Privacy Policy
Last updated: 2026-04-18
This Privacy Policy describes how Psypher AI ("Psypher", "we", "us") collects, uses, and shares information when you use Psyth (the "Service") available at psyth.psypher.ai.
1. Information we collect
Information you provide
- Account data: name, email, password hash, organization name.
- Workspace content: issues, projects, people records, goals, reviews, leave requests, time entries, comments, and files you upload.
- Billing information: handled by our payment processor; we do not store full card numbers.
- Support communications you send us.
Information collected automatically
- Device and log data: IP address, browser, OS, pages viewed, timestamps.
- Product telemetry: feature usage events and error reports, used to operate and improve the Service.
2. How we use information
- To provide, maintain, and secure the Service.
- To authenticate users and enforce access controls.
- To process billing and provide customer support.
- To improve features, performance, and reliability.
- To comply with legal obligations and enforce our Terms.
3. AI features
Psyth includes AI features that process your workspace content to generate answers, summaries, and actions. Your workspace content is not used to train foundational models operated by third parties except where you explicitly opt in. Prompts and completions may be retained for abuse monitoring and debugging for a limited period.
4. How we share information
- Subprocessors: cloud hosting, database, email delivery, error monitoring, and payment processors, under contractual confidentiality and security obligations.
- Your organization admins: workspace content and activity in an organization is accessible to that organization's administrators.
- Legal: when required by law, regulation, or valid legal process.
- Business transfers: in connection with a merger, acquisition, or asset sale, subject to equivalent protections.
We do not sell personal information.
5. Data retention
We retain workspace content while your organization's account is active. On account deletion, workspace content is deleted within 30 days except where a longer period is required by law. Backups may persist for up to 90 days before being overwritten.
6. Security
We use encryption in transit (TLS) and at rest, role-based access controls, audit logs, and regular security reviews. No system is perfectly secure, but we work continuously to protect your data.
7. International transfers
Psyth may process data in jurisdictions other than where you reside. Where required, we use Standard Contractual Clauses or equivalent safeguards.
8. Your rights
Depending on your jurisdiction, you may have rights to access, correct, export, or delete your personal information, and to object to or restrict certain processing. To exercise these rights, contact [email protected].
9. Children
Psyth is not directed to children under 16 and we do not knowingly collect personal information from them.
10. Changes
We may update this policy from time to time. Material changes will be communicated via the Service or email.
11. Contact
Questions about this policy: [email protected].
This document is provided as a starting point and is not legal advice. Please review with counsel before relying on it for your jurisdiction.