Last Updated: February 26, 2026
This Privacy Policy describes how Bayris, Inc. ("Bayris," "we," "us," or "our"), the owner and operator of the Bayes.ai web application located at www.bayes.ai (the "Site"), protects your privacy when you use the Site and any related services (collectively, the "Services").
PLEASE READ THIS PRIVACY POLICY CAREFULLY BEFORE USING THE SITE OR SUBMITTING ANY PERSONAL INFORMATION. BY ACCESSING OR USING THE SITE, YOU AGREE TO BE BOUND BY THE TERMS AND CONDITIONS DESCRIBED HEREIN AND ALL TERMS INCORPORATED BY REFERENCE. IF YOU DO NOT AGREE TO THE TERMS AND CONDITIONS SET FORTH IN THIS POLICY, YOU MAY NOT USE THE SITE.
Changes to this Privacy Policy may be made at any time. Notice of such changes will be posted on the Site by updating the "Last Updated" date above. You are encouraged to review this Privacy Policy whenever you visit the Site to understand how your information is collected, used, and protected.
Bayris is committed to protecting your privacy while you use its Services. You may review, modify, or delete your personal information at any time by contacting us as described in Section 12. Bayris does not send unsolicited commercial communications, maintain spam mailing lists, or support the activities of spammers.
For purposes of this Privacy Policy, "personal information" means information that identifies a user personally, either alone or in combination with other information available to Bayris. Personal information does not include information that is anonymous, aggregated, or no longer identifiable to a specific person. This Privacy Policy applies to all information collected through the Site and its terms are incorporated into the Bayris Terms of Service.
Bayris may collect information that you voluntarily provide when you use the Services. When you purchase a session or subscription, payment processing is handled by Stripe, Inc. Stripe collects your email address and payment information directly. Bayris receives your email address and a Stripe customer identifier but never receives, processes, or stores your full payment card number. Credit card information is never stored on Bayris servers; it is collected and retained solely by Stripe in accordance with Stripe's own privacy practices and PCI-DSS compliance obligations.
Paid users may use AI-powered chat and plan generation features. When these features are used, chat messages and any uploaded files are transmitted to Anthropic, PBC for processing through the Claude API. Anthropic does not retain user inputs or outputs from API calls for model training purposes. Uploaded files are discarded by Bayris immediately after processing and are not stored on Bayris servers.
Subscription users may optionally save project plan backups to cloud storage. These backups are stored in Cloudflare R2 object storage and are accessible only to the authenticated account holder.
Bayris may collect certain information automatically. It is standard practice for web browsers to send information to every website visited, and the Site is no exception. Such information may include your computer's Internet Protocol ("IP") address, access times, referring website addresses, browser type, and language. Bayris may also collect information about your operating system and general usage patterns.
The majority of your data when using the Bayes.ai application is stored locally in your web browser's localStorage. This includes your session authentication token (JWT), AI chat history, project plan autosave data, and your cookie consent preference. This data resides entirely on your device and is never transmitted to Bayris servers unless you explicitly initiate a cloud backup operation (available to subscription users only).
Bayris operates backend services on Cloudflare Workers. Session records, which are linked to your Stripe customer identifier, are stored in Cloudflare Workers KV. Pay-per-use session records expire after twenty-four (24) hours. Subscription session records expire after thirty-five (35) days. Aggregated usage metrics, such as solve counts and API call tallies, are retained for ninety (90) days for the purpose of monitoring service health and preventing abuse.
Bayris does not set first-party cookies through the Bayes.ai application. However, third-party services integrated with the Site may set cookies on your device as described below.
Stripe may set cookies during the payment checkout flow for the purpose of fraud prevention and session continuity. These cookies are governed by Stripe's privacy practices.
Most web browsers provide controls for managing or deleting cookies through the browser settings menu.
Bayris uses the information it collects: (i) to provide, operate, and maintain the Services; (ii) to authenticate paid sessions and manage subscription accounts; (iii) to process payments through Stripe; (iv) to deliver AI-generated project plans through the Anthropic API; (v) to monitor service health, detect abuse, and maintain security; and (vi) for other purposes reasonably related to Bayris's business and operations.
Information collected through the Site may be shared with companies and organizations that perform services on behalf of Bayris. For example, payment information is shared with Stripe for the sole purpose of processing transactions, and chat messages are transmitted to Anthropic for the sole purpose of generating AI responses. These third parties are not authorized to use your information for any purpose other than providing their specified services.
Personal information may also be disclosed when, in good faith, Bayris believes that disclosure is appropriate to: (i) comply with applicable law, a court order, or a subpoena; (ii) prevent or investigate a possible crime, such as fraud or identity theft; (iii) enforce the Terms of Service or other agreements governing use of the Site; (iv) protect the rights, property, or safety of Bayris, its users, or others; or (v) protect users' vital interests.
Personal information submitted to or collected through the Site is a Bayris asset and may become part of its normal business records. In the event that Bayris undergoes a change of control, including through a sale, merger, reorganization, dissolution, or liquidation, personal information and other data may be transferred to the acquiring entity. If such a transfer occurs, the acquiring entity's use of personal information will remain subject to the commitments made in this Privacy Policy.
Data stored in your browser's localStorage persists until you clear your browser data or manually remove it. Server-side session records are retained for twenty-four (24) hours for pay-per-use sessions and thirty-five (35) days for subscription sessions. Aggregated usage metrics are retained for ninety (90) days. Cloud backups created by subscription users are retained for the duration of the active subscription and for thirty (30) days following cancellation, after which they are permanently deleted. Payment and billing information retained by Stripe is governed by Stripe's data retention policies.
If you access the Site from a country other than the United States of America, the various communications and data transfers will necessarily cross international boundaries. Bayris's backend infrastructure operates on Cloudflare's global network, and data may be processed in the United States or other jurisdictions where Cloudflare maintains facilities. By visiting the Site and communicating electronically with Bayris, you consent to the processing and transfer of your data as described in this Privacy Policy. Where required by applicable law, Bayris relies on standard contractual clauses or other lawful transfer mechanisms to ensure adequate protection of personal data transferred across borders.
If you are located in the European Economic Area, the United Kingdom, or Switzerland, you have certain rights under the General Data Protection Regulation and related legislation. You have the right to access, rectify, and erase your personal data. You have the right to data portability, meaning you may request that your personal data be provided in a structured, commonly used, and machine-readable format. You have the right to object to or restrict the processing of your personal data. Where processing is based on consent, you have the right to withdraw that consent at any time. To exercise any of these rights, please contact Bayris at support@bayris.com. Bayris will respond to verified requests within the timeframes required by applicable law.
If you are a California resident, you have rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act. You have the right to know what personal information Bayris collects about you, the purposes for which it is used, and whether it is disclosed to third parties. You have the right to request deletion of your personal information. You have the right to opt out of the sale or sharing of personal information. Bayris does not sell personal information and does not share personal information for cross-context behavioral advertising. You have the right not to be discriminated against for exercising your privacy rights. To submit a request, please contact Bayris at support@bayris.com.
Bayris respects the privacy rights of all users. If you are located in a jurisdiction that provides additional data protection rights not specifically addressed above, please contact Bayris at support@bayris.com to discuss how those rights may be exercised.
Bayris takes reasonable security measures to protect personal information from loss, misuse, unauthorized access, disclosure, alteration, and destruction. All communications between your browser and the Site are encrypted using HTTPS. The Site is served through Cloudflare, which provides DDoS protection and edge security. Payment processing is handled by Stripe, which maintains PCI-DSS Level 1 compliance. Project plan data is primarily stored on-device in your browser, reducing the surface area for server-side data exposure. Please be aware that, despite these measures, no security system is impenetrable, and Bayris cannot guarantee the absolute security of your information.
THE SITE IS NOT INTENDED FOR USE BY CHILDREN. Bayris is committed to protecting the privacy of children and encourages parents and guardians to take an active role in their children's online activities. The Site is not intended for and may not be used by individuals under the age of thirteen (13). Bayris does not knowingly collect personal information from children under the age of thirteen. If Bayris becomes aware that it has inadvertently collected personal information from a child under thirteen, it will take prompt steps to delete such information.
Bayris may change this Privacy Policy from time to time. If changes are made, Bayris will update the "Last Updated" date at the top of this page. You are encouraged to review this Privacy Policy periodically. Your continued use of the Site following the posting of changes constitutes acceptance of those changes.
If you have any questions about this Privacy Policy or wish to exercise any of your privacy rights, please contact Bayris at support@bayris.com.