Legal
Privacy
Policy
Polari Technologies LLC takes privacy seriously. This policy explains what data we collect, how we use it, and what rights you have. We've written it to be read, not just checked off a compliance list.
01 — Overview
The Short Version
We collect the minimum data necessary to run our services. We don't sell your data. We don't use your data to build profiles for advertising. The intelligence we generate from your content is used to return results to you — not to monetize you as a product.
This policy applies to all services operated by Polari Technologies LLC, including the Polari API (polariapi.com), Digestr (digestr.ai), Eventide, and associated websites. If you use these services, this policy applies to you.
Where we reference "personal data," we mean information that identifies or could reasonably identify you as an individual. "Processing" means anything we do with your data — storing, reading, analyzing, or transmitting it.
02 — What We Collect
Data We Collect and Why
| Category | What | Why |
|---|---|---|
| Account data | Name, email address, company name | To create and manage your account |
| Billing data | Payment method details (via Stripe) | To process subscription payments |
| API usage data | Request logs, endpoint calls, timestamps, error codes | Rate limiting, debugging, usage reporting |
| Submitted content | Text or URLs you submit for processing | To return the intelligence you requested |
| Technical data | IP address, browser/client type, referrer | Security, fraud prevention, analytics |
| Communication data | Emails or messages you send us | To respond and maintain support records |
We do not collect sensitive personal categories such as health data, biometrics, political opinions, or financial account numbers beyond what is strictly necessary for billing.
03 — How We Use It
What We Do With Your Data
Your data is used for the following purposes and no others:
- Providing, operating, and improving the services you have signed up for
- Processing payments and managing your subscription
- Communicating with you about your account, including security notices and billing alerts
- Analyzing aggregate usage patterns to improve our infrastructure (not individual behavior profiling)
- Preventing fraud, abuse, and security threats to our platform
- Complying with legal obligations when required
We do not use your data to train our core intelligence models without your explicit consent. Enterprise customers may opt into model improvement programs under a separate agreement.
04 — Sharing
Who We Share Data With
We do not sell your personal data. We share data only with the following categories of parties, and only to the extent necessary:
- Payment processors — Stripe processes billing information. We do not store card numbers.
- Infrastructure providers — Hetzner (server hosting), Cloudflare (DNS and edge services). These providers have access to traffic metadata but not to your submitted content.
- Analytics services — We use privacy-respecting analytics tools that do not fingerprint individuals or build cross-site profiles.
- Law enforcement — Only when required by valid legal process, and we will notify you where legally permitted to do so.
If Polari Technologies LLC is acquired or merges with another entity, your data may be transferred as part of that transaction. We will notify you before this occurs and provide the opportunity to delete your account.
05 — Retention
How Long We Keep Your Data
We retain data only as long as necessary to provide services and fulfill legal obligations.
- Account data is retained for the duration of your account plus 90 days after deletion
- API request logs are retained for 30 days (Starter), 90 days (Professional), or per agreement (Enterprise)
- Billing records are retained for 7 years as required by tax law
- Submitted content processed through the API is not stored beyond the request-response cycle unless you are using a persistence feature
- Communications with our team are retained for 2 years
You may request deletion of your account and associated data at any time. Deletion requests are processed within 30 days, subject to legal retention requirements.
06 — Cookies
Cookies and Tracking
We use a minimal set of cookies necessary for our services to function. We do not use advertising cookies or third-party tracking pixels.
- Session cookies — Required for authentication. These expire when you close your browser.
- Preference cookies — Store your UI preferences (e.g., dashboard layout). These expire after 12 months.
- Analytics cookies — Anonymized page visit tracking to understand which documentation pages are most useful. No cross-site tracking.
You may disable cookies in your browser settings. Disabling session cookies will prevent login. All other cookies are optional.
07 — Your Rights
Rights Over Your Data
Depending on your location, you may have the following rights regarding your personal data. We honor these rights for all users regardless of jurisdiction.
- Access — Request a copy of the personal data we hold about you
- Correction — Request correction of inaccurate or incomplete data
- Deletion — Request deletion of your personal data, subject to legal retention requirements
- Portability — Request a machine-readable export of your data
- Objection — Object to specific processing activities
- Withdrawal of consent — Where processing is based on consent, withdraw it at any time
To exercise any of these rights, email privacy@polaritechnologies.com. We will respond within 30 days. We may need to verify your identity before fulfilling a request.
08 — Security
How We Protect Your Data
We implement technical and organizational measures appropriate to the nature of the data we hold:
- All data in transit is encrypted via TLS 1.2 or higher
- API keys are hashed at rest and never stored in plaintext
- Access to production systems is restricted to authorized personnel using multi-factor authentication
- We conduct periodic security reviews and dependency audits
No system is perfectly secure. If you discover a vulnerability in our services, please report it responsibly to security@polaritechnologies.com before public disclosure. We commit to responding within 48 hours.
In the event of a data breach affecting your personal data, we will notify affected users within 72 hours of becoming aware, as required by applicable law.
09 — Children
Children's Privacy
Our services are not directed at individuals under the age of 16, and we do not knowingly collect personal data from children. If you believe a child has provided us with personal data without parental consent, please contact us immediately and we will delete it.
10 — Contact
Privacy Questions
If you have questions about this policy, want to exercise your data rights, or have concerns about how we handle your data, we want to hear from you.
We may update this policy from time to time. We will notify you of material changes by email or via a notice in your account dashboard at least 14 days before they take effect. Continued use after that date constitutes acceptance.
Polari Technologies LLC — Effective January 1, 2026