Privacy Policy

Last updated: 2026-05-04 · Version 0.1 (Beta+)

⚠️ Placeholder draft. Have a privacy lawyer review before public launch. Should be GDPR Art 13/14 + CCPA compliant.

1. Data we collect

• Account data: email, optional name, IP at signup.
• Customer inputs: text submitted to /predict and /correct, stored in your namespace's append-only audit log.
• Audit metadata: labels, confidence scores, mode (fast/escalated/cascade), audit hashes.
• Encoder API keys: if you BYO an OpenAI/Cohere/Voyage key, it's encrypted at rest with AES-256-GCM.
• Usage: aggregate prediction counts, billing-relevant counters.

2. How we use it

We use data only to operate the Service: serve predictions, persist audit chains, calculate billing, send transactional email, and surface usage statistics in your dashboard. We do not train models on your customer inputs.

3. Sub-processors

• Neon (Postgres hosting) — account data, audit index, billing records.
• AWS S3 — append-only JSONL audit logs (truth).
• Vercel — application hosting, edge.
• Resend — transactional email.
• Stripe — payment processing.
• OpenAI / Cohere / Voyage — when you select managed encoder, your inputs transit these providers via our enterprise contract. When you BYO key, your inputs go directly to the provider you authorized.
• Cloudflare — DNS, rate limiting, DDoS protection.

4. Retention

Free tier: 7-day audit retention. Paid tiers: indefinite by default; configurable retention TTL per namespace. Account data is retained while your account is active; deletion follows GDPR Art 17 with a 30-day soft-delete grace period.

5. Your rights (GDPR / CCPA)

You may request access, correction, export, or deletion of your personal data at any time. Contact privacy@seedstrate.ai. Audit log deletion is honored cryptographically — once shredded, the chain entry is rewritten as a tombstone.

6. Security

API keys are stored as SHA-256 hashes (never plaintext after creation). Encoder API keys are encrypted at rest with AES-256-GCM. The audit chain uses Merkle hash chaining; tampering is detectable on any verify call.

7. International transfers

Data is processed in the United States (Neon US East / S3 us-east-1 / Vercel global edge). For EU customers, we rely on Standard Contractual Clauses with our sub-processors.

8. Contact

Privacy questions: privacy@seedstrate.ai