Privacy Policy

Last updated: February 20, 2026

1. Who we are

Contox is operated by Maxence Foulon, a micro-entrepreneur based in France (SIRET: 937 638 492 00010). You can contact us at contact@contox.dev.

2. What data we collect

•Account data: email, name (if you sign up)
•Memory data: the structured context you save via the IDE extension or MCP integration (ADRs, notes, etc.)
•Usage data: extension activity, API calls (anonymized analytics)
•Payment data: handled by Stripe; we do not store card details

3. How we use your data

•To provide the Contox service (store & retrieve memory)
•To process payments (via Stripe)
•To improve the product (anonymized analytics)

We never use your project memory to train external AI models.

4. Where we store your data & sub-processors

Your memory is stored in Appwrite databases (EU region by default). Backups are encrypted. We use the following third-party services to operate Contox. Each processes data only as necessary to provide their service:

Service	Purpose	Location
Appwrite	Database, authentication, file storage	EU (Frankfurt)
Stripe	Payment processing, subscriptions	US (PCI-DSS)
Brevo	Transactional & newsletter emails	EU (France)
OpenRouter	AI enrichment (memory extraction)	US
Google (Gemini)	AI-powered Q&A (Ask feature)	US
Vercel	Web application hosting	US (Edge: global)
Sentry	Error monitoring (no personal data)	US

5. Your rights (GDPR)

You have the right to:

•Access your data
•Export your data
•Delete your data
•Object to processing

6. Cookies

We use essential cookies for authentication and optional analytics cookies (with your consent).

7. Data retention

We keep your data as long as your account is active. You can delete your account at any time.

8. Changes to this policy

We'll notify you by email if we make significant changes.

Questions about privacy?

If you have any questions about how we handle your data, feel free to reach out.