Privacy Policy
We process only the data required to operate the service, in compliance with GDPR and other applicable regulations.
1. Data We Collect
- Email and password hash: for registration and account access.
- Uploaded documents: users confirm that they will not upload or submit any personal data of third parties unless they have a valid legal basis to do so. Files are stored only temporarily for processing and deleted automatically afterward.
- Payments: handled entirely by Stripe - we do not store any card information or details.
- Technical data: IP address, timestamps, user-agent, request logs, session identifiers, and security logs to ensure safe operation and abuse prevention.
- Cookies: only essential cookies required for authentication, session management, and secure platform functionality are used. No tracking or analytics cookies are used.
2. Purpose of Processing
- Account creation and authentication.
- Providing service functionality and access.
- Payment handling (Stripe).
- Temporary storage and processing of uploaded documents.
- Ensuring stability, monitoring, security, and abuse prevention.
- Fulfilling legal obligations when required.
3. Third-Party Infrastructure
We use external providers such as:
- AstraDB
- PostgreSQL, Redis managed services
- Stripe (payments)
These providers may change over time. Updated information about subprocessors can be provided upon request.
Their respective privacy policies apply to their processing activities.
4. Third-Party AI Services
We may use external AI providers to process user inputs and generate responses. Text you enter may be processed by these providers solely for the purpose of providing the service. We handle your data responsibly and in accordance with applicable privacy laws. Data sent to external AI providers is limited to the text you submit for processing and is used solely to generate responses.
5. Data Sharing
- We only share data with the infrastructure and payment providers listed above.
- Infrastructure providers process data solely to support service operation.
- Stripe acts as an independent data controller for payment processing.
- We do not sell or share data for marketing purposes.
- All providers act as data processors or independent controllers where applicable.
6. User Rights (GDPR)
You may request:
- Access to your data
- Correction
- Deletion of your account
- Restriction of processing
- Objection to processing where applicable
7. Data Retention
- Account data is stored as long as necessary to provide the service or comply with legal obligations.
- Uploaded documents are stored only for the limited time required for processing or temporary service operation, after which they are automatically deleted.
- Logs are retained for a limited period for security purposes.
8. Security
We apply technical and organizational safeguards, but no online service can guarantee absolute security.
Contact
If you have any questions about this Privacy Policy or your personal data, you can contact us at: [email protected]
Last updated: 28.06.2026