Privacy Policy

Last updated: April 10, 2026

Arcane Intelligent Systems ("we," "us," or "our") operates software products and services available through our website and related applications. This Privacy Policy explains how we collect, use, and protect information when you use our services.

Information We May Collect

Depending on how you interact with our services, we may collect the following types of information:

• Account and contact information — such as your name, email address, or other details you provide when creating an account or contacting us.
• Payment-related information — payment transactions are processed by third-party payment providers. We may receive limited transaction details (such as confirmation of payment or subscription status) but generally do not store full payment card details directly.
• Webpage content — when you ask Tracy a question, a screenshot of the visible area you are hovering over, along with limited page text (such as the page title and a portion of the page content), is sent to an AI provider to generate a response. This only occurs after you have granted microphone permission in your browser and actively asked a question. This data is transmitted in real time and is not stored by us after the response is delivered.
• Voice queries — your spoken questions are processed after you grant microphone permission in your browser. These queries are sent to an AI provider to generate responses and are not stored by us after the response is delivered.
• Usage data — information about how you use our services, including features accessed and actions taken within our products.
• Device and technical information — such as browser type, operating system, device identifiers, and IP address, collected automatically when you use our services.
• Support communications — messages, emails, and other communications you send to us for support or feedback purposes.

How We Use Your Information

We use the information we collect to:

• Provide, operate, and improve our services
• Process transactions and manage your account
• Respond to support requests and communicate with you
• Maintain the security of our services and prevent abuse
• Comply with legal obligations where applicable

Payment Processing

We use third-party payment processors to handle payment transactions. These providers have their own privacy policies governing how they handle your payment information. We do not necessarily store your full payment card details on our own systems.

Cookies and Analytics

Our services may use cookies or similar technologies to maintain session information, remember preferences, and understand how our services are used. We aim to keep the use of tracking technologies minimal and relevant to service functionality. You can manage cookie preferences through your browser settings.

Tracy does not include third-party tracking pixels, advertising scripts, or cross-site identifiers. Our servers maintain operational logs (such as error rates, response latency, and anonymized usage counts) to ensure service reliability. These logs do not contain the content of your queries or webpage data.

Pages under /tracy on this website fire anonymous funnel beacons so we can understand how visitors discover and purchase Tracy. Each browser is assigned a random session identifier stored locally for thirty days; we record the page you visited, the referring site, any campaign parameters in the URL (such as utm_source), and a two-letter country code derived from your IP address. We never store the IP itself, do not fingerprint your device, and do not share this data with third parties. The session identifier resets when you clear your browser’s site data.

Anonymized Usage Data

We may collect anonymized, aggregated usage data (such as query patterns, feature usage, and interaction metrics) to improve our services and develop new features. This data is stripped of personally identifiable information and cannot be used to identify individual users. You may opt out of anonymized data collection through the extension settings if this option is available.

Data Retention

We retain your information for as long as reasonably necessary to provide our services, fulfill the purposes described in this policy, and comply with legal requirements. When information is no longer needed, we take reasonable steps to delete or de-identify it.

Webpage content and queries processed by Tracy are not stored after a response has been delivered. Within 90 days of account closure, your email address is permanently deleted and your account is de-identified. Operational metadata (such as response status, latency, and token counts) associated with your account is retained in de-identified form for service improvement and capacity planning, and can no longer be linked to you.

Security

We take reasonable measures to protect your information from unauthorized access, loss, or misuse. However, no method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security.

Third-Party Services and AI Providers

Tracy uses third-party AI providers to process your queries and generate responses. Depending on your plan, your webpage content and queries may be sent to one or more of the following providers:

• OpenAI (privacy policy)
• Anthropic (privacy policy)
• Google (privacy policy)

Tracy Pro subscribers: Your queries and webpage content are routed through our servers before being forwarded to an AI provider. We do not log or store the content of your queries or the webpage data beyond what is needed to deliver the response.

Our servers record operational metadata for each request — such as response status codes, response latency, and token usage counts — to detect outages, compute costs, and maintain service quality. This data is associated with your account for quota enforcement, billing, and support purposes. These logs do not contain your query text, webpage content, or conversation history.

We may use third-party messaging services (such as Telegram) for internal operational alerts when service errors are detected. These alerts contain only aggregate or anonymized technical data, not user content.

Bring Your Own Key (BYOK) users: Your queries and webpage content are sent directly from your browser to the AI provider you have configured. Your API key is stored locally on your device and is never transmitted to our servers.

Payments are processed by Paddle (privacy policy), which acts as our merchant of record. Paddle handles all billing, invoicing, and tax compliance. We receive subscription status and transaction confirmations but do not have access to your full payment details.

Our services may also integrate with or link to other third-party services. These third parties have their own privacy practices, and we are not responsible for their policies.

Your Rights

Depending on your location and applicable law, you may have certain rights regarding your personal information. These may include the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Object to or restrict certain processing of your data
• Request a portable copy of your data

To exercise any of these rights, please contact us at support@arcsys.one. We will respond to your request within 30 days.

Children's Privacy

Our services are not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected information from a child under 13, we will take steps to delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. If we make significant changes, we will indicate the updated date at the top of this page. Your continued use of our services after any changes indicates your acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at support@arcsys.one.