Privacy Policy

Effective date: April 12, 2026

Operator: Vamitra (banyan.vamitra.com)

1. What We Collect

We do not collect analytics, tracking cookies, or third-party advertising data.

2. Social Login

If you sign in with Google or Apple, we receive your email address and name from the provider. We do not access your contacts, files, or other account data. We do not store your social login tokens.

3. How We Use Your Data

• Private content: Used only to provide the service to you and users you explicitly share with. Not shared, sold, or used for training.
• Public content: Displayed to all users. Licensed under CC BY 4.0. May be used to improve the service, including training AI models.
• Activity logs: Used for collaboration provenance (who did what, when). Scoped to your own activity by default.

4. Data Sharing

We do not sell your data. We share data only:

• With AWS as our infrastructure provider (under their data processing terms)
• With other Banyan users when you make content public or share a private trunk
• If required by law

5. Data Retention

Your data is retained as long as your account exists. Deleted content is removed from active storage. Activity log entries referencing deleted content may persist for audit purposes.

6. Your Rights

• Access: You can export your data via the MCP tools (banyan_harvest)
• Delete: You can delete any content you created (banyan_delete)
• Account deletion: Email banyan-support@vamitra.com

7. Security

All data is encrypted in transit (TLS) and at rest (AWS encryption). Authentication via AWS Cognito with strong password policy or social login (Google, Apple). API access via API keys or OAuth 2.1 JWT tokens.

8. Changes

We may update this policy. Material changes will be communicated via the service.

Questions? Contact banyan-support@vamitra.com