Privacy Policy

Last updated: December 28, 2025

Our Commitment

DataMea is built on a simple principle: your data belongs to you. We designed our platform to give you complete control over your personal information. This privacy policy explains how we handle your data and protect your privacy.

What We Collect

Account information: Email address for authentication and communication.

Data exports you upload: Files you choose to upload from platforms like Google, Facebook, Instagram, LinkedIn, YouTube, and others. These are stored encrypted in your private vault.

Usage data: Basic analytics to improve our service (page views, feature usage). We do not track you across other websites.

How Your Data is Processed

When you upload a data export, we process it to extract structured metadata:

  • Titles, categories, and timestamps
  • Activity counts and durations
  • Platform and content type identifiers

Raw content (message bodies, email text, document contents) is processed locally but never exposed to AI assistants. Only metadata summaries are accessible via our API.

What AI Assistants Can Access

When you connect an AI assistant (like Claude) to your DataMea vault, it can only access:

  • Summary statistics (record counts, date ranges)
  • Activity trends over time
  • Metadata-only event records (titles, categories, timestamps)
  • Data source information

AI assistants cannot access raw message content, email bodies, photos, or full documents.

What We Do NOT Do

  • We do not sell your data to third parties
  • We do not use your data to train AI models
  • We do not show you ads based on your data
  • We do not share raw data with AI assistants
  • We do not access your data without your explicit consent

Data Storage & Security

Your data is stored with industry-standard security measures:

  • Encryption at rest and in transit (TLS 1.3)
  • Isolated storage per user (your data is never mixed with others)
  • EU-based data centers for GDPR compliance
  • Regular security audits

Data Retention

Your data is retained until you delete it. You can delete individual files, specific data sources, or your entire account at any time. When you delete data, it is permanently removed from our systems within 30 days (to allow for backup rotation).

Your Rights (GDPR)

Under GDPR and similar regulations, you have the right to:

  • Access — View all data we hold about you
  • Rectification — Correct inaccurate data
  • Erasure — Delete your data ("right to be forgotten")
  • Portability — Export your data in a standard format
  • Restriction — Limit how we process your data
  • Objection — Object to certain processing activities

Contact

For privacy-related questions or to exercise your rights, contact us at:
hello@datamea.org