Privacy & Cookie Policy

Data Controller

Controller: KaiDrys Organization.

Privacy Contacts: kaidrys.helpdesk@gmail.com

Categories of Processed Data

• Account Data: Name, email, user identifiers, encrypted credentials.
• Usage & Telemetry Data: Technical logs, application events, error tracking metrics, and security metadata.
• Content & AI Data: Materials, project inputs, and tasks uploaded by the user, including data processed by our AI providers to generate platform outputs.
• Payment Data: Handled via an external provider (e.g., Stripe); KaiDrys does not store full credit card information.

Purposes and Legal Basis

• Service Provision & Account Management: Performance of a contract.
• Security, Abuse Prevention, & Business Continuity: Legitimate interest.
• Tax/Accounting Compliance & Legal Obligations: Legal obligation.
• Non-essential Analytics & Equivalent Technologies: User consent.

Data Retention

Data is retained only for the time necessary to fulfill the stated purposes, comply with legal obligations, and protect the Controller's rights. Retention criteria include the duration of the business relationship, regulatory obligations, and security/evidentiary needs.

Recipients and External Processors

Data may be processed by qualified external providers (e.g., EU-based hosting, authentication, payment processing, error tracking telemetry, and AI models such as OpenAI/Anthropic). These providers act as designated Data Processors where required. Your data is never sold to third parties.

Extra-EEA Data Transfers

KaiDrys prioritizes European hosting. However, if data transfers outside the European Economic Area (EEA) occur (e.g., via US-based SaaS providers), they are executed subject to appropriate safeguards, such as Standard Contractual Clauses (SCCs) or other instruments mandated by the GDPR.

Data Subject Rights

You have the right to access, rectify, erase, restrict, object to processing, request data portability, and withdraw consent.

Send requests to: kaidrys.helpdesk@gmail.com.

Data subjects also have the right to lodge a complaint with the competent Data Protection Authority.

Security Measures

KaiDrys implements technical and organizational measures proportionate to the risk, including access controls, Row-Level Security (RLS) on our databases, security logging, infrastructure hardening, and incident management protocols.

Minors

The service is not intended for minors. Upon valid notification, any data belonging to minors will be handled according to the law and, if necessary, promptly deleted.

Policy Updates

This policy may be updated over time. The current version will always be published on the platform with the corresponding "Last Updated" date.

Cookie Policy - Categories

• Strictly Necessary Cookies: Essential for authentication, security, session management, and basic platform functionality.
• Analytics/Performance Cookies: Activated only after explicit "Accept All" consent, used to measure usage and improve the User Experience (UX). We currently use Vercel Analytics for aggregate traffic insights.
• Functional Cookies (if present): Manage non-essential preferences, always subject to consent where required.

Cookie Consent Management

Our banner requires your explicit decision before enabling optional analytics. If you select "Essential Only", only strictly necessary cookies remain active and analytics tracking stays disabled. If you select "Accept All", optional analytics are enabled.

Consent records are saved in local storage and in the kaidrys_cookie_consent cookie (1 year, path /, SameSite=Lax). You can update your preference at any time below or through browser settings.