Your Data. Your Library. Your Control.

Documents are stored on Cloudflare R2, a globally distributed object storage service. Cloudflare R2 stores data in secure, geographically distributed data centers.

All documents are encrypted at rest using AES-256 encryption and encrypted in transit using TLS 1.3. No unencrypted data is ever stored or transmitted.

Document embeddings (the AI vector representations used for search) are stored in Convex's managed database infrastructure, also encrypted at rest.

Only you, unless you explicitly share. Documents uploaded to your personal library are private by default and accessible only to your account.

If you share a collection, access is explicit and revocable. You can remove access at any time. Shared access does not give recipients access to your other collections.

Tatsulok staff do not access user documents for any reason except investigating explicit abuse reports or with your explicit written consent for support purposes.

Your documents are never used to train AI models.

Tatsulok uses AI models via API — from OpenRouter and direct providers (Anthropic, Google, OpenAI). API usage is explicitly excluded from training data by these providers' enterprise API terms. Queries sent via API are processed but not stored for training.

We do not fine-tune or train any models on user data. We do not sell, license, or share user data with any third party for training purposes.

When you delete a document, it is removed from:

• Cloudflare R2 storage (the original file)
• The search index (all text chunks)
• The vector database (all embeddings)

Deletion is permanent and irreversible. There are no hidden backups of user documents.

If you delete your account, all documents, collections, and associated data are deleted within 30 days. You can request immediate deletion by contacting support.