Signoti

Privacy Policy

Last updated: April 28, 2026

1. Controller

Signoti is operated by Yahya El Bahhaoui, based in Pamplona, Navarra, Spain. Contact: contacto@signoti.com.

Because the operator is established in Spain, this policy is written with the EU General Data Protection Regulation (GDPR) and Spanish data protection law in mind, while also explaining the service clearly for users in the United States.

2. Data we process

Account data: email address, name, profile image, authentication identifiers, and account security events processed through Clerk.

Payment data: subscription and billing information processed by Stripe. Signoti does not store full card numbers.

Document data: PDFs, extracted text, metadata, selected jurisdiction, selected state when applicable, and AI-generated analysis results.

Usage data: technical logs and privacy-friendly analytics used to operate, secure, and improve the service.

3. AI processing

Documents are sent to AI infrastructure only to generate the requested analysis. We do not sell your documents or use them for advertising.

AI providers may process submitted content under their business API terms and technical retention policies. Signoti uses these providers to deliver the service, detect abuse, and maintain reliability.

4. Legal bases and retention

For EU users, the main legal bases are performance of contract, legitimate interest in securing and improving the service, and legal obligation for billing records.

Account data is retained while the account remains active. Analyses remain available until you delete them or delete your account. Billing records may be retained for legally required periods.

5. International transfers

Some providers, including Clerk, Stripe, hosting, analytics, and AI infrastructure, may process data outside the European Economic Area, including in the United States.

Where required, transfers rely on appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms.

6. Your rights

Depending on your location, you may have rights to access, correct, delete, restrict, object to processing, or export your personal data.

You can request assistance at contacto@signoti.com. EU users may also contact the Spanish Data Protection Agency (AEPD).

7. Security

We use HTTPS, access controls, managed authentication, encrypted infrastructure, and operational safeguards. No online service can guarantee absolute security.

Privacy Policy | Signoti