Privacy Policy

Last Updated: April 25, 2026

This Privacy Policy explains how Knight AI+AV LLC, a California limited liability company ("Knight AI+AV", "we", "us"), collects, uses, and protects personal information across the websites, applications, and AI products we operate — including knightaiav.com, KnightChat (chat.knightaiav.com), and NavOrb (navorb.ai) — collectively, the "Services".

For all properties, the data controller is Knight AI+AV LLC, 2108 N St, San Francisco, CA 94103, USA. Privacy enquiries: Build@knightaiav.com.

1. What We Collect

1.1 knightaiav.com (visitors)

First-party, cookie-less analytics (Vercel Web Analytics + Speed Insights): aggregate page views, referrer, anonymised device class, performance telemetry. No cross-site tracking.
Auth cookies are set only on chat.knightaiav.com, not the marketing site.
If you submit the contact form, we collect what you type: name, email, optional company, "what do you need" multi-select, and project description.

1.2 NavOrb (registered users)

Account. Email address, OAuth identity (e.g., Google), display name.
AI content. Prompts you write, generated "souls" (personality documents), chat history, custom skills and memories you create.
Voice. When you use voice mode, microphone audio streams directly from your browser to Deepgram for speech-to-text. Audio does not pass through Knight AI+AV servers and is not stored on our side. Transcripts are consumed in-memory by the chat and are not persisted.
Usage and device. IP address, user-agent, device class, basic request metadata. Recorded by our hosting layer (Vercel) for ~30 days for security and debugging.
Payment. If you subscribe, your name, billing address, and email pass through Stripe. We never see your card number or CVV — Stripe Checkout handles all card collection on Stripe's hosted page. On our side we store only your Stripe customer identifier and subscription state.
BYOB API key. If you enable Bring-Your-Own-Backend, the OpenRouter API key you provide is stored encrypted at the application layer in our database. We use it only to route your inference requests; we do not log its plaintext value.
Uploaded media. If you upload images or files into chats, we store them in Supabase Storage. Files in this bucket are accessible by anyone who knows the file's URL. Treat anything you upload as semi-public; do not upload sensitive personal, medical, or proprietary material.
Audit log. Per-user record of significant actions (e.g., subscription changes) for security and dispute resolution.

2. How We Use It

Provide, operate, and maintain the Services (contractual basis).
Process payments and manage subscriptions (contractual basis, via Stripe).
Investigate and prevent fraud, abuse, and unauthorised access (legitimate interest).
Communicate with you about your account and material policy changes (legitimate interest).
Improve product reliability and performance via aggregate analytics (legitimate interest).
Comply with legal obligations (e.g., tax records, legal-hold orders).

We do not use your AI content (prompts, souls, chats) to train any foundation model.

3. Legal Basis for Processing (GDPR / UK GDPR)

Contract. The bulk of processing is necessary to provide a service you signed up for.
Consent. For optional features such as voice mode (microphone access) and BYOB key storage. You can withdraw consent at any time by disabling the feature or deleting the key.
Legitimate interest. Security, fraud prevention, error logging, and aggregate analytics — all narrowly scoped and balanced against your privacy.
Legal obligation. Tax-record retention and lawful demands.

4. Subprocessors

We engage the following third-party processors to operate the Services. Each receives only the data necessary for the function listed and is bound by a data processing agreement that includes Standard Contractual Clauses for international transfers.

Supabase — authentication, Postgres database, file storage. Receives: account data, AI content, payment metadata (Stripe IDs only, no card numbers), uploaded media.
Vercel — web hosting, serverless functions, edge logging. Receives: request metadata (IP, user-agent, path), aggregate analytics on knightaiav.com. Retains request logs ~30 days.
Stripe — payment processing. Receives: name, email, billing address, payment method. Card collection happens on Stripe's hosted Checkout page; card numbers and CVV never reach us.
OpenRouter — LLM proxy. Receives: prompts and conversation context for inference. We do not send any per-user identifier; OpenRouter sees only Knight AI+AV's account-level traffic.
Underlying LLM providers (via OpenRouter) — Anthropic, OpenAI, Google (Gemini), Moonshot (Kimi), MiniMax, Meta (Llama), DeepSeek, xAI. Receive: the prompt for the request that's routed to them. All are used on API tiers under which prompts are not used to train models, except Moonshot's policy is still being verified at the time of writing.
Deepgram — speech-to-text. Receives: streamed microphone audio when you use voice mode. We do not retain audio or transcripts; Deepgram's own retention applies under their published policy.
Inworld AI — text-to-speech (default voices). Receives: the text NavOrb is speaking and a voice profile selector.
Fish Audio — text-to-speech for cloned voices. Receives: the text being spoken and the voice clone reference you've selected.
Upstash — rate limiting. Receives: a counter keyed by your account UUID. No prompt or PII payloads.
Cloudflare (cdnjs) — public CDN, used to serve a JavaScript animation library on knightaiav.com. Receives: your IP and user-agent at script load.
FormSubmit — email relay for the knightaiav.com contact form. Receives: whatever you type in that form. Forwards to Build@knightaiav.com.

5. AI-Specific Disclosures

NavOrb is an AI product. When you send a prompt or have a conversation, that content is sent to one of the LLM providers above for the duration of the request. Please note:

Do not paste secrets, credentials, API keys, or sensitive personal, medical, financial, or legal information into AI prompts. Even on no-training tiers, content is processed through systems we do not control.
AI output may be inaccurate, incomplete, or offensive. Do not rely on it for medical, legal, financial, or safety-critical decisions.
Standard tier: prompts are routed via Knight AI+AV's own OpenRouter account.
BYOB tier: prompts are routed via the OpenRouter account whose API key you supplied. We act as a transparent proxy and do not retain prompt content beyond the duration of the request, except in error logs (truncated, see §10).

6. International Transfers

Knight AI+AV is established in the United States. Most of our subprocessors are also US-based. If you are accessing the Services from outside the US, your personal information will be transferred to and processed in the United States. International transfers are governed by the Standard Contractual Clauses incorporated into each subprocessor's Data Processing Agreement.

7. Retention

Account, AI content, custom configs, uploaded media: until you request deletion, then within 30 days of a verified request.
Backups: rolled out within 90 days of live deletion.
Voice audio and transcripts: not retained on our side. Deepgram's own retention period applies to audio passing through their service.
Payment records: retained 7 years to comply with US tax and accounting law.
Server / edge request logs: ~30 days (Vercel platform default).
Auth audit: per Supabase's platform default for the Auth log.

8. Your Rights

You have the right to:

Access the personal information we hold about you.
Rectify inaccurate information.
Delete your account and associated data (see Data Deletion).
Port a copy of your data in machine-readable form.
Object to processing based on legitimate interest.
Withdraw consent for any consent-based processing.
Lodge a complaint with your local supervisory authority (e.g., your country's data protection regulator).

To exercise any of these rights, email Build@knightaiav.com from your account address. We may ask you to verify your identity. We respond within 30 days.

9. Children

The Services are not directed to anyone under 13, or under 16 if you are in the European Economic Area or the United Kingdom. We do not knowingly collect personal information from children below these ages. If you believe we have, contact Build@knightaiav.com and we will delete the account.

10. Security and Logging

All data is encrypted in transit using TLS. Database content and storage objects are encrypted at rest by Supabase. BYOB API keys are additionally encrypted at the application layer. We do not sell your personal information to third-party data brokers. We do not engage in cross-site behavioural advertising.

Server-side error logs may, in rare cases, include short fragments of the prompt or content that produced the error. These logs are retained ~30 days by Vercel and are not used for any purpose other than fixing bugs.

11. California Residents (CCPA / CPRA)

If you are a California resident, you have additional rights:

Categories of personal information collected. Identifiers (email, name, IP), commercial information (subscription state), internet activity (request logs), audio (voice mode, in transit only), inferences from your AI content, and payment information (held by Stripe).
Sale or sharing of personal information. Knight AI+AV does not sell your personal information for monetary or other valuable consideration, and does not share it for cross-context behavioural advertising.
Do Not Sell or Share. Even though we do not sell or share, you may submit a confirming request to Build@knightaiav.com.
Right to know, delete, correct, and limit use. Same email; we verify your identity by replying to your account address.
Authorised agent. If you authorise an agent to act on your behalf, send us a signed authorisation along with your request.
Non-discrimination. We will not deny services, charge you a different price, or provide a different level of service for exercising any CCPA right.

12. Cookies and Similar Technologies

On knightaiav.com we set no third-party advertising or analytics cookies. We use first-party Vercel Web Analytics and Speed Insights, which operate without cookies. The contact form posts to FormSubmit on submission.

On chat.knightaiav.com we set authentication and session cookies issued by Supabase Auth. Without these cookies, sign-in cannot work.

On navorb.ai we set authentication and session cookies, plus first-party preference cookies for chat and voice settings.

13. App Store and Play Store Disclosures

For NavOrb on the Apple App Store and Google Play:

We do not sell personal data to third-party data brokers.
We do not track you across third-party apps and websites for targeted advertising.
All data is encrypted in transit and at rest.
You can delete your account from inside the NavOrb app at Settings → Delete Account, or via the web at /data-deletion.

14. Changes

We may update this Privacy Policy to reflect changes in our practices, processors, or legal requirements. Material changes will be highlighted at the top of this page and, if you have an account, communicated by email at least 14 days before they take effect.

15. Contact

Questions, requests, or complaints: Build@knightaiav.com.

Knight AI+AV LLC
2108 N St
San Francisco, CA 94103, USA