kbrain

Privacy Policy — KBrain

Last updated: 22 May 2026

1. Who we are

KBrain ("we", "us") operates kbrain.io, a marketplace where experts publish knowledge bases ("brains") that AI agents and applications access via API and MCP. Contact: via our contact form at https://www.kbrain.io/contact.

2. Data we collect

  • Account: your name and email address.
  • Authentication: one-time login codes (sent to your email; not stored long-term).
  • Content you provide: knowledge base content, uploaded files (e.g. PDF, DOCX), and any files you choose to sync from Google Drive.
  • Access credentials: API keys and OAuth tokens we issue or you authorize.
  • Usage: subscriptions, queries to brains, and basic analytics (pages visited, device/browser).

3. How we use it

To provide and operate the service, authenticate you, deliver brain content to authorized agents/apps, process subscriptions, secure the platform, and improve the product.

4. Third-party processors

We share data only as needed with: Vercel (hosting & analytics), Turso (database), MotherDuck (analytics database for curated brains), Google (Gmail SMTP for login emails; Google Drive API for files you sync), and Google Tag Manager (analytics). Each processes data on our behalf under their terms.

5. AI assistant access

When you publish a brain or authorize a connector (e.g. via ChatGPT or Claude), the content of that brain is made available to the AI assistant and its users you authorize. You control what you publish.

6. Retention

We keep account and content data while your account is active. You can close your account from your profile page; this disables access by making your brains private, cancelling related subscriptions, and deactivating active access keys. We may retain limited records needed for security, fraud prevention, legal compliance, and audit purposes. You can also request deletion via https://www.kbrain.io/contact; we process verified requests within 30 days except where law requires retention.

7. Your rights

Access, correction, deletion, and export of your data. EU/UK users have rights under GDPR; contact us to exercise them.

8. Security

Data is encrypted in transit. API keys and tokens are access-controlled. Report concerns via https://www.kbrain.io/contact.

9. Changes

We'll update this page and the "last updated" date for material changes.