KeySense AIKeySense AI
← Back to home

Privacy Policy

Last updated: May 2026

1. Who We Are

This Privacy Policy describes how NxSoft, the company behind the KeySense AI service ("Service", "we", "us"), collects, uses, and protects your personal data. For privacy questions, contactprivacy@keysense.tech.

2. Information We Collect

We collect:

  • Account data: email address and name provided during registration.
  • Usage data: API request counts, correction results, timestamps, and plan usage metrics.
  • Billing data: managed entirely by our payment processor, Paddle. We do not store card numbers.

We do not store the content of text submitted to the API beyond the time needed to process each individual request. Requests are stateless and ephemeral.

3. How We Use Your Information

We use your information to:

  • Provide, operate, and improve the Service;
  • Process payments and send transactional emails (receipts, usage alerts);
  • Monitor usage and enforce plan limits;
  • Respond to support and security requests;
  • Comply with legal obligations.

We do not sell your personal data to third parties, and we do not use it for advertising.

4. Data Storage and Security

Account data is stored in Supabase (PostgreSQL), hosted on AWS in the us-east-1 region. Row-level security policies ensure each user can only access their own data. API request logs are retained for up to 30 days for billing and debugging purposes, then deleted automatically. We apply industry-standard encryption in transit (TLS 1.2+) and at rest.

5. Sub-processors and Third-Party Services

We use the following sub-processors. Each has its own privacy policy and data processing commitments:

  • Supabase — database and authentication (AWS us-east-1)
  • Paddle — payment processing
  • Anthropic — AI text analysis (optional, see Section 6)
  • Cloudflare — API infrastructure and global edge network
  • Vercel — web application hosting

6. AI Processing and Text Data

Text submitted via the API is processed in real-time and is not stored persistently. By default, 94% of corrections are handled by our stateless rule-based engine with no external calls.

When the use_ai parameter is set to true, or when our engine's confidence falls below the threshold, your text may be sent to Anthropic for AI-assisted correction. Anthropic processes this data under a Data Processing Agreement that prohibits using your data for model training.

Enterprise customers can disable AI fallback entirely — contactenterprise@keysense.tech.

7. International Data Transfers

We process data in the United States (AWS us-east-1 via Supabase, Cloudflare edge). If you are located in the European Economic Area (EEA), United Kingdom, or another jurisdiction with data transfer restrictions, please be aware that your data is transferred to and processed in the United States. We rely on standard contractual clauses and our sub-processors' compliance frameworks to protect such transfers.

If you are subject to GDPR, you have the right to request a copy of the applicable transfer safeguards by contactingprivacy@keysense.tech.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: request a copy of the personal data we hold about you.
  • Rectification: request correction of inaccurate data.
  • Erasure: request deletion of your account and associated data.
  • Portability: request export of your data in a machine-readable format.
  • Objection / Restriction: object to or restrict certain processing activities.

To exercise any of these rights, contactprivacy@keysense.tech. We will respond within 30 days.

9. Cookies

We use essential cookies only — specifically, session tokens required for authentication. We do not use advertising, tracking, or analytics cookies.

10. Data Retention

Account data is retained for the duration of your subscription plus 90 days following account deletion, to allow for billing dispute resolution. API request logs are retained for 30 days. Deletion requests are processed within 30 days.

11. Changes to This Policy

We may update this policy from time to time. We will notify registered users of material changes via email at least 14 days before they take effect.

12. Contact

For privacy-related questions or to exercise your rights: