Privacy Policy

Last Updated: April 2026

1. Introduction

BrainSync ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy outlines how we collect, use, process, and protect your data when you use the BrainSync Service, in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. The "Zero-Outbound" Code Promise

We do not collect your code. Our architecture is an offline-first Codebase Memory OS. All indexing, vector storage, and neural shorthand databases are stored exclusively in your local SQLite databases. We cannot read, access, or harvest your source code.

3. Data We Collect

While we do not collect your code, we do collect limited account and operational data:

  • Account Information: Name, email address, and authentication credentials (e.g., via GitHub OAuth or direct sign-up).
  • Payment Information: Processed securely via our merchant of record (LemonSqueezy). We do not store full credit card numbers.
  • Telemetry Analytics: Anonymous operational metadata (e.g., compute duration, token limits exhausted, generic error codes) to prevent compute-waste and diagnose algorithmic latency. You can opt-out of optional telemetry in your settings.

4. How We Use Your Data

We use your data strictly to:

  • Provide, maintain, and secure the Service.
  • Process your transactions and manage your subscription.
  • Send administrative information, product updates, and security alerts.
  • Support our affiliate marketing system (if applicable).

5. Data Processing & Third Parties

We may share your data with trusted B2B third-party service providers (e.g., LemonSqueezy for billing) who operate under strict Data Processing Agreements (DPAs). We never sell your personal data to advertisers.

6. Your GDPR Rights

If you are a resident of the European Economic Area (EEA), you have the right to:

  • Access, correct, or request deletion of your personal data.
  • Object to processing and request data portability.
  • Withdraw your consent at any time.

To exercise these rights, email us at privacy@brainsync.dev.

7. Cookies

We use essential cookies to maintain your session and security, and analytical cookies to understand website usage. By using our site, you consent to our Cookie Policy.

8. Contact Us

For any privacy-related inquiries, GDPR requests, or Data Processing Agreement (DPA) execution for enterprise accounts, please contact our Data Protection Officer at privacy@brainsync.dev.