Scope
Mainstreet AI provides business AI software and services to companies through signed business agreements. MainstreetGPT and related applications are not broadly available self-service products; access is provisioned for approved users at customer organizations.
Customer deployments may run in customer-approved cloud environments, in customer-controlled networks, or on premises where appropriate. Those deployments may connect to customer-approved tools such as Microsoft 365, files, reports, databases, search, or other business systems.
Customer agreements, statements of work, data-processing terms, security terms, and organization policies may add more specific requirements for data handling, privacy, security, retention, and support. If those written terms conflict with this general website policy, the written customer agreement controls for that customer.
Information we may handle
Account and contact information
Names, emails, organization details, roles, messages, support requests, and access records.
AI work and user content
Prompts, responses, uploaded files, generated outputs, project materials, conversations, and saved context.
Business-source data
Documents, reports, database outputs, Microsoft 365 content, and other sources a customer authorizes.
Diagnostics and usage
Request IDs, access logs, device or browser details, app version, IP address, error logs, and security/audit records.
If voice, image, file-processing, or other specialized features are enabled, Mainstreet AI may process the related media, transcripts, extracted text, or metadata only as needed to deliver and support the service.
How we use information
- Provide, operate, secure, troubleshoot, and improve Mainstreet AI products and services.
- Authenticate users, enforce permissions, manage approved access, and support customer administrators.
- Connect authorized AI tools to approved business sources, documents, reports, workflows, and systems.
- Respond to support, privacy, security, and operational requests.
- Monitor reliability, quality, cost, safety, abuse prevention, and compliance with applicable agreements.
Service providers and AI processing
Mainstreet AI may use cloud hosting, storage, search, model providers, Microsoft integrations, diagnostics, email, support, and security providers to deliver the service. These providers process information only as needed for the services we provide or as otherwise allowed by the applicable customer agreement.
Access, deletion, and privacy choices
Approved users and customer administrators can request access changes, correction, export, deletion, or account-support help by contacting Mainstreet AI or the customer's designated administrator. Retention and deletion depend on the customer agreement, security needs, legal obligations, backup schedules, and support requirements.
- To request help from Mainstreet AI, email privacy@mainstreetai.com.
- To change access to an employer-managed account, start with the customer administrator when possible.
- To remove a connected data source, contact the administrator who approved the integration.
Security and controlled environments
Mainstreet AI designs deployments around approved access, least-privilege permissions, customer-controlled environments, and practical auditability. Some applications may be deployed in or alongside the customer's own cloud, network, or on-premises infrastructure. No security program can eliminate all risk, but our operating goal is to keep AI useful, visible, controlled, and grounded in the customer's real work.
Contact
For privacy, support, security, or account questions, contact Mainstreet AI at privacy@mainstreetai.com.