Little Rocket Ltd. (“Little Rocket”, “we”, “our”) operates Relay at relayctx.com. Relay is a context infrastructure service for AI workflows, providing persistent task management and session handoff capabilities.
This Privacy Policy explains what personal data we collect, how we use it, and your rights regarding that data. By using Relay, you agree to the practices described here.
We use your personal data to: operate and deliver the Relay service; authenticate your identity and secure your account; send transactional emails (sign-in codes, account notices); send beta programme updates and invitations (you may opt out at any time); diagnose and resolve technical issues; and improve the product.
We rely on the following legal bases under applicable data protection law:
Contract performance — processing necessary to provide the Relay service you have signed up for, including authentication and context storage.
Legitimate interests — maintaining service security, preventing abuse, diagnosing technical issues, and improving the product, where these interests are not overridden by your rights.
Consent — for marketing and beta-programme communications. You may withdraw consent at any time by unsubscribing.
Relay exposes a remote MCP (Model Context Protocol) server at mcp.relayctx.com, accessible by AI clients such as Claude Desktop. When you connect an MCP client:
Authentication — we use OAuth 2.0 with PKCE. Your email and password are verified server-side and a short-lived access token is issued. The token is stored in your MCP client; Relay does not retain it beyond the session.
Tool calls — MCP tool invocations are authenticated against your Relay account. We log which tools are called and by which account for security and audit purposes. No AI conversation content or prompt text is transmitted to or stored by Relay.
Context data — tasks, goals, and transfers you access or create through MCP tools are subject to the same data practices as the rest of your Relay account.
We use a session cookie strictly necessary for authentication after you sign in. No advertising or tracking cookies are set by Relay.
The relayctx.com landing page may load Google Tag Manager after explicit cookie consent. No analytics tags are currently active. You may withdraw consent at any time by clearing your browser’s local storage for this site.
Cloudflare (our TLS/DNS provider) may set its own functional cookies for bot detection. See Cloudflare’s Privacy Policy.
We share data only with processors necessary to deliver the service:
We do not use third-party analytics, advertising networks, or social media pixels.
Account data is retained while your account is active, or until you request deletion.
Email addresses on the beta waitlist are retained until you unsubscribe or request removal.
Server logs are retained for up to 30 days and then automatically purged.
OAuth states and codes are short-lived (15 minutes and 5 minutes respectively) and automatically purged on expiry.
On a verified deletion request, all personal data associated with your account is deleted within 30 days.
Depending on your jurisdiction, you may have the right to: access a copy of your personal data; correct inaccurate data; request deletion of your data; restrict or object to certain processing; and receive your data in a portable format.
If you are located in the European Economic Area or the United Kingdom, you also have the right to lodge a complaint with your local data protection supervisory authority.
All connections are encrypted over TLS. Passwords are stored as cryptographic hashes and never in plaintext. Sign-in codes and API tokens are single-use and time-limited. We apply reasonable technical and organisational measures to protect data against unauthorised access, loss, or disclosure.
If you discover a security vulnerability, please report it responsibly to support@relayctx.com.
Your data is stored and processed in the United States (DigitalOcean SFO3, San Francisco). If you are located outside the United States, your data will be transferred to and processed there. By using Relay you acknowledge this transfer. We rely on appropriate safeguards or lawful mechanisms where required by applicable law.
For privacy questions, data requests, or to report a concern:
We may update this policy from time to time. Significant changes will be communicated to registered users by email. The effective date at the top of this page reflects the latest revision.