Terms of Service & Privacy Policy

Part 1 — Terms of Service

1. Acceptance

By creating an account on the AIK Platform ("Platform"), you agree to be bound by these Terms of Service. If you do not agree, do not create an account.

2. Use of the Platform

You may use the Platform only for lawful purposes. You agree not to:

Use the Platform to perform or facilitate illegal activities.
Attempt to gain unauthorized access to other users' data or the Platform's infrastructure.
Use automated tools to stress-test or disrupt the Platform.
Upload malicious code, viruses, or any software intended to harm.
Use the Platform to send unsolicited bulk email (spam).

3. Your Account

You are responsible for maintaining the confidentiality of your credentials. You are responsible for all activity that occurs under your account. Notify us immediately if you suspect unauthorized use.

4. AI-Generated Content

The Platform uses large language models (LLMs) to generate responses and perform automated tasks. AI-generated output may be inaccurate. You are solely responsible for reviewing and validating any AI output before acting on it. We do not accept liability for decisions made based on AI-generated content.

5. Data You Provide

You retain ownership of all data you upload to the Platform. By uploading data, you grant us a limited license to process it solely for the purpose of delivering the service to you.

6. Service Availability

We aim for high availability but do not guarantee uninterrupted service. We reserve the right to modify, suspend, or discontinue the service with reasonable notice.

7. Limitation of Liability

To the maximum extent permitted by law, AIK Platform is provided "as is" without warranties of any kind. We are not liable for indirect, incidental, or consequential damages arising from your use of the Platform.

8. Termination

We may suspend or terminate your account if you violate these Terms. You may delete your account at any time from Settings → Security → Delete Account.

9. Changes to Terms

We may update these Terms. Continued use of the Platform after notification constitutes acceptance of the new Terms.

Part 2 — Privacy Policy (GDPR)

      Your privacy matters. This policy explains what data we collect, why, how we protect it, and your rights under the General Data Protection Regulation (GDPR).
    

1. Data Controller

The data controller responsible for your personal data is the operator of this AIK Platform instance. For questions, contact the administrator via the Support section of the Platform.

2. Data We Collect

Account data: email address, full name, hashed password, registration timestamp.
Usage data: chat history (session-based), workflow run logs, activity logs.
Settings: API keys and credentials you add in Settings (stored encrypted).
Files: files you upload to your personal sandbox folder.
Technical data: IP address (for rate limiting only, not stored long-term), browser type.

3. Legal Basis for Processing

Contract: processing necessary to provide the service you signed up for.
Consent: you explicitly consented at registration by accepting these terms.
Legitimate interest: security logging, fraud prevention.

4. How We Use Your Data

Provide and improve the Platform.
Authenticate you and keep your account secure.
Send password reset emails (only when requested).
Detect and prevent abuse.

5. Data Sharing

We do not sell your personal data. We may share data with:

AI providers (e.g. OpenAI, Anthropic, Google): your chat messages are sent to the AI model provider you configured. Review their privacy policies.
Infrastructure providers: hosting, database services, only as needed to operate the Platform.

6. Data Retention

Your data is retained for as long as your account is active. When you delete your account, all your personal data and owned content is permanently deleted within 30 days.

7. Your Rights (GDPR)

Under GDPR you have the right to:

Access: request a copy of your personal data.
Rectification: correct inaccurate data (via Settings).
Erasure ("right to be forgotten"): delete your account and all data at any time via Settings → Security → Delete Account.
Portability: request your data in a machine-readable format.
Objection: object to processing based on legitimate interests.
Withdraw consent: you may withdraw consent at any time by deleting your account.

To exercise any right, contact the Platform administrator via the Support section.

8. Security

We implement technical and organizational measures to protect your data, including password hashing (bcrypt), encrypted storage of API keys, JWT authentication, and rate limiting. However, no system is 100% secure — use a strong, unique password.

9. Cookies

The Platform uses only functional storage (localStorage in your browser) to maintain your session. No third-party tracking cookies are used.

10. International Transfers

If you use cloud AI providers (OpenAI, Anthropic, Google), your messages may be processed outside the EU. These providers maintain their own GDPR compliance frameworks.

11. Contact & Complaints

For privacy concerns, contact the Platform administrator. You also have the right to lodge a complaint with your national data protection authority.