Privacy Policy

Your data is yours. We store what you give us so your second brain works. We don't sell your data. We don't train on your data. You can export everything and delete your account at any time.

• Account info (name, email via Google sign-in)
• Notes and documents you upload or create
• AI conversation history
• Preferences you set (display, AI behavior, vault mode)
• A referral cookie if you arrived via a referral link (30-day expiry)
• Usage data (message counts, feature usage)

To make your second brain work. Your notes are embedded and stored so the AI can retrieve them. Your preferences are learned so the AI can talk to you the way you want. That's it.

• Anthropic (Claude API) — processes your messages, does not retain them
• Voyage AI — generates note embeddings for semantic search, does not store content
• Supabase — database and authentication hosting
• Vercel — application hosting and serverless functions
• Stripe — payment processing and referral payouts
• Upstash — distributed rate limiting (Redis)
• Google — OAuth sign-in and connected services (Calendar, Gmail, Drive) when enabled by you
• Spotify, GitHub, Square, Stripe, Shopify, Toast, Trello, Fitbit, QuickBooks, Notion, Dropbox, Slack, OneNote, Todoist, Readwise — only when connected by you, for the features you enable
• Invisible intelligence APIs (server-side, no user data shared): OpenWeatherMap (weather), WAQI (air quality), USDA & Open Food Facts (nutrition), Open Library (books), Frankfurter (currency), Free Dictionary API, Nominatim (geocoding), Wikipedia, NASA (APOD), Wolfram Alpha, Currents (news), Have I Been Pwned (breach check)

Export all your data at any time from Settings. Delete specific memories, conversations, or your entire account. No lock-in, ever.

Questions? Reach us at privacy@fulkit.app.