Synthetic BrAIn — Privacy Policy
Controller: Maibot, a company organized under the laws of the Republic of Paraguay (the "Company", "we", "us"). Applies to: the Synthetic BrAIn desktop application and the Allive-BrAIn engine (the "App"). Version: 1.0 · Draft — pending legal review. Effective date: To be announced.
This Policy is written in English; a Spanish version should be made available for consumers in Paraguay and other Spanish-speaking markets.
1. Our approach: local-first by design
Synthetic BrAIn is built so that your information stays with you. Your conversations, memory, profile, files, and settings are stored on your device, not on our servers. We designed the App so that we do not need — and in ordinary use do not receive — the content you work with. This Policy explains the limited data we do handle, what stays on your device, and your choices.
The short version: we don't collect your conversations, we don't train on your data, and we don't sell your data.
2. What stays on your device (we do not receive it)
The following is created and stored locally by the App and is not transmitted to us:
- your prompts, chats, and the AI outputs you receive;
- your memory, notes, and anything the Allive-BrAIn engine remembers for you;
- files and folders you open or let the App work with;
- your profile (name, username) and your App settings and preferences;
- API keys and credentials you enter for third-party providers, which are stored in your device's local/secure store for the App's use.
You control this data. You can export or delete it on your device at any time.
3. Personal data we do collect
We limit what we collect to what is needed to provide licences, process purchases, and support you:
(a) Account and identity basics. If you create an account or activate a licence, we may process your name, username, email address, language, and country, and a licence identifier.
(b) Purchase and licence data. When you buy the software or the course, the purchase is handled by our payment providers (Section 5). We receive a record of the transaction and entitlement (for example product, plan, order reference, buyer email, language, and country) so we can issue, validate, and support your licence. We do not receive or store your full payment-card details.
(c) Support and communications. If you contact us or send feedback, we process what you send us to respond and improve the App.
(d) Limited technical/diagnostic data. The App may check for updates and validate a licence, which involves basic connection data (such as an IP address and app/version information) processed to deliver those functions. Any optional analytics or telemetry is disclosed and off by default; we do not enable it without your choice.
We do not intentionally collect special-category/sensitive data, and the App is not intended for anyone under 18.
4. Third-party AI providers (bring your own key)
When you connect a third-party AI provider (for example OpenAI or Anthropic) or use another integration, and you send a prompt to it, your content is sent to that provider using your own account or key. That processing is governed by that provider's privacy policy, not this one. We are not a party to that exchange and do not receive its content. You choose which providers to connect and can disconnect them at any time.
5. Payment processors
- Software purchases are processed by Paddle, acting as merchant of record. Paddle collects and processes your payment information under its own privacy policy and shares with us the transaction/entitlement data we need to issue your licence.
- Course purchases are processed by Hotmart under its own privacy policy.
We recommend you review those providers' privacy policies for how they handle payment data.
6. How we use personal data
We use the limited data described above to:
- create and manage your account and issue, validate, and revoke licences (including the cross-channel course/software bundle);
- process and support your purchases and honor refunds/reversals;
- provide customer support and respond to your requests;
- secure the service and prevent fraud or abuse;
- send you service messages, and — only with your consent or as permitted by law — occasional product messages you can opt out of; and
- comply with legal obligations and enforce our Terms.
We rely on the legal bases of performance of a contract, our legitimate interests in operating and securing the service, your consent (where required, for example optional analytics or marketing), and compliance with law, as applicable.
7. How we share personal data
We do not sell your personal data. We share the limited data we hold only with:
- service providers who process on our behalf (for example payment processors, email delivery, and hosting/infrastructure for licensing), under appropriate confidentiality and data-processing terms;
- authorities, where required by law or to protect rights, safety, or the service; and
- a successor in the event of a merger, acquisition, or sale of assets, subject to this Policy.
8. International transfers
Some of our providers process data outside Paraguay (for example in the United States or the European Union). Where we transfer personal data internationally, we use providers that offer appropriate safeguards for that data.
9. Retention
We keep personal data only as long as needed for the purposes above — for example, for the life of your account or licence and as required for tax, accounting, and legal purposes — and then delete or anonymize it. Data stored locally by the App remains on your device until you delete it.
10. Security
We use reasonable technical and organizational measures to protect the data we hold. Locally stored data is protected by your device and operating-system protections, and credentials you enter are kept in the App's local/secure store. No method of storage or transmission is completely secure, and you are responsible for securing your own device and accounts.
11. Your rights and choices
Subject to applicable law, you may request to access, correct, delete, or export your personal data, object to or restrict certain processing, and withdraw consent where processing is based on consent. Because most of your information lives on your device, you can already access, export, and delete much of it directly in the App. To exercise rights over the limited data we hold, contact us (Section 13). You also have the right to complain to the competent data-protection or consumer authority.
12. Changes to this Policy
We may update this Policy. We will post the updated version with a new effective date and, where required, notify you. Continued use after the effective date means you accept the update.
13. Contact us
For privacy questions or to exercise your rights, contact privacy@maibot.io.