We collect and process your data to provide the KnowTrace service. This includes:

• Account information (email, name)
• Integration data (OAuth tokens, metadata from connected services)
• Knowledge items (summaries, Q&A pairs generated from your content)
• Usage data (recaps, audit logs for security)

We implement industry-standard security measures:

• Encryption at rest and in transit (TLS)
• OAuth tokens are encrypted before storage
• Row-level security (RLS) to prevent unauthorized access
• Regular security audits and penetration testing
• Access controls and authentication required for all operations

We comply with GDPR and CCPA regulations. You have the right to:

• Access your data (export available in your account settings)
• Request deletion of your data
• Withdraw consent at any time
• Object to processing
• Data portability

To exercise these rights, please visit your account settings or contact us.

We retain your data for as long as your account is active or as needed to provide services. Raw content is automatically deleted after 30 days, with only metadata and embeddings retained for knowledge retrieval purposes.

When you delete your account, all associated data is permanently removed within 30 days.