Privacy Policy – Assay

Assay ("we," "our," or "us") is a personal document analysis and intelligence project. This Privacy Policy explains how we collect, use, and protect your information when you use the Service.

Important: Assay is a personal project, not an enterprise service. We do not sell your data, use it for advertising, or repurpose it beyond providing the Service.

When you upload a document:

• The file is processed transiently to extract information needed to provide the Service
• Original PDF files are deleted immediately after processing
• We do not retain, store, or index original document files

The Service retains only derived data, which may include:

• AI-generated summaries
• Extracted keywords
• Theme classifications
• Minimal metadata required for search, organization, and discovery

We do not retain original PDFs or full document text unless explicitly stated in the interface.

We may collect limited usage and technical information, such as:

• Feature usage (searches, uploads, views)
• Error logs and performance metrics
• Basic device and browser information

This data is used solely to operate, maintain, and improve the Service.

We use collected information to:

• Provide and maintain the Service
• Process documents and generate summaries and themes
• Enable search, comparison, and discovery features
• Diagnose issues and improve system reliability
• Respond to support requests

We do not:

• Sell or rent your data
• Use your documents or derived outputs for advertising
• Train AI models on your private documents
• Share private documents with other users
• Make private content publicly discoverable

Public documents are only discoverable if you explicitly mark them as public.

Assay uses Google Cloud infrastructure (e.g., Firebase, Firestore, Cloud Functions).

• Original uploaded documents are deleted after processing
• Only derived data is retained
• Access controls are enforced based on document visibility settings

We apply reasonable security practices, but no system can guarantee absolute security.

You have the right to:

• Access your data
• Delete your account and associated derived data
• Update account information
• Control document visibility (private vs. public)

These actions can be performed via the dashboard or by contacting us.

Assay relies on third-party services to function:

• Google Firebase / Google Cloud – authentication, storage of derived data, processing
• Google Cloud AI (Gemini) – document summarization and analysis
• Anthropic Claude API – optional server-side synthesis (only if enabled or configured)

These providers process data according to their own privacy policies. Assay does not control third-party data retention beyond their documented terms.

• Derived data is retained while your account is active
• You may delete documents or your entire account at any time
• Upon account deletion, retained derived data is removed, subject to temporary backups or legal obligations