MonkeyMachine — PRIVACY POLICY

This Policy explains our processing of user data worldwide (RU‑specific rules are covered by the separate RU PD Policy).

Account (name, email), technical (IP, UA, device ids), logs/events, content (chats/files/media, metadata), billing metadata at payment providers, analytics/SDK (by consent). We do not serve under‑18.

Contract performance (core features, billing, support); legitimate interests (security, anti‑fraud, quality with minimization); consent (marketing/analytics/cookies/model training opt‑in); legal obligation (tax/accounting).

No training on customer content by default; only opt‑in. Minimization/masking before AI‑API calls; special categories prohibited. Human review at providers disabled where available. Retention: prompt/response content 7 days; metadata 30–90 days; no «strict‑mode» zero logging.

RU: primary localization in RU cluster; cross‑border transfers by consent/contract/law. EU/UK: processed in EU/UK; transfers under SCC/UK Addendum. Others: nearest viable region.

Banner with categories (Necessary/Analytics/Marketing). EU/UK: Analytics/Marketing off until consent; outside EU: Analytics may be on by default. We honor GPC/Do Not Track as opt‑out from non‑necessary.

Account/billing 5y post‑closure; ops logs 90d; audit trail 2y; chat history 12m; R2 files until deletion; backups: daily 30d, weekly 3m, monthly 12m; soft‑delete 30d → hard‑delete; traces removed from backups upon rotation.

TLS 1.3/HSTS, at‑rest encryption, field‑level pgcrypto, least privilege, RLS isolation, centralized logging, SAST/DAST, backups & DR (RPO ≤24h; RTO ≤8h), WAF/rate‑limit, staff MFA.

Cryptographic means: We use cryptographic means based on AES-256-GCM (encryption of cache data and database fields), bcrypt (password hashing), HMAC-SHA256 (signatures and verification). These means are not certified СКЗИ (Cryptographic Information Protection Tools) in accordance with the requirements of the FSB of Russia and do not belong to classes КС1-КС3, КВ, КА.

Access/copy, rectification, erasure, restriction, objection, portability, withdrawal of consent. Channels: account + privacy@monkeymachine.ru. SLA 30 days (+30 if complex). Verification: email/2FA; B2B via owner/admin. Export: JSON/CSV/ZIP within 7 days.

Public register at /legal/subprocessors; 30‑day notice of changes; right to object/disable where feasible.

Notify affected users ≤72h; channels: email + in‑app banner + status page; content: description, categories, scope, mitigation, recommendations, contacts security@/privacy@.

privacy@monkeymachine.ru; right to lodge a complaint with your supervisory authority (where applicable).