Privacy Policy
Last updated: March 1, 2026
1. Information We Collect
We collect information you provide directly: account details (name, email), payment information (processed via Stripe — we never store card numbers), usage data, and content you upload to the Service. We also collect technical data: IP address, browser type, device information, and interaction logs for service improvement.
2. How We Use Your Information
We use your information to: (a) provide and maintain the Service; (b) process payments; (c) send essential communications (security alerts, billing, service updates); (d) improve the Service through aggregated, anonymized analytics; (e) respond to support requests. We do not sell your personal information. We do not use your data to train AI models.
3. Data Storage and Security
Your data is stored on dedicated cloud instances — never shared infrastructure. All data is encrypted at rest (AES-256) and in transit (TLS 1.3). We maintain SOC 2 Type II certification and undergo regular third-party security audits. Access to customer data is restricted to authorized personnel and logged.
4. Data Isolation
Each Genie deployment runs on an isolated cloud instance. Your conversations, files, configurations, and AI context are not accessible to other users or Genie staff except as needed for support (with your explicit consent).
5. Third-Party Services
When you use "Bring Your Own Key" to connect to AI providers (OpenAI, Anthropic, Google), your prompts and responses are processed according to those providers' privacy policies. Genie does not store the content of AI model interactions beyond what is needed for persistent memory functionality on your instance.
6. Cookies and Tracking
We use essential cookies for authentication and session management. We use anonymized analytics (no personal data) to understand how the Service is used. We do not use third-party advertising trackers. You can disable non-essential cookies in your browser settings.
7. Data Retention
We retain your data for as long as your account is active. Upon account deletion, your data is permanently removed within 30 days. Backups are purged within 90 days. You can request data export at any time via the dashboard or API.
8. Your Rights
You have the right to: (a) access your personal data; (b) correct inaccurate data; (c) delete your data; (d) export your data in a portable format; (e) object to processing; (f) withdraw consent. To exercise these rights, contact privacy@genie.ai or use the self-service tools in your dashboard.
9. International Data Transfers
Our primary infrastructure is in the United States. If you are located outside the US, your data may be transferred to and processed in the US. We use Standard Contractual Clauses and encryption to ensure adequate protection for international transfers.
10. Children's Privacy
The Service is not intended for children under 16. We do not knowingly collect personal information from children. If we learn that we have collected data from a child, we will delete it promptly.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email and in-product notification at least 30 days before taking effect.
12. Contact
For privacy-related questions or requests, contact our Data Protection Officer at privacy@genie.ai.