Saj Sense is the platform; Saj Link is the flagship application you interact with day to day. This page covers data handling across the platform and the website. App-specific controls live in Saj Link → Settings → Privacy.
What we collect
Account: email or hardware key, display name. Optional: phone number for contact discovery (k-anonymous SHA-256 prefixes — we never see numbers).
Operational: the server holds encrypted message blobs and message metadata (timestamp, conversation participants by anonymous ID, delivery state). We cannot read the contents.
Telemetry: anonymous crash reports if you opt in. No usage analytics. No tracking pixels on this website.
What we do not collect
We do not collect: message contents (encrypted client-side), voice audio (transcribed on-device), your contact list (we receive only k-anonymous prefixes), or browsing / click-through analytics.
Your rights
GDPR data export — one click in Saj Link → Settings → Privacy → Export data. Right to erasure — one click; deletion propagates within 30 days across all backups.
Subprocessors
We give 30 days notice before adding a subprocessor. Sovereign and on-prem deployments run on customer-controlled infrastructure with no Saj Sense subprocessors in the data path.
Contact
Privacy enquiries: privacy@sajsense.com.