Kioku

Privacy Policy

Last updated: January 1, 2025

1. Introduction

Jishu Labs ("we", "our", "us") operates Kioku (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using Kioku, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

Account Information: When you create an account, we collect your name, email address, and password (hashed).

Integration Data: When you connect Slack, GitHub, or other platforms, we access data from those services as authorized by you, including messages, PR descriptions, and meeting transcripts related to architectural decisions.

Usage Data: We collect information about how you use the Service, including search queries, pages visited, and feature usage for analytics purposes.

Device Information: We collect browser type, operating system, and IP address for security and analytics.

3. How We Use Your Information

  • To provide and maintain the Service
  • To capture, store, and retrieve architectural decisions
  • To generate semantic search embeddings using AI
  • To improve and personalize your experience
  • To send important service notifications
  • To detect and prevent fraud or abuse

4. Data Storage and Security

Your data is stored securely using Supabase's enterprise-grade infrastructure with PostgreSQL. All data is encrypted at rest using AES-256 and in transit using TLS 1.3.

We implement Row Level Security (RLS) to ensure data isolation between organizations. Your data is never accessible to other users or organizations.

5. Third-Party Services

We use the following third-party services:

  • Supabase: Database hosting and authentication
  • OpenAI: Text embeddings for semantic search (content is not used to train models)
  • Vercel: Application hosting

6. Data Retention

We retain your data for as long as your account is active. Free tier accounts have a 30-day retention policy for inactive data. Pro and Enterprise plans have configurable retention settings. You can export or delete your data at any time from your account settings.

7. Your Rights

  • Access: You can access all your data through the dashboard or API
  • Export: Export your data in JSON or Markdown format at any time
  • Delete: Delete your account and all associated data from settings
  • Correction: Update your profile information at any time

8. Terms of Service

By using Kioku, you agree to use the Service in compliance with all applicable laws. You are responsible for maintaining the confidentiality of your account credentials. You agree not to misuse the Service or attempt to access data belonging to other organizations.

We reserve the right to suspend or terminate accounts that violate these terms.

9. Security

We take security seriously. Our security measures include:

  • AES-256 encryption at rest
  • TLS 1.3 encryption in transit
  • Row Level Security for data isolation
  • Regular security audits
  • SOC 2 Type II compliance (in progress)
  • Secure OAuth flows for integrations

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at privacy@jishulabs.com or visit our contact page.