SciLens — AxonReady

Data Policy

Effective May 20, 2026 · Full AI data flow disclosure
This policy explains in plain terms exactly what happens to your data when you use SciLens — what leaves AxonReady, where it goes, how long it stays, and what we do not collect. Read this before uploading sensitive research documents.

01 What This Policy Covers

This Data Policy governs how AxonReady handles data specifically within SciLens — our AI-powered research analysis product. It supplements the Privacy Policy with technical specifics about AI data flows, third-party transmission, and storage practices.

For PeerDrop: files transferred via PeerDrop never touch AxonReady servers. This policy does not apply to PeerDrop file content.

02 Data Flow — How SciLens Processes Your Content

1
You upload a document

PDF, image, or other file is received by our Supabase Edge Function over an encrypted TLS connection.

2
Text & content is extracted

Text is parsed from the document. Images, figures, and non-text elements are identified for vision processing.

3
Content is sent to AI providers

Extracted text is sent to DeepSeek for analysis. Images and figures are sent to Google Gemini. Prompts are constructed by AxonReady and include your document content.

4
AI outputs are returned

Generated summaries, analyses, and extractions are returned from the AI providers to AxonReady's servers.

5
Results are stored and displayed

Outputs are stored in your Supabase-backed account for history and library features, then displayed to you.

03 What Leaves AxonReady — Third-Party Transmission

When you use SciLens features, the following data is transmitted to external AI providers. By using SciLens you consent to this transmission.

FeatureData Sent ExternallyRecipient
Paper SummaryExtracted text, title, abstract, section contentDeepSeek
Figure / Chart AnalysisRendered figure image, caption, surrounding textGoogle Gemini
Expert Analysis / Deep DiveFull extracted text, metadata, prior analysis contextDeepSeek
Citation ExtractionReference section text, DOI patternsDeepSeek
Audio / Video (if uploaded)Audio/video file or streamGoogle Gemini
Chat / Q&AYour question + relevant document contextDeepSeek / Groq / OpenRouter (fallback)
Multi-paper synthesisText excerpts from each selected paper + knowledge graph contextDeepSeek
Local embeddings & knowledge graphProcessed locally in your browser — nothing sent externallyNone (Transformers.js / PGlite)
Once data is sent to a third-party AI provider, AxonReady cannot recall, delete, or modify it. That data is governed entirely by the provider's own privacy policy and data retention practices.

04 What We Store — AxonReady Servers

The following data is stored in your AxonReady account on Supabase (AWS us-east-1):

Data TypePurposeDeletable by You
Uploaded PDF / fileLibrary storage, re-analysis, duplicate detectionYes — via Library
Extracted text & metadataSearch, history, embeddingsYes — on file delete
Generated analyses & summariesHistory, export, libraryYes — via History
Embeddings (vector representations)Semantic search, duplicate detectionYes — on file delete
Usage counts & feature logsQuota enforcement, billingOn account deletion
Account & auth dataLogin, session managementOn account deletion

05 AI Provider Details

Google Gemini (Google LLC)

  • Used for: multimodal processing — images, charts, figures, audio, video.
  • Data processing agreement: Google maintains a Data Processing Addendum for API users.
  • Training on your data: By default, Google does not use API inputs to train Gemini models. Verify current policy at ai.google.dev/terms ↗.
  • Data location: Google processes data globally. Specific regions vary.

DeepSeek (Hangzhou DeepSeek Artificial Intelligence Co., Ltd.)

  • Used for: text analysis, reasoning, summaries, synthesis.
  • Jurisdiction: DeepSeek is a Chinese company. Data sent to DeepSeek may be processed under Chinese law and regulations.
  • Training on your data: Review current policy at deepseek.com/privacy ↗.
If your organization has restrictions on data leaving certain jurisdictions or on use of Chinese-operated AI services, do not upload sensitive documents to SciLens without first consulting your institution's data governance policy.

Groq, Inc. / NVIDIA

  • Used for: low-cost inference fallback and chat routing when available.
  • Data sent: prompt text and relevant context only (no full document uploads).
  • Review each provider's current API data policy before use.

OpenRouter, Inc.

  • Used for: multi-model routing fallback when primary providers are unavailable.
  • Data sent: prompt text and relevant context only.
  • OpenRouter may route requests to various underlying model providers. Review their policy at openrouter.ai/privacy ↗.

Local Processing (In-Browser)

  • Used for: embedding generation (Transformers.js) and local knowledge graph storage (PGlite/IndexedDB).
  • Data sent externally: None. All processing occurs entirely within your browser.
  • This local processing enables semantic search, duplicate detection, and knowledge graph features without transmitting additional data to external servers.
  • Data is stored in your browser's IndexedDB and is deleted when you clear browser data or delete your account.

06 Uploaded Content Risk & Your Responsibility

You are solely responsible for the legal status of documents you upload. AxonReady does not verify copyright ownership or licensing status of uploaded files.

  • Copyrighted papers: Academic papers from publishers (Elsevier, Springer, Wiley, Nature, etc.) are typically protected by copyright. Processing them through third-party AI APIs may not be covered by your institutional license or fair use, depending on jurisdiction.
  • Shadow library content: Documents obtained from Sci-Hub, Library Genesis, or similar platforms may infringe publisher copyrights. Uploading them to SciLens is done at your own risk and legal exposure. AxonReady is not liable for any resulting copyright claims.
  • Confidential documents: Do not upload proprietary research, trade secrets, unpublished manuscripts under embargo, or documents covered by NDA.
  • Personal data: Do not upload documents containing personal data of identifiable individuals unless you have legal authority to process that data through third-party AI services.

See Terms of Service, Section 5 for the full legal framework governing uploaded content.

07 Exported Data

SciLens allows you to export analyses, summaries, and structured outputs. Regarding exports:

  • Exported files are generated at the moment of export and delivered to your device. AxonReady does not retain a separate copy of your exported file.
  • Export formats (PDF, Markdown, JSON, CSV) contain AI-generated content derived from your uploaded documents and third-party AI outputs.
  • Once exported, the file is entirely outside AxonReady's systems. We have no visibility into where it is stored, shared, or used.
  • You are responsible for ensuring exported content is used in compliance with applicable copyright law, institutional policies, and the Terms of Service export provisions.

08 Data We Never Collect

We are explicit about what we do not do.
  • We do not sell your data to advertisers, data brokers, or third parties;
  • We do not store credit card numbers or bank account details;
  • We do not read your PeerDrop files — they never pass through our servers;
  • We do not use your SciLens analyses to train our own AI models;
  • We do not share your uploaded documents with other AxonReady users;
  • We do not use behavioral or advertising tracking cookies;
  • We do not build advertising profiles based on your research topics.

09 Retention Schedule

DataRetained UntilNotes
Uploaded filesYou delete them or delete your accountDeleted within 30 days of request
Analysis resultsYou delete them or delete your accountDeleted with associated file
Account & auth dataAccount deletionDeleted within 30 days
Usage logs (anonymized)IndefinitelyCannot identify individuals
Billing records7 yearsRequired by financial regulations (Stripe)
Data at AI providersPer each provider's policyOutside AxonReady's control

10 Your Controls

  • Delete a file: Removes the file, extracted text, embeddings, and associated analyses from AxonReady storage.
  • Delete your account: Removes all personal data, files, analyses, and account metadata within 30 days.
  • Export your data: Request a JSON export of your account data by emailing contact@axonready.com.
  • Restrict processing: Contact us to request limitations on how we process your data (subject to service functionality constraints).

Note: Deletion requests apply only to data held by AxonReady. We cannot delete data that has already been transmitted to and processed by third-party AI providers.

11 Security Incident Response

In the event of a data breach affecting your personal data, AxonReady will:

  • Notify affected users via email within 72 hours of becoming aware of the breach (as required under GDPR Article 33);
  • Provide details of the nature of the breach, categories of data affected, and steps taken;
  • Report to relevant supervisory authorities where required by law;
  • Take immediate steps to contain and remediate the breach.

Report suspected security incidents to legal@axonready.com.

12 Contact

AxonReady Data Team