We collect information that you provide directly to us, including:
We use your data to:
When you sign in with Google OAuth, we receive your email address, name, and profile photo. This information is used solely for authentication and account management. We do not access your Google account data beyond what is necessary for authentication.
Payment information is processed securely through Stripe. We do not store your full credit card details. Stripe handles all payment processing in accordance with PCI DSS standards.
Files you upload to Xische OS are stored securely in Supabase Storage. Files are encrypted at rest and in transit. Each tenant's files are isolated and accessible only to authorized users within that tenant.
We use essential cookies for authentication and session management. These cookies are necessary for the Service to function properly. We do not use tracking cookies or third-party analytics cookies.
We retain your data for as long as your account is active or as needed to provide the Service. If you delete your account, we will retain your data for 90 days before permanent deletion, allowing for account recovery if needed.
You can request deletion of your account and all associated data at any time through your account settings. Upon deletion, your data will be permanently removed after the 90-day retention period, except where retention is required by law.
We use the following third-party services to operate the Service:
All third-party processors are contractually obligated to protect your data and use it only for the purposes we specify.
If you are located in the European Economic Area, you have the following rights:
To exercise these rights, please contact us using the information provided below.
We implement industry-standard security measures to protect your data, including:
If you have questions about this Privacy Policy or wish to exercise your rights, please contact us at:
Email: privacy@xischeos.com
Address: [Your Company Address]
Last updated: 1/20/2026