Corpilus

Privacy Policy

Last updated: March 1, 2026

1. Information We Collect

We collect information you provide when creating an account (name, email, company name), documents you upload to the Knowledge Base, and usage data to improve our services. We do not access the content of your AI conversations unless required for support.

2. How We Use Your Information

Your information is used to provide and improve Corpilus services, process your subscription, communicate updates, and ensure platform security. We never sell your personal data to third parties.

3. Data Storage & Security

All data is stored in PostgreSQL databases with Row-Level Security (RLS) for tenant isolation. API keys are encrypted with Fernet (AES-128 + HMAC). All connections use HTTPS/TLS. When the Kill Switch is enabled, no data is sent to external AI providers.

4. Your Rights (GDPR)

Under GDPR, you have the right to access, rectify, delete, and export your personal data. You can also restrict processing and object to automated decision-making. Contact us at privacy@corpilus.com to exercise these rights.

5. Data Retention

Account data is retained for the duration of your subscription plus 30 days. After account deletion, all personal data and uploaded documents are permanently removed within 90 days.

6. Contact

For privacy-related questions, contact our Data Protection Officer at privacy@corpilus.com.