We collect the minimum needed to deliver your llms.txt, monitoring subscriptions, and consulting—and we protect it. This policy explains what we collect, why, how we use it, and your rights.
Who We Are
Controller: Wakai Corporation provides a service called helloMachine (“helloMachine”, “we”). Contact info is in Contact.
What We Collect
- Order & contact data: email, website URL(s) you submit, billing via Stripe (we don’t see full card numbers), and communications with us.
- Content you provide: brand materials or documents shared for consulting or a sales‑optimized LLM.txt.
- Generated files: draft/final
llms.txt(and, if applicable,llms-full.txt) we host and deliver to you. - Technical data: server logs (IP, user‑agent, timestamps, request metadata) for security and abuse prevention.
- Local storage on your device: we store preferences and convenience values (e.g.,
hm:theme,hm:theme-custom,hm:url,hm:email) in your browser. These don’t leave your device unless you submit a form.
Why We Use Your Data (Legal Bases)
- Provide and improve Services (contract performance).
- Process payments, prevent fraud, ensure security (legitimate interests / legal obligation).
- Service emails (delivery links, receipts, incident notices) (contract/legitimate interests).
- Optional updates or marketing only with your consent (you can opt out anytime).
Vendors & AI Processing
We use trusted processors (e.g., Stripe, hosting, email) under contract. For text transformation, we may use third‑party model APIs under your instructions. We do not sell personal information.
Sharing
- Processors: vendors acting on our instructions under security requirements.
- Legal & safety: where required by law or to protect rights and security.
- Business transfers: in a merger/acquisition, with appropriate protections.
Retention
- Order records for legal/accounting periods.
- Generated files and project artifacts for your account continuity and revisions; ask us to remove if you no longer need them.
- Server logs typically up to 12 months unless a security inquiry requires longer.
Security
We use TLS in transit, hardened cloud infrastructure, least‑privilege access, and monitoring. Details are on our Security page. No system is perfectly secure, but we act promptly on issues.
Your Rights
- EEA/UK/Swiss: access, rectify, erase, restrict, portability, object; lodge a complaint with your authority.
- California: right to know, delete, correct, and equal service. We do not “sell” or “share” personal information for cross‑context behavioral advertising.
- Everyone: request a copy or deletion of your personal data (subject to legal exceptions) via the addresses in Contact.
International Transfers
We may process data in the United States and other countries with appropriate safeguards where required (e.g., standard contractual clauses).
Children
Business users only; we don’t knowingly collect data from children under 16.
Changes
We may update this policy and will update the date above; for material changes, we’ll provide reasonable notice.
Contact
See below.