Privacy Policy

Last updated: January 2026

Overview

F3L1X Technology ("F3L1X", "we", "us", "our") operates as a Dashboard as a Service (DaaS) platform providing sovereign AI infrastructure. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.

Core Principle: We believe in data sovereignty. Your data belongs to you. We are data stewards, not data owners.

Information We Collect

Account Information

  • Email address (required for account creation)
  • Name (optional)
  • Organization name (optional)
  • Payment information (processed by Stripe - we don't store card details)

Usage Data

  • Service usage analytics (features used, session duration)
  • Error logs and diagnostic information
  • Device and browser information

BYOK Model - What We Don't Collect

F3L1X operates on a "Bring Your Own Keys" (BYOK) model. This means:

  • We do NOT store your AI API keys - They remain on your local machine
  • We do NOT process your AI conversations - These go directly to your chosen AI provider
  • We do NOT access your generated code - Your outputs stay on your infrastructure

How We Use Your Information

  • Service Delivery: To provide and maintain your DaaS subscription
  • Account Management: To manage your account and subscription status
  • Communication: To send service updates, security alerts, and support responses
  • Improvement: To analyze usage patterns and improve our platform (anonymized)
  • Legal Compliance: To comply with applicable laws and regulations

Information Sharing

We share your information only with:

Service Providers

  • Stripe - Payment processing (US)
  • Supabase - Authentication services (US)
  • Railway - Hosting infrastructure (US)
  • Resend - Email notifications (US)

We never sell your personal information.

We may disclose information if required by law, court order, or government request.

Your Data Ownership Rights

Under the F3L1X Sovereign Software License:

  • You own all outputs - Code generated through our platform belongs to you
  • You own your configurations - Your realm setups, workflows, and customizations are yours
  • Portability guaranteed - You can export all your data at any time
  • No lock-in - Cancel and take everything with you

Australian Privacy Principles (APPs)

We comply with the Australian Privacy Act 1988 and the 13 Australian Privacy Principles:

  • APP 1: Open and transparent management of personal information
  • APP 6: Use or disclosure only for stated purposes
  • APP 8: Cross-border disclosure with appropriate protections
  • APP 11: Security of personal information
  • APP 12-13: Access to and correction of personal information

GDPR Rights (EU Users)

If you are in the European Economic Area, you have additional rights:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Portability: Receive your data in a portable format
  • Right to Object: Object to processing based on legitimate interests

Data Retention

  • Active accounts: Data retained while subscription is active
  • After cancellation: Account data deleted within 30 days
  • Backups: Purged from backups within 90 days
  • Legal requirements: Some data may be retained longer if required by law

You can request immediate deletion at any time by contacting us.

Data Security

We implement industry-standard security measures:

  • Encryption in transit (TLS 1.3) and at rest
  • Secure authentication via Supabase
  • Regular security audits and updates
  • Access controls and audit logging
  • Incident response procedures

Data Breach Notification

In the event of a data breach affecting your personal information:

  • We will notify affected users within 72 hours (GDPR requirement)
  • We will notify the OAIC as required under Australian law
  • We will provide details of the breach and remediation steps

Cookies and Tracking

We use essential cookies for:

  • Authentication and session management
  • Security (CSRF protection)
  • User preferences

We do not use third-party advertising or tracking cookies.

Children's Privacy

F3L1X is not intended for users under 18 years of age. We do not knowingly collect personal information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new policy on this page
  • Sending an email notification to registered users
  • Updating the "Last updated" date

Contact Us

For privacy-related inquiries or to exercise your rights:

Privacy Officer: Felix Parker

Email: hello@f3l1x.tech

Location: Melbourne, Australia

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

Terms of Service Contact Us