Buzo
Get started
← Back to home
Legal

Privacy Policy

Last updated: April 26, 2026

This Privacy Policy explains how Buzo ("we", "us", or "our") handles personal information when you use our website, dashboard, and SDK. Buzo is operated from El Salvador and processes data on infrastructure hosted with AWS.

Buzo is a B2B service. Most of the data we process belongs to the organizations that connect their vector stores to Buzo. This policy covers both that organizational data and the limited personal data we handle about end users and account holders.

1. Information we collect

Account information

When you create an account or are invited to one, we collect your name, email address, hashed password (or identity-provider identifier), organization, role, and email verification status.

Vector store credentials

When you connect a vector database (Pinecone, ChromaDB, pgvector, Qdrant, etc.), we collect the connection details and credentials needed to read and — when you explicitly authorize a write — to modify that store. Credentials are encrypted at rest using AWS KMS and decrypted only at execution time. They are never logged.

Customer Data analyzed by Buzo

During analysis, Buzo reads vector embeddings, metadata, and the textual content stored alongside each embedding. We persist this data in our database in order to surface findings, build quality reports, and support remediation actions. We treat this as Customer Data: it belongs to you, and we process it solely to provide the service.

Retrieval and generation traces (SDK)

If you install buzo-sdk, the SDK fires retrieval and (if opted in) generation events to our ingest endpoints. These events include query text, retrieved vector identifiers and content, and — when outputCapture is enabled — the model's output. The SDK is fire-and-forget and does not sit on your request path.

If your queries or model outputs contain personal data about end users, that personal data flows through Buzo. You decide which capture mode to enable (off, redacted, or plaintext) for outputs.

Usage data and logs

We collect technical logs about how the service is used: IP addresses, user-agent strings, request paths, timestamps, error events, and audit trail entries (who confirmed which REMOVE / APPLY action and when).

Cookies and analytics

The dashboard uses strictly necessary cookies for authentication (httpOnly refresh tokens) and a small number of preference cookies (theme, sidebar state). The marketing site uses minimal first-party analytics to understand aggregated traffic. We do not use third-party advertising trackers.

2. How we use information

  • To provide, operate, secure and improve the service.
  • To run the analysis pipeline, AI inspectors, and retrieval observability features against the data you connect.
  • To send transactional emails (account verification, alerts you opted into, billing receipts).
  • To investigate and prevent abuse, fraud, and security incidents.
  • To comply with legal obligations.
  • To communicate with you about product updates and, if you opted in, marketing messages. You can unsubscribe at any time.

We do not sell personal data. We do not use your Customer Data to train third-party foundation models, and we do not share Customer Data with third parties for their own purposes.

3. AI sub-processors

Buzo uses third-party AI models to power its inspectors and autonomous agents:

  • Google Gemini — used by Buzo 1 (Quality Inspector) and Buzo 2 (Pattern Detective). Buzo sends excerpts of vector content and layer traces to evaluate quality and patterns. Google processes these prompts under its API terms and does not use them to train models.
  • Anthropic Claude — used by autonomous agents (Coordinator, Inspector, Detective). Anthropic processes prompts under its API terms and does not use them to train models.

4. Other sub-processors

We rely on a small number of trusted infrastructure providers:

  • AWS (compute, storage, KMS, audit log replication with S3 Object Lock).
  • Supabase / Postgres + Lantern (primary database).
  • Upstash Redis (queue and cache).
  • Stripe (subscription billing — we do not store payment card numbers ourselves).
  • Email delivery providers (transactional email).

A current list of sub-processors is available on request from support.buzo@gmail.com.

5. Data retention

  • Account and billing data — kept while your account is active and for the period required by tax and accounting law thereafter.
  • Customer Data (fragments, findings, snapshots) — kept while your account is active. Quarantine snapshots have a fixed 30-day rollback window, after which they are purged.
  • Retrieval and generation traces — retained on a rolling window aligned with your plan. Aggregated counts (24h / 7d read and citation windows) persist as long as the underlying vector exists.
  • Audit logs — retained for the duration of your subscription plus 12 months, replicated to S3 with Object Lock for tamper-evidence.
  • Backups — encrypted backups are kept for up to 35 days.

On termination, we delete or anonymize Customer Data within 30 days, except where retention is required by law or for legitimate business purposes (e.g. fraud prevention, accounting).

6. Security

We protect data with a defense-in-depth approach:

  • Vector store credentials encrypted at rest with AWS KMS.
  • TLS in transit for all client and inter-service traffic.
  • Strict tenant isolation — every database query is filtered by the authenticated organization via mandatory middleware.
  • JWT-based authentication with short-lived access tokens and rotated refresh tokens.
  • Tamper-evident audit logging using a SHA-256 hash chain, replicated to immutable S3 storage.
  • Human-gated writes — Buzo never modifies your vector store without an explicit, typed confirmation from a user in your organization.

No system is perfectly secure. If you discover a vulnerability, please report it responsibly to support.buzo@gmail.com.

7. International transfers

Buzo is operated from El Salvador and uses infrastructure in AWS regions. By using the service, you understand that data may be transferred to and processed in countries other than your own. Where required by law, we rely on appropriate safeguards such as Standard Contractual Clauses for international transfers.

8. Your rights

Depending on where you live, you may have rights to access, correct, delete, port, or restrict the processing of your personal data, and to object to certain processing. To exercise these rights with respect to personal data Buzo holds about you directly, email support.buzo@gmail.com.

Where Buzo processes Customer Data on behalf of an organization that is the data controller, we will refer your request to that organization and assist them in responding.

9. Children

Buzo is not directed to children under 16 and we do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will delete it.

10. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or through the dashboard before the changes take effect.

11. Contact

For privacy-related questions or to exercise your rights, contact support.buzo@gmail.com.

Need a signed Data Processing Addendum (DPA) or a list of current sub-processors with audit reports? Email support.buzo@gmail.com.