Privacy Policy

Last updated: April 30, 2026

This Privacy Policy describes how Keenr, Inc. ("we", "us") collects, uses, and protects your information when you use the Keenr Services.

Information We Collect

We collect information you provide directly: email address (for account access and report delivery), device descriptions and intended use statements (for generating analyses), and payment information (processed securely by Stripe). We also collect usage data through Google Analytics (GA4) including pages visited, features used, and general geographic location.

How We Use Information

We use your information to: generate and deliver 510(k) predicate analyses, send report confirmations and service communications, improve our analysis quality and user experience, send marketing communications (you may unsubscribe at any time), and comply with legal obligations.

AI Processing & Data Flow

Device descriptions are processed by Anthropic (Claude) for analysis generation, OpenAI for embedding (vector representation), and Pinecone for vector similarity search. The data flow is as follows:

• Anthropic: device descriptions and intended use statements are sent to Anthropic's API for analysis. Anthropic's standard API tier does not train models on customer inputs by default; their handling is governed by Anthropic's Privacy Policy and Usage Policies.
• OpenAI: the same descriptive text is sent to OpenAI's embedding endpoint to produce a numerical vector representation. OpenAI's API tier does not retain inputs for training; the raw text is not retained by OpenAI after the embedding response is returned.
• Pinecone: the resulting vector (not the raw text) is stored in Pinecone for similarity search against our 510(k) corpus. Pinecone retains the vector and our metadata, not the original text of your description.

Your input text is also retained in our own systems (Netlify Blobs) so we can serve and re-render reports you've already generated. See "Data Retention" below.

PHI & Confidentiality

Keenr is not a HIPAA Business Associate, and the Services are not designed for processing Protected Health Information (PHI) or other patient-identifying data. Do not include PHI, patient identifiers, or any other confidential clinical data in device descriptions, intended use statements, or other free-text inputs. You are responsible for ensuring submitted content does not contain PHI or otherwise confidential information that you are not authorized to share.

Confidential pre-submission disclosures (e.g., trade secrets, unpublished device designs) submitted as device descriptions are stored within our infrastructure but are not protected by any formal NDA absent a separate written agreement. For institutional or design-partner engagements requiring confidentiality assurances, contact us at the email below to discuss a Mutual NDA.

Data Retention

Email addresses are retained for account and marketing purposes until you request deletion. Device descriptions and analysis results may be retained for up to 12 months for service improvement and to allow you to re-download or re-generate reports you have already paid for. Payment records are retained as required by applicable tax and financial regulations.

Third-Party Services

We use the following third-party processors: Stripe (payment processing — we do not store card information), Resend (transactional email delivery), Anthropic (Claude API — AI analysis), OpenAI (embedding API — vector representation only), Pinecone (vector similarity search), Google Analytics (anonymized usage analytics), and Netlify (hosting and serverless functions). Each service has its own privacy policy governing their handling of data.

Data Security

We implement reasonable security measures to protect your information. All data transmission is encrypted via HTTPS. However, no method of transmission over the Internet is 100% secure.

Your Rights

You may: request access to your personal data, request deletion of your personal data, unsubscribe from marketing communications at any time, request correction of inaccurate data. To exercise these rights, contact legal@keenr.ai.

Cookies

We use essential cookies for site functionality and analytics cookies (Google Analytics) to understand usage patterns. You can disable cookies in your browser settings.

Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page with an updated date.

Contact

For privacy-related questions, contact legal@keenr.ai.