments

  • All fees are billed in advance or on usage accrual basis.
  • Payments are non-refundable except where required by law.
  • Failure to pay may result in suspension or termination of Services.

1.6 Acceptable Use

You agree not to use Thinnest.ai for:

  • Illegal, fraudulent, or deceptive activities
  • Harassment, abuse, or discrimination
  • Unlawful robocalls, spam calls, or unsolicited communications
  • Activities violating TRAI, IT Act 2000, or telecom regulations
  • Training or deploying AI systems for prohibited uses

You are solely responsible for compliance with applicable telecom, consumer protection, and data protection laws.

1.7 AI & Voice Disclaimer

  • AI responses are probabilistic and not guaranteed to be correct.
  • Thinnest does not provide legal, medical, or financial advice.
  • You must review and validate AI outputs before business use.

1.8 Intellectual Property

  • All platform software, branding, UI, and proprietary systems belong to Thinnest.
  • You retain ownership of your business data and prompts.
  • You grant Thinnest a limited license to process your data solely to provide Services.

1.9 Suspension & Termination

We may suspend or terminate access if:

  • These Terms are violated
  • Payments are overdue
  • Required by law or regulation

Upon termination, access to Services and stored data may be deleted after a reasonable period.

1.10 Limitation of Liability

To the maximum extent permitted by Indian law:

  • Thinnest shall not be liable for indirect, incidental, or consequential damages.
  • Total liability shall not exceed fees paid by you in the preceding 3 months.

1.11 Governing Law & Jurisdiction

These Terms are governed by the laws of India.

Courts located in Bengaluru, India shall have exclusive jurisdiction.

1.12 Contact

📧 hello@thinnest.ai

2. Privacy Policy (India-Focused)

2.1 Scope

This Privacy Policy explains how Thinnest.ai collects, uses, stores, and processes personal data in accordance with:

  • Information Technology Act, 2000
  • IT (Reasonable Security Practices and Procedures and Sensitive Personal Data) Rules, 2011
  • Digital Personal Data Protection Act, 2023 (DPDP Act)

2.2 Data We Collect

a) Account Data

  • Name, email, company name
  • Billing and payment metadata (processed by payment partners)

b) Usage & Technical Data

  • IP address
  • Logs, timestamps, agent usage
  • Browser and device metadata

c) Conversation Data

  • Chat messages
  • Voice call transcripts (if enabled)
  • AI-generated responses

2.3 Purpose of Processing

We process data to:

  • Deliver AI chat and voice services
  • Monitor usage and billing
  • Improve reliability and security
  • Meet legal and regulatory requirements

2.4 Data Retention

  • Logs and conversation data are retained only as long as necessary.
  • Users may request deletion subject to legal obligations.

2.5 Data Sharing & Vendors

We may share data with trusted subprocessors, including:

  • LLM Providers (e.g., OpenAI, Anthropic, Google, via APIs)
  • Speech Providers (STT/TTS)
  • Telephony Providers (for voice calls)
  • Indian AI Providers (e.g., Sarvam AI — STT, LLM, TTS)
  • Cloud Infrastructure (Google Cloud Platform — Mumbai region)
  • Payment Processors (Razorpay — India-based payment gateway)

All vendors process data under contractual confidentiality and security obligations.

2.6 Data Security

We implement:

  • Encryption in transit
  • Role-based access controls
  • Secure cloud infrastructure

No system is 100% secure; use is at your own risk.

2.7 User Rights (India)

Under applicable Indian law, you may:

  • Access your personal data
  • Request correction or deletion
  • Withdraw consent (where applicable)

Requests can be sent to: hello@thinnest.ai

3. Cookie Policy

Thinnest.ai uses cookies and similar technologies to:

  • Maintain sessions
  • Improve performance
  • Analyze usage trends

You may disable cookies in your browser; some features may not function properly.

4. Acceptable Use Policy (AUP)

You must not:

  • Deploy AI agents for illegal calls or scams
  • Circumvent safeguards or rate limits
  • Violate privacy or consent laws

Violation may result in immediate suspension.

5. Voice & Telecom Compliance Notice (India)

You acknowledge that:

  • You are responsible for complying with TRAI, DoT, and local telecom laws
  • Consent is required for outbound calls where applicable
  • Thinnest acts as a technology provider, not a telecom operator

6. Data Residency & Infrastructure

6.1 Cloud Infrastructure

ThinnestAI infrastructure is hosted on Google Cloud Platform (GCP), region Mumbai (asia-south1). The following components are deployed within this region:

  • Application servers — Google Cloud Run
  • PostgreSQL database — Google Cloud SQL
  • Redis cache — Google Memorystore
  • Voice recordings & file storage — Google Cloud Storage

6.2 Indian AI Providers — Data Stays in India

When you use Indian AI providers — including Sarvam STT, Sarvam LLM, Aero TTS, and Sarvam Bulbul TTS — all data stays exclusively in India. Zero data leaves the country. Voice audio, transcripts, and AI-generated responses are processed and stored entirely within Indian infrastructure.

6.3 International Providers

When you choose international providers (such as OpenAI, Anthropic, Google Gemini, or other global LLM/STT/TTS services), data may be processed outside India in accordance with those providers' respective data processing policies. By selecting an international provider, you acknowledge and consent to your data being transferred and processed outside India as per the provider's terms.

6.4 Payment Data Residency

All payment data is processed by Razorpay, an India-based payment gateway. In compliance with the RBI data localization mandate, all payment-related data is stored exclusively in India.

7. Regulatory Compliance

7.1 DPDPA 2023 (Digital Personal Data Protection Act)

ThinnestAI implements the following measures under the DPDPA 2023:

  • Voice consent recording — consent is captured and stored for all voice interactions where required
  • Configurable data retention with auto-purge — default retention period of 180 days, configurable per account
  • Right to erasure — users and data principals may request deletion of their personal data
  • 72-hour breach notification — in the event of a data breach, affected parties and the Data Protection Board will be notified within 72 hours

7.2 RBI Data Localization (April 2018 Circular)

All payment-related data is stored exclusively in GCP Mumbai (asia-south1). Razorpay, our payment processor, ensures that all domestic payment data handling complies with RBI's data localization requirements. No payment data is stored or processed outside India.

7.3 TRAI Compliance

ThinnestAI provides the following compliance tools for telecom operations:

  • DND/NCPR scrubbing tools — filter numbers registered on the National Customer Preference Register
  • IST time-boxing (9 AM – 9 PM) — outbound calls are restricted to permissible hours under TRAI regulations
  • AI disclosure toggle — configurable disclosure that the caller is an AI agent
  • 140-series telemarketing number support — via Vobiz SIP integration for compliant outbound calling

Note: TRAI telemarketer registration is the end user's responsibility. ThinnestAI provides the technology; compliance obligations rest with the business operating the campaigns.

7.4 IT Act 2000 & IT Rules 2011

  • Reasonable security practices (Section 43A) — encryption, access controls, and audit trails are implemented
  • Data protection compliance — personal data is handled per IT (SPDI) Rules, 2011
  • Intermediary guidelines — ThinnestAI complies with intermediary obligations under the IT Act and its amendments

8. Updates to Policies

We may update these policies periodically. Continued use after changes constitutes acceptance.

© 2026 ThinnestAI Private Limited – All Rights Reserved