Privacy
Policy.

We collect the information needed to provide a private document archive, authenticate users, process uploaded files, answer questions, run billing, protect the service, and respond to support requests.

• You choose which documents to upload. Those documents may contain personal information, confidential business information, health information, financial information, or other sensitive material depending on the content you provide.
• We do not intentionally require sensitive personal information to create an account, but uploaded files and chat prompts may include sensitive content controlled by you.
• We also collect technical information generated by normal use of the app, such as authentication cookies, request logs, rate-limit events, browser/device information, and analytics events.

We use personal information and document content to deliver the service the user requested and to keep the app reliable, secure, and billable.

• Provide account access, authenticated sessions, dashboard features, settings, document upload, document viewing, search, chat, and plan enforcement.
• Extract readable text from supported files, split text into searchable chunks, create embeddings, generate summaries, suggest questions, and return cited answers.
• Process payments, maintain subscription state, provide invoices and billing portal access, detect failed payments, and support plan upgrades or cancellations.
• Detect abuse, enforce rate limits, debug errors, improve uptime, protect accounts, investigate security events, and comply with lawful requests.

The Archive.ai is a retrieval-augmented document assistant. AI processing is central to how uploads, summaries, search, and chat answers work.

• When you upload a supported document, the app extracts readable text and sends the text needed for embeddings and initial analysis to AI infrastructure providers such as OpenAI.
• When you ask a question, the app searches your stored document chunks and sends the relevant snippets plus your prompt to the AI provider to generate an answer.
• AI outputs can be incomplete or incorrect. You should verify important answers against the cited source document text.
• We do not use uploaded document content to train a public model owned by The Archive.ai. Third-party AI providers process the content as subprocessors for service delivery.

We share information only as needed to operate the product, process payments, use infrastructure providers, respond to legal obligations, protect the service, or complete a business transaction.

• Supabase provides authentication, database, and document storage infrastructure.
• OpenAI provides AI model and embedding infrastructure for summaries, search, and answers.
• Stripe processes checkout, subscriptions, billing portal sessions, invoices, and payment records. We do not store full card numbers.
• Vercel provides hosting and analytics infrastructure used to deliver the site and understand aggregate usage.
• We may disclose information if required by law, subpoena, court order, government request, security investigation, fraud prevention, or to protect rights, safety, and service integrity.

The app uses browser storage technologies for authentication, product state, dashboard behavior, and analytics.

• Supabase and Next.js use cookies to keep users signed in, process auth callbacks, and protect authenticated routes.
• The dashboard stores limited local browser state, such as the current and previous document references, so the chat workspace can restore your active context.
• UI preferences, such as sidebar state, may be stored in cookies or local storage.
• Analytics and server logs help us understand performance, errors, and aggregate product usage. Analytics events are not used to read document contents.
• You can control cookies through your browser settings, but blocking required cookies may prevent sign-in, dashboard access, billing redirects, or document workflows from working.

We keep information for as long as needed to provide the service, satisfy legal obligations, secure the app, resolve disputes, and maintain business records.

• Uploaded documents, extracted text, document chunks, summaries, and chat messages remain available while your account keeps them in the active product experience.
• Deleting a document removes it from the active dashboard experience and deletes associated active document records that power chat and search. Backup copies, logs, and provider retention systems may persist for a limited period.
• Billing and transaction records may be retained for tax, accounting, chargeback, fraud-prevention, and legal reasons even after account closure.
• Support messages and privacy request records may be retained to document how we handled the request.
• If you want account closure or help confirming deletion, contact support from the email address associated with your account.

Depending on where you live, you may have rights to access, know, correct, export, delete, restrict, object to, or limit certain uses of personal information.

• You can manage uploaded documents in the dashboard and billing through account settings or the Stripe billing portal.
• You can request access, correction, export, deletion, restriction, objection, or account closure by contacting support.
• California and some other U.S. state residents may have rights to know, delete, correct, opt out of certain data sales or sharing, limit sensitive personal information use, and receive equal treatment for exercising rights.
• We do not sell personal information and do not share personal information for cross-context behavioral advertising.
• We may need to verify your identity before completing a privacy request. Some requests may be limited by security, legal, billing, fraud-prevention, backup, or operational requirements.

This policy applies to The Archive.ai web app, dashboard, document workflows, billing workflows, and support communications.

• Privacy questions and requests can be sent to support@thearchiveai.xyz.
• We may update this policy when product features, providers, laws, or operations change. The updated date on this page will show the latest revision.
• The service is not directed to children under 13, and we do not knowingly collect personal information from children under 13.
• Information may be processed in the United States and in other locations where our providers operate infrastructure.
• This policy does not reduce any privacy rights you may have under applicable law.