Account Information: Email address, password (hashed), and optional organization name when you create an account.

Messages: The content of messages you send to and receive from your AI agent. These are stored to maintain conversation history and memory.

Usage Data: Message counts, channel activity, API call volumes, and feature usage metrics for billing and service improvement.

Device Information: Device type, device ID, and connection timestamps for multi-device sync functionality.

Payment Information: Payment processing is handled by Stripe. We store your Stripe customer ID but never your card details.

• To provide and maintain the STRIX AI agent service
• To process your subscription payments via Stripe
• To enforce plan usage limits
• To maintain conversation history and persistent memory for your AI agent
• To send service-critical communications (billing alerts, security notices)
• To improve the Service based on aggregate usage patterns

Your data is stored on DigitalOcean infrastructure located in the United States.

Encryption: Messages and persistent memory are encrypted at rest using AES-256-GCM. Authentication uses JWT tokens with bcrypt-hashed passwords. API keys are stored using industry-standard encryption.

Access Control: Your data is isolated by tenant. No other customer can access your conversations, memory, or configuration.

We do not sell, rent, or trade your personal data to third parties.

We share data only with:

• Stripe — for payment processing
• AI model providers — message content is sent to AI providers (e.g., Anthropic, Groq) to generate responses. These providers process data per their own privacy policies.
• Twilio — if you use Voice, SMS, or WhatsApp channels, message content is transmitted through Twilio's network

Your data is retained for as long as your account is active. When you delete your account, all associated data (conversations, memory, channel configurations) will be permanently deleted within 30 days.

Billing records may be retained for up to 7 years for tax and legal compliance.

STRIX uses browser localStorage to store authentication tokens (JWT) and user preferences. We do not use tracking cookies or third-party analytics.

You have the right to:

• Access — Request a copy of your data
• Correction — Update inaccurate information
• Deletion — Request deletion of your account and data
• Export — Request an export of your conversation history

To exercise these rights, contact us at james@stricklandai.com.

STRIX is not intended for use by individuals under the age of 18. We do not knowingly collect data from minors.

We may update this Privacy Policy from time to time. Material changes will be communicated via email. The "Last updated" date at the top of this page indicates when the policy was last revised.

Questions about this Privacy Policy? Contact us at james@stricklandai.com

Strickland Technology
Houston, TX, United States