Legal

Privacy Policy

Last updated: December 24, 2025

Encrypted transport + storage

Tenant isolation boundaries

Controlled data retention

No model training on customer code

1. Introduction

ContextStream ("we", "our", or "us") is committed to protecting the data you entrust to us.

This policy explains what information we collect, how we use it, and the choices you have.

2. Information We Collect

  • Account Information: name, email, and authentication metadata via providers like GitHub or Google.
  • Codebase Context: indexed embeddings, structure metadata, and optional encrypted file storage depending on plan features.
  • Usage Data: operational telemetry such as tool-call success rates and error patterns used for reliability improvements.
  • Memory and Decisions: records captured by users and assistants (decisions, notes, project context) to support persistent memory.

3. How We Use Information

  • Deliver search, memory, and context features in the product.
  • Support retrieval quality, indexing performance, and reliability.
  • Detect and mitigate misuse, outages, and security incidents.
  • Communicate service updates and support responses.

4. Data Storage and Security

Data is stored on managed cloud infrastructure with encryption in transit and at rest.

Workspace and tenant boundaries are used to isolate customer data from other organizations.

5. Third-Party Service Providers

  • LLM providers (for model-powered processing when requested).
  • Infrastructure partners (compute, storage, databases).
  • Payment processors (billing and subscription management).

6. Third-Party Integrations

ContextStream integrates with external AI platforms and tools. OAuth authorization is explicit, revocable, and scoped.

Only the data required for the requested operation is shared. Credentials are not shared with third parties.

  • Read operations retrieve existing workspace information.
  • Write operations create or modify records in your workspace.
  • Third-party platform privacy policies also apply when those platforms process data.

7. Your Rights and Controls

You can request access, correction, or deletion of personal data.

Workspace-level controls allow deletion of associated context and memory records.

8. Contact

For privacy questions, contact [email protected].

Need policy clarification?

If your security or legal team needs additional details, we can provide a focused review call for data handling and integration scope.

Talk to Sales View Security Page