Privacy Policy

This Privacy Policy explains how BeyondScreen.ai ("we", "us", "our") collects, uses, and protects your information. If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, we process your personal data in accordance with the General Data Protection Regulation (GDPR) and applicable local data protection laws.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

• Email address
• Account credentials
• Profile information you provide

1.2 Usage Information

We collect information about how you use our services:

• Conversations and messages (stored locally or on your chosen infrastructure)
• Features used and preferences
• Device and browser information
• Log data and error reports

2. How We Use Your Information

We use your information to:

• Provide and improve our services
• Process your AI requests
• Communicate with you about our services
• Ensure security and prevent fraud
• Comply with legal obligations

2a. Legal Basis for Processing (EEA/UK Users)

Under the GDPR, we rely on the following legal bases:

• Contract performance: Processing necessary to provide the services you signed up for (account management, AI request processing, third-party integrations).
• Legitimate interest: Analytics to improve our services, security monitoring, and fraud prevention — where these interests are not overridden by your rights.
• Consent: Optional analytics and marketing cookies, which you can manage via our Cookie Preference Center and withdraw at any time.
• Legal obligation: Where we are required to retain or disclose data by law.

3. Data Storage

BeyondScreen.ai supports both local and cloud deployment modes:

• Local Mode: Your data stays on your device. We do not have access to your conversations or content.
• Cloud Mode: Your data is encrypted and stored on secure servers. We use industry-standard encryption and security practices.

4. Data Sharing

We do not sell your personal information. We may share information with:

• AI Providers: When you use cloud AI models, your prompts are sent to third-party AI providers (e.g., Anthropic) to generate responses. We do not use your data to train AI models, and our AI providers do not train on API-tier inputs. Review their privacy policies.
• Service Providers: Trusted third parties who help us operate our services (under strict confidentiality).
• Legal Requirements: When required by law or to protect rights and safety.

5. Third-Party Integrations

When you connect third-party services (e.g., email, calendar, cloud storage), you authorize us to access and use data from those services on your behalf to:

• Respond to your queries and commands about that data
• Execute workflows and automations you configure
• Provide AI-powered assistance with your content

We only access the data you authorize through OAuth permissions. We do not store copies of third-party data except temporarily to fulfill your requests. You may revoke access at any time through your account settings or the third-party service.

6. Cookies and Tracking

We use cookies and similar technologies to improve your experience. You can manage cookie preferences through our Cookie Preference Center.

• Strictly Necessary: Essential for site functionality (always active)
• Analytics: Help us understand usage patterns (optional)
• Marketing: Measure campaign effectiveness (optional)

7. Your Rights

You have the right to:

• Access your personal information
• Correct inaccurate information
• Request deletion of your data (right to erasure)
• Export your data in a portable format (right to data portability)
• Restrict or object to processing of your data
• Opt-out of marketing communications
• Withdraw consent at any time
• Lodge a complaint with your local data protection authority

If you are in the EEA, UK, or Switzerland, these rights are provided under the GDPR. To exercise any of these rights, contact us at hello@beyondscreen.ai. We will respond within 30 days.

8. Data Retention

We retain your information for as long as your account is active or as needed to provide services. You may delete your account at any time, and we will delete your data within 30 days, except where retention is required by law.

9. Children's Privacy

Our services are not intended for users under 13 years of age. We do not knowingly collect information from children under 13.

10. International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence, including Singapore and the United States. Where we transfer data from the EEA, UK, or Switzerland, we rely on appropriate safeguards including the European Commission's Standard Contractual Clauses (SCCs) and our sub-processors' data processing agreements.

10a. Sub-Processors

We use the following third-party sub-processors to operate our services:

• Amazon Web Services (AWS): Cloud infrastructure, data storage, email delivery (Singapore region)
• LogRocket: Session analytics (enabled only with your analytics cookie consent)
• Cloudflare: Content delivery and frontend hosting
• AI Providers (e.g. Anthropic, OpenAI): Processing AI requests on your behalf

11. Security

We implement appropriate technical and organizational measures to protect your information, including:

• Encryption in transit and at rest
• Regular security audits
• Access controls and authentication
• Secure infrastructure and monitoring

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes and update the "Last Updated" date.

13. Data Processing Agreement

Enterprise customers may review our Data Processing Agreement, which covers data residency, sub-processor obligations, security measures, and breach notification commitments.

14. Contact Us

For privacy-related questions or requests:

• Email: hello@beyondscreen.ai
• Website: https://beyondscreen.ai