← Home
Legal

Privacy Policy

Last updated: June 2026  ·  Version 1.2

EdgeKeeper ("we", "us", "our") respects your privacy and is committed to being transparent about how we handle your data. This policy explains what personal information we collect, why we collect it, how we use and protect it, and what rights you have over it.

By using EdgeKeeper, you agree to the practices described in this policy. If you do not agree, please do not use the Service.

The short version: Your conversation content is yours. We do not sell it, share it beyond what's necessary to run the platform, or use it to train AI models. The only third parties who receive any of your data are the infrastructure providers that power the platform — listed in full below.

1. Who We Are

EdgeKeeper is operated by EdgeKeeper Ltd, registered in Nigeria. For the purposes of data protection law, we are the data controller for personal information processed through the platform.

Data protection contact: privacy@edgekeeper.io

2. Data We Collect

We collect only what is necessary to operate the Service:

Account data

Session and conversation data

Behavioral and performance data

Usage and technical data

Payment data

Payment processing is handled entirely by Polar.sh. We store only your subscription status (plan tier and renewal date). We never receive, see, or store your card number, bank account details, or any raw payment instrument data.

Data we do not collect

3. Legal Basis for Processing

We process your personal data on the following legal bases:

PurposeLegal basis
Providing mentor sessions and maintaining conversation memoryPerformance of contract
Account creation and authenticationPerformance of contract
Billing and subscription managementPerformance of contract
Sending transactional emails (billing receipts, password resets)Performance of contract
Enforcing plan usage limitsPerformance of contract
Detecting abuse and maintaining platform securityLegitimate interests
Proactive mentor outreach (if enabled in Settings)Consent (opt-in, revocable)
Compliance with legal obligationsLegal obligation

4. How We Use Your Data

We do not use your conversation content or behavioral data to train AI models — ours or anyone else's. We do not sell, rent, or trade your personal data for any commercial purpose.

5. AI Processing and Third-Party Transmission

OpenAI

Your messages are transmitted to OpenAI's API to generate mentor responses in real time. Only the conversation content required to produce a response is sent — your name, email address, and payment information are never included. Transmission occurs over TLS. OpenAI's Privacy Policy and API data processing terms govern their handling of this data.

ElevenLabs

Voice sessions are processed by ElevenLabs. Your voice is not used — the AI mentor's synthesised speech is streamed to you in real time. No audio is stored by EdgeKeeper. ElevenLabs' Privacy Policy applies.

6. Third-Party Service Providers

We share only the minimum data necessary with the following providers to operate the platform:

ProviderData sharedPurpose
SupabaseAll stored data (encrypted at rest on AWS)Database, authentication, and storage
OpenAIConversation messages per requestAI mentor text generation
ElevenLabsText to be synthesised (no personal data)Voice session audio synthesis
Polar.shEmail address, subscription eventsPayment processing and billing
ResendEmail address, email contentTransactional email delivery

All providers are required to process your data only for the purpose we specify and to maintain appropriate security measures. We do not authorise any provider to use your data for their own independent purposes.

7. Cookies and Session Management

EdgeKeeper uses a single session cookie:

We do not use advertising cookies, tracking cookies, or analytics cookies. We do not embed any third-party tracking scripts on the platform.

8. Data Storage and Security

Your data is stored in Supabase's PostgreSQL database on AWS infrastructure. Data is encrypted at rest and in transit (TLS). Row-level security policies in the database ensure your data can only be accessed by authenticated server-side operations acting on your behalf — no other user can access your data.

We implement rate limiting, input validation, HTTPS enforcement, and HTTP security headers (HSTS, CSP, X-Frame-Options) on all endpoints. Despite these measures, no system is perfectly secure. We will notify you promptly in the event of a data breach that affects your personal information.

9. Data Retention

We retain your personal data for as long as your account remains active. If you close your account:

You may request deletion of your data at any time — even without closing your account — by emailing privacy@edgekeeper.io. We will confirm deletion within 30 days.

10. International Data Transfers

EdgeKeeper is operated from Nigeria. Our infrastructure providers (Supabase/AWS, OpenAI, ElevenLabs, Polar.sh, Resend) may process or store your data in the United States or other countries. Where data is transferred outside your country of residence, we ensure that appropriate safeguards are in place — including relying on providers that have executed Standard Contractual Clauses or equivalent mechanisms where required by applicable data protection law.

11. Your Rights

Depending on your jurisdiction, you may have the following rights:

To exercise any of these rights, email privacy@edgekeeper.io with the subject line "Privacy Request." We will respond within 30 days. We may ask you to verify your identity before actioning a request.

If you are located in the EU or UK and believe we have not handled your data lawfully, you have the right to lodge a complaint with your local supervisory authority (e.g. the ICO in the UK, or your national DPA in the EU).

12. Children

EdgeKeeper is not directed at, and does not knowingly collect data from, individuals under the age of 18. If we become aware that we have collected personal data from a person under 18, we will delete it promptly. If you believe we have received data from a minor, contact privacy@edgekeeper.io immediately.

13. Changes to This Policy

We may update this policy as the Service evolves. When we make material changes, we will notify you by email and update the "Last updated" date above at least 14 days before the changes take effect. Continued use of the Service after changes take effect constitutes your acceptance of the revised policy.

Prior versions of this policy are available on request.

14. Contact

For all privacy-related queries, requests, and concerns:
privacy@edgekeeper.io

For general enquiries:
hello@edgekeeper.io


Terms of Service  ·  Home