Legal

Privacy Policy

Last updated: March 16, 2026

This privacy policy should be reviewed by legal counsel before being relied upon as a binding legal document.

1. Introduction

Saffron AI, Inc. (“Saffron,” “we,” “us,” or “our”) operates an AI-native technical assessment platform that enables companies to evaluate engineering candidates through real-world coding tasks. This Privacy Policy describes how we collect, use, disclose, and protect information in connection with our platform and website at trysaffron.ai.

By using our services, you agree to the collection and use of information in accordance with this policy. If you are a candidate taking an assessment, please note that the company administering the assessment (“Customer”) is the data controller for your assessment data, and Saffron acts as a data processor on their behalf.

2. Information We Collect

Account Information

When you create an account or request a demo, we collect:

  • Name and email address
  • Company name and role
  • Information provided during demo calls or onboarding

Candidate Assessment Data

When candidates complete an assessment on Saffron, we collect:

  • Code written during the assessment, including all edits and revisions
  • AI tool interactions, including prompts sent to AI assistants and responses received
  • Session activity data, including keystrokes, file navigation, terminal commands, and timing information
  • Session recordings that capture the full development workflow
  • Browser and system information necessary for the assessment environment

Usage and Analytics Data

We automatically collect certain information when you visit our website or use our platform:

  • IP address and approximate location
  • Browser type, device information, and operating system
  • Pages visited, time spent, and navigation patterns
  • Referral source and search terms

We use PostHog for product analytics. PostHog processes data on our behalf and is subject to its own privacy commitments.

3. How We Use Information

We use the information we collect to:

  • Provide, operate, and maintain our assessment platform
  • Generate automated assessment scores and reports for Customers
  • Attribute code contributions between human-written and AI-generated code
  • Detect potential assessment integrity issues
  • Improve our platform, scoring algorithms, and AI analysis capabilities
  • Communicate with you about our services, including responding to inquiries and sending service-related announcements
  • Comply with legal obligations

4. How We Share Information

With Customers

When a candidate completes an assessment, we share assessment results, session recordings, code contributions, AI interaction logs, and automated scoring with the Customer who administered the assessment. Customers are responsible for their own use of this information in accordance with applicable laws.

Service Providers

We work with third-party service providers who process data on our behalf, including:

  • Cloud infrastructure providers for hosting assessment environments
  • Analytics services (PostHog) for product usage insights
  • AI model providers for automated scoring and code analysis

All service providers are contractually obligated to protect your data and use it only for the purposes we specify.

Legal Requirements

We may disclose information if required by law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of Saffron, our users, or others.

5. Data Security

We implement industry-standard security measures to protect your information:

  • Assessment environments run in fully isolated cloud sandboxes that are destroyed after each session
  • Data is encrypted in transit (TLS) and at rest
  • Access to candidate data is restricted to authorized personnel and the administering Customer
  • We conduct regular security reviews of our infrastructure and processes

6. Data Retention

Account data is retained for the duration of your relationship with us and for a reasonable period thereafter.

Assessment data (including session recordings and code) is retained according to our agreement with the Customer who administered the assessment. Customers may request deletion of assessment data at any time.

7. Your Rights

Depending on your location, you may have the right to:

  • Access, correct, or delete your personal information
  • Object to or restrict certain processing activities
  • Request a portable copy of your data
  • Withdraw consent where processing is based on consent

If you are a candidate seeking to exercise rights regarding your assessment data, please contact the company that administered your assessment, as they are the data controller. You may also contact us directly at team@trysaffron.ai.

8. Cookies

We use essential cookies to operate our platform and analytics cookies (via PostHog) to understand how our website is used. You can control cookie preferences through your browser settings. Disabling analytics cookies will not affect your ability to use our platform.

9. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal information, we will take steps to delete that information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on our website and updating the “Last updated” date. Your continued use of our services after changes are posted constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at team@trysaffron.ai.