Privacy Policy

Effective Date: June 18, 2026 | Last Updated: June 18, 2026

This Privacy Policy explains how DetectX, Inc. ("DetectX," "we," "us," or "our") collects, uses, and protects personal data in connection with the Service.

1. Information We Collect

a. Information You Provide

  • Name and email address
  • Account and contact information
  • Content submitted for analysis

b. Automatically Collected Information

  • IP address
  • Device, browser, and system metadata
  • Limited usage and security logs

2. How We Use Information

We use information to:

  • Operate and provide the Service
  • Maintain security and prevent abuse
  • Improve system stability and performance
  • Comply with legal and regulatory obligations

3. Content Processing and AI Analysis

  • Submitted content is processed solely to provide analysis results
  • DetectX does not use user content for advertising
  • Any model improvement usage (if applicable) is anonymized and governed by internal policy

4. Data Retention

  • Content may be deleted automatically after processing
  • Retention duration varies by Service tier and configuration
  • Users may request deletion where applicable

5. Data Sharing

DetectX does not sell personal data.

We may share information only:

  • With trusted service providers under confidentiality obligations
  • To comply with legal requirements
  • To protect the rights, safety, and integrity of DetectX and its users

6. International Data Transfers

DetectX operates globally. By using the Service, you consent to the processing of information in the United States and other jurisdictions where DetectX operates.

7. Security Measures

DetectX implements reasonable technical and organizational safeguards. However, no system can guarantee absolute security.

8. Email Communications and Marketing Consent

a. Transactional Emails

DetectX sends transactional emails when reasonably necessary to operate the Service. These include, without limitation:

  • Account and billing notifications
  • Responses to forensic dispute submissions you have filed
  • Security and account-integrity alerts
  • Service announcements that materially affect your usage

Transactional emails are necessary to provide the Service. You cannot opt out of transactional emails without closing your account.

b. Marketing Emails

DetectX may send product update announcements, feature release notices, and newsletters ("Marketing Emails"). DetectX will send Marketing Emails only to users who have explicitly opted in to marketing communications.

  • You can manage your marketing consent at any time at /account/marketing-preferences.
  • Every Marketing Email contains an unsubscribe link that is processed within 24 hours of receipt.
  • A single click on the unsubscribe link is sufficient to withdraw consent; no account login is required.

c. Legal Bases (GDPR Articles 6 and 7)

  • Marketing Emails are sent on the basis of your consent under Article 6(1)(a) of the General Data Protection Regulation; explicit opt-in is required and may be withdrawn at any time.
  • Transactional emails are sent on the basis of performance of a contract under Article 6(1)(b) and the legitimate interests of DetectX in operating the Service under Article 6(1)(f).

d. Email Retention

  • Email sending logs (recipient address, subject line, send timestamp, and delivery status) are retained for twelve (12) months for deliverability monitoring and compliance audits.
  • Email message content is not retained beyond thirty (30) days after send, unless the message is tied to an open dispute case, in which case it is retained for the duration of that case.

e. Third-Party Email Processor

DetectX uses Resend, Inc. ("Resend") as its email service provider. Resend processes recipient email addresses and message content for the sole purpose of message delivery on behalf of DetectX.

  • Resend privacy policy: https://resend.com/legal/privacy-policy
  • Resend is hosted in the United States. Personal data of recipients located in the EU or EEA is transferred under appropriate safeguards, including Standard Contractual Clauses (SCCs) approved by the European Commission.

f. Right to Withdraw and Right to Erasure

  • You may withdraw marketing consent at any time and without providing any reason.
  • You may request deletion of your email log records by contacting [email protected].
  • Withdrawal of marketing consent does not affect your continued receipt of transactional emails necessary for the Service.

g. Canada — Anti-Spam Legislation (CASL)

  • DetectX complies with Canada's Anti-Spam Legislation.
  • Express consent is required before DetectX sends any commercial electronic message to a recipient located in Canada.
  • Unsubscribe requests from Canadian recipients are honored within ten (10) business days of receipt; in practice most requests are processed instantly.

h. Contact for Email-Related Questions

  • Privacy questions: [email protected]
  • Data Subject Requests (GDPR / CCPA): [email protected] with the subject line "DSR Request"
  • Postal address: DetectX, Inc., c/o Legalinc Corporate Services Inc., 131 Continental Dr, Suite 305, Newark, DE 19713, USA

9. Your Rights

Depending on your jurisdiction, you may have rights to:

  • Access your personal data
  • Request correction or deletion
  • Object to or restrict certain processing

Requests may be submitted to [email protected].

10. Children's Privacy

The Service is not intended for children under the age of 13. DetectX does not knowingly collect personal data from children.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the Service.

12. Credit Transaction Records

  • DetectX maintains records of credit grants, consumption, top-up purchases, and cycle resets associated with your account. These records are retained for audit, billing dispute resolution, fraud detection, tax reporting, and regulatory compliance purposes.
  • Credit transaction history is retained on an ongoing basis for as long as the account is active.
  • If your account is closed or you submit a verified deletion request, credit transaction records are anonymized so that the records can no longer be linked to you as an identifiable individual, while preserving the aggregate financial and operational data required for audit and compliance.
  • Pricing-page changes, plan changes, and refund events are recorded against your account in line with the same retention principles.

13. Stem Evidence Files

  • Stem Evidence outputs (separated vocal, drums, bass, and other audio stems delivered in MP3 and WAV formats) are stored on DetectX servers for seven (7) days from the time of generation and are then automatically and permanently deleted.
  • During the seven-day retention window, Stem Evidence files are accessible only to the authenticated user account that generated them and to authorized DetectX personnel for incident response or compliance purposes.
  • The source audio file used to generate Stem Evidence is handled in accordance with Section 4 (Data Retention) and is not retained beyond the limits described there.

14. Professional Forensic Inquiries

  • Information submitted through Professional Forensic Report inquiry forms or related correspondence (including names, organizational affiliations, contact details, case descriptions, and any reference materials voluntarily submitted) is processed for the purposes of evaluating the inquiry, preparing a written quote, and, where applicable, performing the resulting engagement.
  • Inquiry records are retained for one (1) year after the inquiry is closed (whether the engagement was executed, declined, or withdrawn). After one year, inquiry records are anonymized and retained only in aggregate form for service-improvement purposes.
  • If a written engagement is executed, the engagement agreement governs the retention, confidentiality, and disposal of materials produced during the engagement.
  • Sensitive case materials voluntarily submitted with an inquiry are not used for model training or for any purpose outside of the inquiry evaluation and any resulting engagement.

15. Payment Information

  • DetectX uses Stripe, Inc. ("Stripe") as its payment processor. Stripe is responsible for collecting and processing payment-card data in accordance with the Payment Card Industry Data Security Standard (PCI DSS).
  • DetectX does not collect or store full payment-card numbers, expiration dates, or card verification values. These data elements are entered directly into Stripe-hosted form fields and are transmitted to Stripe without passing through DetectX systems.
  • DetectX stores the Stripe Customer ID, Stripe Subscription ID, payment status, billing currency, the last four digits and card brand returned by Stripe for display purposes, and the billing address required for invoicing and tax compliance. This information is retained for the duration of the account and for an additional period required by applicable accounting, tax, and anti-fraud regulations.
  • Stripe privacy policy: https://stripe.com/privacy. Stripe is hosted in the United States and transfers personal data of recipients located in the EU or EEA under Standard Contractual Clauses approved by the European Commission.

16. Contact Information

DetectX, Inc.
c/o Legalinc Corporate Services Inc.
131 Continental Dr, Suite 305
Newark, DE 19713, USA
Email: [email protected]

We use essential cookies for authentication and security, and — only with your consent — analytics and advertising cookies to improve DetectX. See our Privacy Policy.