Kamui Privacy Policy

SIMD LLC (hereinafter 'the Company') establishes the following provisions regarding the handling of information about Users in connection with the PaaS 'Kamui' (hereinafter 'the Service').

---

1. Scope of Application

This Policy applies to information about Users that the Company handles in connection with the provision of the Service.

*Note: Information about users (end users) of applications provided by Users on the Service (e.g., personal information collected by User's applications) is, in principle, obtained and used by Users at their own responsibility, and Users shall provide appropriate privacy notices to end users.

---

2. Information We Collect

The Company collects the following information:

(1) Account Information

• Account identifiers obtained through GitHub OAuth (information necessary for user identification and login)

(2) Payment and Billing Information

• Information necessary for billing and invoicing (payment status, billing history, etc.)
• Payments are processed through Stripe. Card numbers and other payment information may be handled by Stripe and not retained by the Company.

(3) Log Information

The Company collects the following logs for Service operation:

• App logs (retention: 14 days or 1000 lines, whichever comes first)
• Deploy logs (retention: 14 days)

Additionally, the Company may collect logs related to access to the management console and APIs (IP addresses, user agents, request times, etc.) for stable operation and security of the Service.

(4) Inquiry Information

• Inquiry content, contact information, response history, etc.

---

3. Purpose of Use

The Company uses collected information for the following purposes:

1. Provision of the Service, identity verification, account management
2. Billing, payment processing, handling of unpaid fees
3. Operation, maintenance, incident response, security response, and fraud prevention of the Service
4. Support and inquiry response
5. Legal compliance, dispute resolution, protection of rights

---

4. Third-Party Disclosure and Outsourcing

1. The Company will not provide personal information to third parties without the individual's consent, except as required by law.
2. The Company may outsource payment processing (Stripe), infrastructure operation, monitoring, and other operations to third parties to the extent necessary for providing the Service. In such cases, the Company appropriately supervises such third parties.

---

5. Company Access to User Content

The Company does not routinely access User's applications or User Content in normal operations. However, the Company may access such content to the minimum extent necessary in the following cases:

• When necessary to respond to support requests from Users
• When required by law, such as responding to disclosure requests
• When necessary to address serious security issues

---

6. Retention Period and Deletion

1. The Company retains information about Users for the period necessary to achieve the purposes of use.
2. User Content after withdrawal will be deleted 1 month after withdrawal (except where necessary for legal compliance).
3. Log retention periods are as specified in '2.(3) Log Information.'

---

7. Data Storage Location

Data related to the Service is currently stored and processed in cloud regions within Japan. If this changes in the future, the Company will notify Users through appropriate means.

---

8. Cookies and Analytics

The Company may use analytics tools that utilize cookies and other identifiers for Service improvement purposes.

---

9. Security Measures

The Company implements reasonable organizational, technical, and physical security measures to prevent leakage, loss, or damage of handled information.

---

10. Requests for Disclosure

Users may request disclosure, correction, suspension of use, etc. of information about themselves held by the Company through the Company's designated methods. Please contact the inquiry desk for details on the procedure.

---

11. Changes to This Policy

The Company may change this Policy in response to legal, operational, or functional changes. The revised Policy will be announced through methods determined by the Company.

---

12. Contact Information

For inquiries regarding this Policy, please contact:
[email protected]