Privacy Policy for Kimi K2

Introduction

Welcome to Kimi K2, the advanced AI chat assistant powered by a trillion-parameter MoE model. At Kimi K2, your privacy is of utmost importance to us, and this privacy policy outlines how we collect, use, and protect your personal information when you use our services.

Information Collection and Use

We collect the following types of data to provide you with a better experience while using Kimi K2:

1. Account Information

   • What We Collect: This includes your name, email address, and authentication provider information (Google or GitHub) when creating an account.
   • Purpose: To manage your account, provide customer support, and maintain your credit balance.

2. Conversation Data

   • What We Collect: Messages you send to Kimi K2 and the AI responses generated.
   • Purpose: To provide AI chat services and maintain conversation context. We do NOT use your conversations to train our models.

3. Usage Details

   • What We Collect: Information about how you use Kimi K2, including API calls, credit consumption, and features accessed.
   • Purpose: To manage your credit balance, analyze service performance, and improve user experience.

4. Device Information

   • What We Collect: Data regarding the devices you use to access Kimi K2, such as device type, operating system, and browser type.
   • Purpose: To optimize our services for different devices and ensure compatibility.

5. Cookies and Session Data

   • What We Collect: Small data files placed on your device that help us track user preferences and maintain your session.
   • Purpose: To enhance the functionality of our services, maintain authentication, and track guest message limits.

6. Payment and Billing Information

   • What We Collect: Information regarding your payment methods, billing address, and transaction details when purchasing credits.
   • Purpose: To facilitate billing and payment processing through our payment provider (Stripe/Creem).

7. API Usage Data

   • What We Collect: API key usage, request logs, and performance metrics for developers using our API.
   • Purpose: To monitor API usage, enforce rate limits, and provide usage analytics.

Data Storage and Security

We take the security of your personal information seriously:

• All conversations are encrypted end-to-end during transmission
• Your data is stored securely on enterprise-grade infrastructure
• We implement robust access controls and regular security audits
• API keys are encrypted and can be revoked at any time
• You can delete your data anytime through your account settings

Please note that no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

Information Sharing and Disclosure

We do not sell, trade, or use your conversation data for AI training. We only share your information in these limited circumstances:

• To comply with legal obligations or respond to lawful requests from authorities
• To protect our rights, property, or safety, or that of our users
• To provide services through trusted third-party partners (payment processors, authentication providers) subject to strict confidentiality agreements
• With your explicit consent

Data Retention and Deletion

• Conversation History: Retained while your account is active. You can delete individual conversations or all data at any time.
• Account Data: Retained until you delete your account.
• API Logs: Retained for 90 days for security and debugging purposes.
• Guest Sessions: Automatically cleared after 30 days of inactivity.

Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your data
• Export your conversation history
• Opt-out of marketing communications
• Revoke API access at any time

Enterprise and API Users

For enterprise customers and API users, additional terms may apply:

• SOC2 Compliance: Available for enterprise plans
• HIPAA Compliance: Available for healthcare applications
• Custom Data Processing Agreements: Available upon request
• Self-hosted Options: Full data sovereignty with open-source deployment

Children's Privacy

Kimi K2 is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any changes by:

• Posting the new policy on this page
• Updating the "effective date" at the top
• Sending email notifications for significant changes

Contact Us

If you have any questions or concerns about this privacy policy or our data practices, please contact us at:

Service: Kimi K2
Email: support@kimi-k2.ai
Website: https://kimi-k2.ai

By using Kimi K2, you consent to our privacy policy and agree to its terms. Thank you for trusting us with your information!

Effective Date: January 2025