Privacy
Policy.

1. Who we are

Infinet is operated by Clarity Digital Development ("we", "us", "our"). Our chat product is available at infinetai.org. Contact us at [email protected].

2. Scope of this policy

This Privacy Policy covers personal information we collect when you use infinetai.org, sign up for an account, subscribe to a paid plan, or communicate with us. It does not cover third-party services we link to (including our sister product artifacial.io, which has its own privacy policy).

3. What we collect

3.1 Account information

When you sign up, our authentication provider (Clerk) collects:

• Your email address
• A password hash (or an OAuth identifier if you sign in with Google, GitHub, etc.)
• Profile fields you choose to provide (name, profile picture)
• Session metadata (IP address, user agent, login timestamps) for security

3.2 Payment information

If you subscribe to a paid plan, our payment processor (Stripe) collects and processes your payment card details, billing address, and transaction history. We never see or store your full card number. We receive a Stripe customer ID, the subscription status, and the last four digits for reference.

3.3 Usage data

We record basic operational data:

• Token counts per message (to enforce plan limits)
• Request counts per day (rate limiting)
• Model used per request
• Timestamps of each interaction
• Chat and message identifiers (anonymous UUIDs)

3.4 Chat content (standard mode)

When you use the service in standard mode, the content of your messages is transmitted to our AI provider (Venice.ai) so they can generate responses. Chat history is stored locally in your browser (via browser storage) by default, not on our servers. We do not train AI models on your content. We do not sell, rent, or share your content with advertisers or data brokers.

3.5 Chat content (Private Mode / E2EE)

When you enable Private Mode (available on Premium and Limitless tiers), message content is end-to-end encrypted between your browser and the AI model. We cannot read the prompt or the response. We retain only metadata (timestamps, token counts, model used) for billing and operational purposes.

3.6 Diagnostic data

We collect basic server logs (IP address, request path, status code, user agent, timestamp) for security, abuse prevention, and debugging. These logs are retained for up to 90 days.

3.7 Cookies and local storage

We use strictly necessary cookies set by Clerk (authentication session) and Stripe (payment session). We use browser local storage to store your chat history locally on your device. We do not use advertising cookies or cross-site tracking. We do not integrate Google Analytics, Meta Pixel, or similar trackers.

4. How we use your information

• Operate the service: Route your messages to AI providers, return responses, enforce plan limits.
• Billing: Process subscriptions, handle upgrades/downgrades, manage refunds when applicable.
• Security and abuse prevention: Detect and block fraudulent accounts, abusive patterns, or violations of our Acceptable Use Policy.
• Communication: Respond to support requests, send transactional emails (billing receipts, subscription changes, service announcements).
• Legal compliance: Respond to lawful requests from courts or regulators where required by law.

We do not use your content to train AI models. We do not sell your personal information. We do not share your content with advertisers.

5. Third-party processors

We rely on the following third parties to run Infinet. Each has their own privacy practices and certifications:

• Clerk — authentication and session management
• Stripe — payment processing, billing, subscription management
• Venice.ai — AI model inference (chat completions, voice, vision)
• Railway — application hosting and database
• Firecrawl — URL scraping (when you enable the web-scraping feature)

When you use features like web search or voice, content is transmitted to those services to be processed. We do not control their data practices beyond our contractual agreements with them.

6. Data retention

• Account data: Retained for as long as your account is active. Deleted within 30 days of account deletion request.
• Payment records: Retained as required by applicable tax and accounting law (typically 7 years).
• Usage logs: Retained for 90 days.
• Chat content (standard mode): Stored locally in your browser. You can clear it anytime via your browser's storage settings or by clicking "Clear all data" in the app.
• Chat content (Private Mode): Not retained server-side. Visible only to you in your browser.

7. Your rights

Depending on your jurisdiction, you may have the right to:

• Access — request a copy of the personal data we hold about you.
• Correct — ask us to fix inaccurate data.
• Delete — ask us to delete your personal data. We will do so subject to legal retention requirements (e.g. tax records).
• Object — object to our processing of your data.
• Portability — receive your data in a portable format.
• Withdraw consent — where we rely on consent, you can withdraw it anytime.

To exercise these rights, email [email protected]. We will respond within 30 days.

8. Children

Infinet is not intended for users under 18. We do not knowingly collect personal data from children. If you believe a child has created an account, please contact us and we will delete the account.

9. International data transfers

Our services are hosted in the United States. If you access Infinet from outside the US, your data will be transferred to and processed in the US and potentially in other jurisdictions where our service providers operate. By using the service, you consent to this transfer.

10. Security

We use industry-standard safeguards including HTTPS/TLS for all data in transit, encrypted storage at rest for databases, and access controls on internal systems. Private Mode adds end-to-end encryption where the model response is cryptographically sealed such that we cannot read it. However, no system is perfectly secure. If we become aware of a breach affecting your data, we will notify you within the time period required by applicable law.

11. California residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act including the right to know what personal information is collected, the right to delete personal information, the right to opt out of sale or sharing of personal information (we do not sell or share), and the right to non-discrimination for exercising these rights. To exercise any of these, contact us at the email above.

12. European residents (GDPR)

If you are in the European Economic Area, United Kingdom, or Switzerland, our legal bases for processing are: performance of contract (providing the service you signed up for), legitimate interests (security, abuse prevention), legal obligation (tax records), and consent (optional features). You have the right to lodge a complaint with your local data protection authority.

13. Changes to this policy

We may update this policy occasionally. Material changes will be announced on this page with an updated effective date, and for significant changes we will email registered users. Your continued use after a change constitutes acceptance.

14. Contact

Questions, requests, or concerns: [email protected]