Privacy Policy

Last updated: March 13, 2026

1. Introduction

Context Engine Ltd ("we", "us", "our") operates PulseMI, an AI-powered media intelligence platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform at pulsemi.contextengine.tech.

We are committed to protecting your privacy in accordance with the Kenya Data Protection Act, 2019 and the EU General Data Protection Regulation (GDPR) where applicable.

2. Information We Collect

Account Information

  • Name and email address (provided during registration via Zitadel SSO)
  • Organisation name and billing details
  • Role and access permissions within your organisation

Usage Data

  • Pages visited, features used, and interactions with the platform
  • IP address, browser type, device information
  • Session data stored in Redis (encrypted, expires after 24 hours)

Media Data

PulseMI analyses publicly available media content including published news articles, public social media posts, and broadcast transcripts. We do not collect private messages, non-public social media content, or personal data of individuals mentioned in media coverage beyond what is publicly available.

3. How We Use Your Information

  • To provide and maintain our media intelligence services
  • To authenticate your identity and manage your account
  • To process payments and manage subscriptions
  • To generate AI-powered analytics, sentiment analysis, and reports
  • To send service notifications, alerts, and scheduled reports
  • To improve our platform and develop new features

4. Data Storage and Security

Your data is stored on secured servers with the following measures:

  • All data in transit is encrypted using TLS 1.2+
  • Database connections use SSL encryption
  • Authentication is handled via Zitadel with PKCE OAuth2 flow
  • Sessions are managed with SCS using Redis-backed storage
  • Multi-tenant architecture ensures complete data isolation between organisations
  • Report files are stored in S3-compatible object storage with presigned URLs

5. Data Retention

We retain your account data for as long as your account is active. Media analytics data (mentions, sentiment scores, reports) are retained according to your subscription plan:

  • Starter: 30 days of historical data
  • Professional: 60 days of historical data
  • Business/Enterprise: 90 days of historical data

Upon account deletion, all associated data is permanently removed within 30 days.

6. Third-Party Services

We use the following third-party services to operate PulseMI:

  • Zitadel,Authentication and identity management
  • Google Gemini,AI-powered content analysis and sentiment scoring
  • LightningPDF,PDF report generation
  • S3-compatible storage,Report and asset storage

Each third-party provider is bound by their own privacy policies and data processing terms. We only share the minimum data necessary for each service to function.

7. Your Rights

Under the Kenya Data Protection Act and GDPR (where applicable), you have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate personal data
  • Request deletion of your personal data
  • Object to processing of your personal data
  • Request data portability
  • Withdraw consent at any time

To exercise these rights, contact us at support@contextengine.tech.

8. Cookies

PulseMI uses essential cookies only:

  • Session cookies for authentication (httpOnly, secure, SameSite=Lax)
  • CSRF protection tokens

We do not use tracking cookies, advertising cookies, or third-party analytics cookies.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

10. Contact Us

If you have questions about this Privacy Policy, please contact us at:

Context Engine Ltd
Nairobi, Kenya
support@contextengine.tech