Legal · v0.1
Effective date: 11 July 2026 · Last updated: 11 July 2026
ComplyEdge (“we”, “us”) operates the Service at complyedge.io, api.complyedge.io, dashboard.complyedge.io, trust.complyedge.io, and related properties. For privacy requests contact privacy@complyedge.io (or support@complyedge.io).
Depending on the processing activity, we act as an independent controller (account administration, website analytics, billing) or as a processor (evaluating content you submit through the API on your instructions). Processor terms may be set out in a Data Processing Agreement for enterprise customers.
text_hash only in standard production audit logs — we do not persist raw prompts/outputs in those logs unless a separate written agreement says otherwiseWhere GDPR applies, legal bases include contract performance, legitimate interests (security, product improvement, B2B communications with opt-out), consent where required, and legal obligation.
We do not sell personal data. We use infrastructure and vendors to run the Service, including:
Vendors process data under contract and only on our instructions (or as independent controllers for their own console accounts, e.g. if you pay Stripe directly).
Infrastructure may process data in the United States and other countries where our vendors operate. Where required, we use appropriate safeguards (e.g. Standard Contractual Clauses) for transfers from the EEA/UK.
We use industry-standard controls appropriate to a cloud API product (TLS in transit, access controls, secret management, auditability). No method of transmission or storage is perfectly secure; please protect your API keys.
Depending on your location, you may have rights to access, correct, delete, restrict, or port personal data, and to object to certain processing or withdraw consent. Contact privacy@complyedge.io. You may also lodge a complaint with your local supervisory authority.
If we process data as your processor, we will assist you in responding to data-subject requests as required by your DPA and applicable law.
We use cookies or local storage as needed for authentication/session continuity on the dashboard, and limited first-party analytics on marketing pages. We do not use advertising trackers for cross-site ad retargeting on the core product pages covered by this Policy.
The Service is built for professional / organizational use and is not directed to children under 16. We do not knowingly collect their personal data.
We may update this Policy. Material changes will be posted with a new “Last updated” date. Continued use after the effective date constitutes acceptance where permitted by law.
Use of the Service is also subject to our Terms of Service. Where we act as your processor, see the Data Processing Agreement.