Get Started
Privacy Policy

Privacy Policy

Effective date: April 7, 2026

1. Who We Are

This Privacy Policy explains how Layerum collects, uses, and protects personal data.

Controller: Mark Buchynskyi, sole proprietor (個人事業主), Yokohama, Japan. Contact:layerum@layerum.com

2. Data We Collect

We may collect:

  • Account data (name, email, authentication identifiers)
  • Workspace and operational data (entities, documents, metadata, configurations)
  • Usage and interaction data (queries, prompts, API requests, logs, timestamps)
  • Technical data (IP address, device, browser signals)
  • Support communications
  • Billing data (if applicable)

Usage data such as queries and prompts may be stored in encrypted form and access is restricted to authorized users and personnel as needed to operate the service.

3. How We Use Data

We use data to:

  • provide, operate, and maintain the service
  • process ingestion, retrieval, embeddings, and model interactions
  • authenticate users and enforce access control
  • monitor performance, detect abuse, and improve reliability
  • respond to support requests
  • comply with legal obligations
  • process data using third-party AI providers where enabled by the user

We may process and store user queries, prompts, and requests as part of core functionality.

4. Purpose of Use

We use personal data only for purposes necessary to provide and operate the service, improve reliability, support users, and meet legal obligations.

  • provide, operate, and maintain the service
  • secure the service and prevent abuse
  • support user requests and communications
  • meet legal and compliance obligations

5. Service Providers and Subprocessors

We use service providers to operate the platform, including:

  • Supabase (authentication, database)
  • AWS (infrastructure, storage)
  • Qdrant (vector storage)
  • Redis / BullMQ (queue processing)
  • User-created third-party AI providers configured by the workspace owner

We do not sell personal data. This list may be updated from time to time.

6. AI Processing

If you enable AI-powered features, your data may be processed by third-party providers configured by the workspace owner.

You are responsible for the data you submit.

7. International Transfers

Your data may be processed in Japan and other jurisdictions. We implement appropriate safeguards for international data transfers as required by applicable law.

8. Security

We apply reasonable technical and organizational measures to protect data.

Sensitive operational data, including queries and prompts, is stored in encrypted form where applicable. Access is restricted to authorized users and personnel as needed to operate the service.

No system is completely secure.

9. Data Retention

We retain data only as long as necessary to provide the service and comply with legal obligations.

Deletion or anonymization requests are handled within a reasonable period, unless retention is required by law or legitimate operational needs.

10. Account Deletion

When you delete your account or workspace, associated data is deleted or anonymized in accordance with our retention obligations and applicable law.

11. Your Rights

Depending on your location, you may have rights to access, correct, delete, or restrict your data, and to object to certain processing.

To submit a request, contact layerum@layerum.com.

12. Children's Privacy

The service is not directed to children under 13 or as required by applicable law.

13. Changes

We may update this policy. Updates will be posted with a revised effective date.

14. Contact

For privacy requests, contact layerum@layerum.com.