Privacy Policy

"Vilix", "we", "us" refers to Appfairly LLC, the operator of getvilix.com. You can reach us at:

• Privacy questions, data requests, security incidents — security@getvilix.com
• Account, billing, and general data help — support@getvilix.com
• Other general inquiries — hello@getvilix.com

This policy covers the Vilix website, the Vilix dashboard, the Vilix API, and any browser extensions, importers, or third-party connectors we publish.

Vilix saves your AI conversations across the tools you use — like ChatGPT, Claude, Cursor, and Gemini — and makes them searchable. When you or a connected AI tool needs context, Vilix surfaces the relevant memories so your AI can pick up where you left off. Vilix does not run its own chatbot; connected tools continue to operate under their own terms.

We only collect what's needed to run the product:

• Account information. When you sign in with Google or a magic link, we receive your email address and a sign-in identifier. We never receive or store your Google password.
• Profile data. Your account record, onboarding status, and your current subscription / trial state.
• Onboarding feedback. Answers you give during onboarding (the problem you're trying to solve, which AI tools you use, and your preferences). We use this to shape the product.
• Your AI conversations. Messages, snippets, and objects you import or sync from connected AI tools, along with the timestamp and the platform they came from. This is the data Vilix exists to remember on your behalf.
• Memories you create. Notes, preferences, and saved facts you add directly in the dashboard.
• Connected services. Which AI tools or services you connect, when you connected them, and the access scopes you granted.
• API tokens. Metadata about tokens you generate for connecting AI tools (name, creation date, last-used time). We never store the full token value after you create it.
• Usage data. Aggregate counts like how many messages have been saved or how often the API has been called, used to show you your own usage and to operate the service.
• Operational data. Logs, error reports, and basic request metadata (IP address, user-agent, timestamps) needed to keep the service running and secure.

We don't intentionally collect special-category data (health, biometric, political, religious, etc.). Don't paste it into Vilix unless you're comfortable with the protections described below.

The conversations Vilix saves can include very personal context. We treat them accordingly.

• Stored for you, not used to train models. We do not train, fine-tune, or sell foundation models on your conversations. We do not license them to third parties.
• Per-account isolation. Every saved conversation is tied to your account. Another Vilix user cannot retrieve your data.
• Capture only with your action. Conversations enter Vilix only when you take a deliberate step — connecting a tool, installing a browser extension and signing in, performing a bulk import, or saving content during a session. You can disconnect or pause any source at any time.
• Audit, edit, and erase. The Vilix dashboard lets you browse what we've saved, filter by source platform and date, edit individual records, and delete any of them. Deletion removes the record from the active service; backups are purged on a rolling schedule (Section 8).
• Export. You can export your data at any time from the dashboard, in a portable format.

• Browser extension. When you install a Vilix extension and sign in, it reads conversations on the AI sites you've enabled (e.g., ChatGPT, Claude, Gemini) and forwards them to your account. The extension runs only on the domains you authorize; it does not read other browsing activity.
• Bulk imports. If you upload an export file from another AI tool, the contents are processed into your account. The original upload is deleted after processing.
• Third-party connectors. Optional connectors for services like Gmail, GitHub, and Discord work over OAuth. You see and approve the scopes; you can revoke them at any time. We pull only what's needed to satisfy the queries you make through Vilix.
• API tokens. AI tools you connect can read your saved content using a token you generate in the dashboard. Treat tokens like passwords. You can revoke any token at any time, which immediately disconnects that tool.

We use the data above to:

• Authenticate you and run your account.
• Provide the core memory, search, and retrieval features across the AI tools you connect.
• Manage your free trial and any active paid subscription.
• Improve the product based on aggregated onboarding feedback and usage patterns.
• Send transactional emails (sign-in links, account notices, security alerts).
• Detect, investigate, and respond to abuse, fraud, and security incidents.
• Comply with legal obligations.

We do not use your conversations for advertising, profiling, or automated decision-making that produces legal or similarly significant effects. Vilix may process conversation content to provide memory, search, and retrieval features — that's the product.

• Contract. Most processing is necessary to deliver the service you signed up for.
• Legitimate interests. Operating, securing, and improving the product, where those interests are not overridden by your rights.
• Consent. For optional connectors and any non-essential communications.
• Legal obligation. Where we're required to retain or disclose data by law.

• Account data is retained while your account is active.
• Your AI conversations and memories are retained until you delete them or close your account.
• Onboarding feedback is retained linked to your account; may be kept in aggregated, de-identified form afterwards for product research.
• Connector access and API tokens are retained until you revoke them or close your account.
• Logs and operational records are retained for a limited period (typically up to 90 days) for security and debugging.
• Backups are rotated on a rolling schedule; deletions in the active service propagate to backups within 30 days.

When you close your account, we delete or de-identify your personal data unless we are required to keep it (for example, to comply with tax, accounting, or legal obligations).

We don't sell your personal data. We share it only with:

• Infrastructure providers that host and run the Service on our behalf, under contracts that limit them to that purpose.
• AI tools you connect. When you wire Vilix into ChatGPT, Claude, Cursor, or another tool, that tool receives the memories you choose to expose to it. Their handling is governed by their own privacy terms.
• Optional connectors you enable (such as Gmail, GitHub, Discord) exchange data with Vilix only under the access scopes you grant.
• Email and analytics services used to deliver sign-in links and to understand product usage in aggregate.
• Professional advisors and authorities when required by law, legal process, or to protect our rights and users.
• A successor entity in the event of a merger, acquisition, or asset sale, bound by terms at least as protective as this policy.

Vilix operates globally. Your data may be processed in countries other than the one you live in, including the United States and the European Union. Where required, we rely on appropriate transfer mechanisms (such as Standard Contractual Clauses) to protect your information.

Depending on where you live, you may have the right to:

• Access the personal data we hold about you.
• Correct data that is inaccurate or incomplete.
• Delete your data ("right to be forgotten").
• Export your data in a portable format.
• Object to or restrict certain processing.
• Withdraw consent where processing is based on consent.
• Lodge a complaint with your local data protection authority.

You can exercise most of these directly in the Vilix dashboard (search, edit, export, revoke tokens, disconnect tools, delete account). For anything else, email support@getvilix.com and we'll respond within 30 days.

Vilix uses secure transport such as HTTPS and protected infrastructure to help safeguard your data. Access to your account is scoped to you, sensitive credentials and tokens are stored protected, and operator access is limited and logged. No system is perfectly secure, but we work to reduce risk and respond quickly to incidents. If we discover a breach affecting your data, we will notify you and the relevant authorities as required by law.

To report a vulnerability or a security concern, email security@getvilix.com. See our Security page for details on what to include in a report.

We use a small number of strictly necessary cookies — primarily to keep you signed in — and limited analytics to understand how the product is used. We do not use advertising cookies or cross-site tracking. You can clear cookies through your browser at any time; clearing them will sign you out.

Vilix is not directed to children under 16, and we do not knowingly collect data from them. If you believe a child has provided us data, contact us and we will delete it.

We will update this policy as Vilix evolves. When we make material changes, we'll update the "Last updated" date at the top and, where appropriate, notify you by email or in-app notice before the changes take effect.

Vilix is operated by Appfairly LLC. For privacy questions, data requests, or account support, contact us at contact@appfairly.org or visit appfairly.org.