Privacy Policy
Last updated June 22, 2026
このページは英語で提供されます。英語版が正式版です。
This Privacy Policy explains what information Kairosy collects, how we use and share it, and the choices and rights you have. Kairosy is a tool for businesses and professionals, and we collect only what we need to run and improve it.
1. Overview
This Privacy Policy explains how CMOON PTE. LTD., the Singapore company that operates Kairosy (“Kairosy”, “we”, “us”), collects, uses, and shares information when you use our website and service. By using Kairosy, you agree to this Policy. If you do not agree, do not use Kairosy.
2. Information we collect
Account information: your email address and your account, plan, and subscription status. You may optionally provide a name or organization.
Scan information: the brands, websites, categories, and competitors you enter, and the reports, scores, and monitoring lists we generate for you.
Usage and device data: technical and log data such as IP address, browser and device type, the pages and features you use, actions, timestamps, and error and diagnostic data.
Payment information: payments are processed by Stripe. We do not receive or store your full card number; we may receive limited billing metadata such as card brand, last four digits, expiry, billing country, and subscription status.
Communications: if you contact us, we keep your messages and contact details.
3. How scans use AI engines
To produce a report, we send the brand, website, or category you enter — not your account or personal details — to third-party AI models through API providers, in order to capture how those models respond. Those providers process the request under their own terms and policies.
4. How we use information
We use information to: operate, provide, secure, and support the service; run scans and monitoring; process payments and manage subscriptions; communicate with you about your account and the service; detect, prevent, and address abuse, fraud, and security issues; comply with legal obligations; and analyze, develop, and improve our products and features, including by using aggregated and/or de-identified data.
We use your information for marketing only where permitted by law or with your consent, and you can opt out at any time.
5. Legal bases (EEA / UK)
If you are in the EEA or UK, we process personal data on these bases: performance of our contract with you (to provide the service and handle billing); our legitimate interests (to secure, analyze, and improve the service and prevent abuse); your consent (where we ask for it, such as certain marketing); and compliance with legal obligations (such as tax and accounting).
6. How we share information
We do not sell your personal information. We share information with: service providers who help us run Kairosy under contract — including Supabase (authentication and database), Netlify (hosting), Stripe (payments), Resend (email), and the AI API providers used to run scans; authorities or others where required by law or to protect our rights, our users, or the public; and a successor in connection with a merger, acquisition, or sale of assets. We may add or change service providers as the service evolves.
7. Cookies and tracking
We use a strictly necessary authentication token, stored in your browser, to keep you signed in. We do not currently use third-party advertising or analytics trackers. If we introduce analytics or advertising technologies, we will update this Policy and obtain consent where required.
8. International transfers
We operate globally and may process and store information in the United States and other countries whose data-protection laws may differ from those where you live. Where required, we use appropriate safeguards (such as Standard Contractual Clauses or an applicable data-transfer framework) for cross-border transfers.
9. Data retention
We keep personal information for as long as your account is active and as needed to provide the service, and afterwards as required to comply with legal obligations (for example, billing and tax records), resolve disputes, and enforce our agreements. We then delete or de-identify it. Residual copies may remain in backups or logs for a limited period.
10. Security
We use reasonable technical and organizational measures to protect information, including encryption in transit and at rest and access controls. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security. You are responsible for keeping your credentials confidential.
11. Your rights
Depending on where you live, you may have rights to access, correct, delete, export, or restrict the processing of your personal information, to object to certain processing, and to withdraw consent where processing is based on it. EEA/UK users may also lodge a complaint with their local data protection authority.
California residents: we do not sell or “share” personal information as those terms are defined under the CCPA, and you have the right to know, to delete, and not to be discriminated against for exercising your rights.
To exercise any right, email us at cmoonchat@gmail.com. We may need to verify your identity, and we will respond within the timeframe required by applicable law.
12. Children
Kairosy is intended for business use and is not directed to children. We do not knowingly collect personal information from anyone under 16. If you believe a child has provided us information, contact us and we will delete it.
13. Changes to this Policy
We may update this Policy from time to time. If we make material changes, we will provide notice (for example, by email or a notice in the app). Your continued use of Kairosy after the effective date constitutes acceptance.
14. Contact
Questions or requests about privacy? Contact us at cmoonchat@gmail.com. Kairosy is a service operated by CMOON PTE. LTD., a company incorporated in Singapore, which is the controller of your personal information.