Legal
Effective April 10, 2026 · https://bintualkassoum.com
BINTU.ai (“we”, “our”, or “us”) is operated by Bintu Alkassoum. This policy explains what data we collect when you use https://bintualkassoum.com to generate business artifacts (such as the AI Stack Audit, Adoption Tracker, or Use Case Planner), how we use it, and what rights you have over it. We collect the minimum data needed to provide our services and deliver your generated documents. We do not sell your data.
Information you provide
Payment information
We do not collect or store your payment details. All payments are processed securely by Stripe, under PCI-DSS compliance. We receive only a payment confirmation and a Stripe order ID to trigger the generation of your artifact.
Automatically collected data
We use standard server logs and may collect your IP address, browser type, and pages visited for security and debugging purposes. We do not use advertising trackers or sell this data to third parties.
We do not sell your personal information and we do not use your identifiable business inputs for advertising. We explicitly opt out of having your data used to train the public AI models of our sub-processors.
We rely on trusted enterprise infrastructure to operate BINTU.ai securely:
Hosts this website. Standard server logs are collected by Vercel's infrastructure.
The core intelligence engine. Processes your inputs to generate the artifact. Your data is not used to train public foundation models.
Stores your intake data and artifact history in a PostgreSQL database. Data is encrypted at rest and secured by Row Level Security (RLS).
Processes payments. We never see or store your card details. Stripe is PCI-DSS Level 1 certified.
Delivers transactional emails, including your secure artifact access links.
When you click 'Export', your document is temporarily sent to Tiptap's REST API to accurately render your downloadable PDF or DOCX file.
Generated artifacts are stored indefinitely so you can access and edit them via your secure link. If you would like your artifact and associated intake data permanently deleted, email us at hello@bintualkassoum.com and we will execute a hard deletion within 7 days.
We may retain limited transaction records (via Stripe) and other operational records for legitimate business, accounting, tax, or legal compliance purposes.
We use strict administrative and technical safeguards to protect your data, including Row Level Security (RLS) policies that prevent unauthorized database access.
Because our platform is designed to be frictionless, we use tokenized Magic Links instead of traditional passwords. Your artifact access link should be treated as highly confidential. Anyone who possesses your active link may be able to view or edit the artifact associated with it.
Depending on your regulatory region (such as the EU/UK under GDPR, or California under CCPA), you may have the following rights regarding your personal and organizational data:
To exercise any of these rights, contact hello@bintualkassoum.com.
BINTU.ai does not use advertising cookies or tracking pixels. We use essential browser storage (such as Zustand-powered localStorage) to temporarily save your form progress so you do not lose your answers if you accidentally refresh the page. This browser-side data is used strictly to operate the service and is not used for marketing.
We may update this policy from time to time as we launch new artifact products. Material changes will be reflected with a new effective date at the top of this page. Continued use of the service after changes constitutes acceptance of the updated policy.
Questions about this privacy policy or your data? Reach us at hello@bintualkassoum.com.
