Helix Extract

by Helix Systems LLC

Privacy Policy

Last Updated: January 1, 2026

1. Introduction

Helix Systems LLC ("we," "our," or "us") operates Helix Extract, an AI-powered browser extension for PDF data extraction. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

Account Information

  • Email address
  • Password (encrypted)
  • Account creation date
  • Login timestamps

Usage Data

  • PDF processing requests (metadata only, not document content)
  • Token usage statistics
  • Browser extension activity

Document Data

Important: We do not collect, store, or share the content of your uploaded PDF documents. Your document data is:

  • Processed securely via AWS Bedrock AI for data extraction only
  • Never stored on our servers beyond the brief processing window
  • Never shared with third parties or used for any other purpose
  • Encrypted in transit and during processing

3. How We Use Your Information

  • To provide and maintain Helix Extract services
  • To process your PDF documents using AI
  • To manage your account and subscription
  • To send service-related communications
  • To improve our services and develop new features
  • To ensure security and prevent fraud
  • To comply with legal obligations

4. Data Storage and Security

Your data security is our top priority. We implement enterprise-grade security measures:

  • End-to-End Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Secure AWS Infrastructure: All processing occurs within AWS's secure infrastructure in US-EAST-1
  • Zero Data Retention: Your uploaded PDF content is processed in memory and immediately discarded—we never store your document content
  • Data Isolation: Your document data never escapes our secure processing pipeline and is never accessible to Helix staff
  • Access Controls: Strict role-based access to account data only
  • Security Monitoring: Ongoing security monitoring and threat detection

5. Data Sharing and Disclosure

We do not sell, share, or disclose your uploaded document content to any third parties. Your PDF data remains completely private and secure.

For essential service operations, we use:

  • AWS Bedrock: AI processing of your documents occurs entirely within AWS's secure infrastructure. Your document content is encrypted, processed, and immediately discarded—it is never stored, logged, or used for model training.
  • AWS (Hosting): Secure cloud infrastructure for our application
  • Stripe: Payment processing (they never see your document content)

We may disclose account information (not document content) only when:

  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with mergers or acquisitions

6. Your Rights

You have the following rights regarding your data:

  • Access: Request a copy of your personal data
  • Correction: Update inaccurate information
  • Deletion: Request deletion of your account and data
  • Portability: Receive your data in a machine-readable format
  • Opt-Out: Unsubscribe from marketing communications

To exercise these rights, contact us at privacy@discoverhelix.com

7. Cookies and Tracking

We use essential cookies for authentication and session management. We do not use third-party advertising cookies or trackers.

8. Third-Party Services

  • AWS Bedrock: Secure AI processing of PDF content within AWS infrastructure—your data never leaves the secure AWS environment and is not used for model training
  • AWS SES: Email delivery
  • Stripe: Payment processing
  • Google OAuth: Optional authentication

These services operate under strict data protection agreements. Your uploaded document content is only processed by AWS Bedrock and is never shared with other third-party services.

9. Data Retention

  • Account Data: Retained while your account is active
  • PDF Document Content: Never stored—processed in memory and immediately discarded after extraction
  • Extracted Results: Available in your browser session; we do not retain extraction results on our servers
  • Audit Logs: Usage metadata (not document content) retained for 90 days for security purposes

10. Children's Privacy

Helix Extract is not intended for users under 18. We do not knowingly collect information from children. If you believe we have collected data from a minor, contact us immediately.

11. International Users

Our services are hosted in the United States. By using Helix Extract, you consent to the transfer of your data to the US. We comply with applicable data protection laws.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or through the service. Continued use constitutes acceptance of the updated policy.

13. Contact Us

For privacy-related questions or concerns:

Email: privacy@discoverhelix.com

Company: Helix Systems LLC