Privacy policy

What AMSA-AI is

AMSA-AI is a civic AI mentor for local governance in Morocco, anchored in official Moroccan civic and procedural sources. This policy explains what data the service handles when you use it.

What we collect

When you chat with AMSA, we store the conversation (questions and answers) linked to an opaque anonymous user identifier generated in your browser. We do not require - and do not ask for - your name, phone number, email, or any identifying personal data.

Why we store it

Stored conversations let us improve answer quality, debug retrieval issues, run our internal evaluation suite, and surface flagged content for human review. They are accessed only by the project team under access controls.

Where data lives

AMSA-AI runs on secure managed Cloudflare infrastructure. Conversation history and the corpus are stored in private databases and encrypted object storage under strict access controls. Answer generation currently runs through Cloudflare Workers AI via AI Gateway; only the current prompt, retrieved excerpts, and generation metadata are processed for the answer, and AI Gateway request logging is disabled by default unless explicitly approved and disclosed. A notification webhook may be used to deliver user-reported issues to the project team.

Retention periods

Full conversation messages and retrieval logs are retained for up to 12 months. Flagged questions for human review are retained for up to 90 days. User feedback, usage, and cost events are retained for up to 24 months. Consent acknowledgements are kept as proof that the notice was accepted.

Optional contact data

If you use the 'Report / Propose' form and choose to share a name or email, we store that contact data alongside your message so we can follow up. Both fields are optional - leave them blank to submit anonymously.

Cookies and trackers

AMSA-AI does not use third-party advertising or analytics trackers. The only local storage we use is a small opaque user ID and your disclaimer acknowledgement, both stored in your browser.

Your rights

You can request access, correction, deletion, or objection by contacting us via the email below. Because we do not associate conversations with real identities, we may ask you to share your opaque user ID (visible in browser local storage) so we can locate and remove your data.

Regulatory contact

For complaints about personal data protection in Morocco, you may also contact the CNDP: www.cndp.ma.

Children

AMSA-AI is designed for adult civic actors (elected representatives, civil society leaders, citizens). It is not directed at children.

Changes

We update this policy as the service evolves. Material changes will be reflected in the 'last updated' date above. Continuing to use AMSA-AI after a change constitutes acceptance of the updated policy.

Contact

Questions about this policy or about your data can be sent to [email protected].

What happens to what you type

Your data, plainly

Are my questions anonymous?

Yes. Conversations are linked only to an opaque anonymous identifier generated in your browser. We never require - or ask for - your name, phone number, or email to use AMSA.

What data is stored?

The conversation itself (questions and answers) tied to that anonymous ID. We store it to improve answer quality, debug retrieval, run our evaluation suite, and surface flagged content for human review.

Who can see my conversations?

Only the project team, under access controls. No advertising or third-party analytics trackers are used. No data leaves our infrastructure except the language-model provider call needed to generate the answer.

How long is my data kept?

Full conversation messages and retrieval logs are kept up to 12 months. Flagged questions for human review are kept up to 90 days. Usage and cost events up to 24 months.

Can I have my data deleted?

Yes. Contact us at [email protected]. Because conversations aren't tied to real identities, we may ask for your opaque user ID (visible in your browser's local storage) so we can locate and remove your data.