Last updated: April 30, 2026

Privacy Policy

This Privacy Policy describes how Symbai collects, uses, and discloses information when you visit symbai.dev, communicate with us, or use our Services. Symbai is operated by Raphael Fakhri, sole proprietor, based in Beirut, Lebanon. References in this Policy to "Symbai", "we", "us", or "our" refer to Raphael Fakhri d/b/a Symbai. By using the Services you consent to the practices described below.

1. Information We Collect

Information you give us

  • Account & contact: name, email, company, role, and any details you provide when you contact us, sign up, or book a discovery call.
  • Billing: payment processed by our processor (Stripe). We receive a transaction reference and the last 4 digits of the card; we do not store full card numbers.
  • Project data: code, credentials, documentation, and other materials you share with us to perform the Services ("Customer Data"). See the Terms & Conditions for confidentiality terms.

Information collected automatically

  • Site analytics: when you visit the Site, we collect aggregate, anonymized request data (IP address, user-agent, referrer, page visited) via Cloudflare's edge analytics for security and performance purposes.
  • Cookies: we use only essential cookies for site functionality. We do not currently use third-party advertising trackers.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Services;
  • Communicate with you about your account, projects, and Service updates;
  • Bill you and prevent fraud;
  • Comply with legal obligations and enforce our Terms;
  • Send transactional email (e.g., onboarding, receipts) — not marketing email unless you opt in.

3. How We Share Information

We do not sell or rent your personal information. We share information only in the following limited circumstances:

  • Service providers (subprocessors) who help us run the business under contractual confidentiality obligations: Cloudflare (hosting, DNS, edge analytics, inbound email routing), Resend (outbound email delivery), and our payment processor (disclosed at checkout).
  • AI tooling providers we use to deliver engineering work, processing only what you share with us in the course of an engagement and only under provider terms that prohibit training on customer data, where available.
  • Legal compliance: when required by law, valid legal process, or to protect our rights, property, or safety, or that of others.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, your information may transfer to the acquirer subject to this Policy.

4. Data Security

We use commercially reasonable administrative, technical, and physical safeguards to protect your information, including TLS for data in transit, access controls, and least-privilege handling of Customer Data. No method of transmission or storage is 100% secure; we cannot guarantee absolute security.

5. International Transfers

Symbai is based in Lebanon and our subprocessors operate globally, including in the United States and the European Union. By using the Services, you consent to your information being transferred to and processed in jurisdictions that may have different data-protection rules than your own.

6. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, restrict, or port your personal information, and to object to or withdraw consent for certain processing. To exercise these rights, email hello@symbai.dev. We will respond within 30 days.

EEA / UK: We process personal data on the bases of contract necessity, legitimate interest (running and securing the business), consent (where required), and legal obligation.

California: We do not sell your personal information. California residents may request disclosure of categories of information collected and request deletion subject to applicable exceptions.

7. Children

The Services are not directed to anyone under 18 and we do not knowingly collect information from children. If you believe we have done so, contact us and we will delete it.

8. Retention

We retain account and billing records for as long as your account is active and for a reasonable period thereafter to comply with legal obligations and resolve disputes. Customer Data is retained only as long as needed to deliver the Services and is deleted on request, subject to backup retention windows.

9. Changes to This Policy

We may update this Policy. Material changes will be reflected in the "Last updated" date. Continued use of the Services after that date constitutes acceptance of the updated Policy.

10. Contact

Privacy questions: hello@symbai.dev.