Nuri Studio

Privacy

Last updated: 6 April 2026

Your art is encrypted end-to-end. Nuri is a private studio archive for working artists. Your work, your records, and the history of where the work has been belong to you. This page explains what we hold on your behalf, how we hold it, and what we will and will not do with it.

1. The four commitments

  • Local-first. Your work and the records that go with it are kept on your device by default. Sensitive data is encrypted at rest using industry-standard ciphers.
  • Encrypted before storage. Sensitive profile fields, including your artist statement, are encrypted before they reach the database. Your records are isolated from other users at the row level.
  • Never used for AI training. Your data does not train or improve AI models. When features require AI processing, providers operate under terms that prohibit training on your inputs.
  • Tied to you alone. Your account is bound to an authenticated session protected by modern cryptographic authentication.

2. How matching works

Nuri matches you with grants, residencies, and exhibitions using your stage, medium, and stated preferences. A few principles govern that matching:

  • Your sensitive data is encrypted at rest and is decrypted only when needed to rank opportunities for you.
  • When AI processing is required, the request is sent in a minimal, redacted form. Personal identifiers, including emails and phone numbers, are stripped before anything leaves for processing. No third party retains or trains on your data.
  • AI and tracking can be turned off from Settings at any time. Changes take effect immediately.

3. What we hold

A. What you provide

Account basics. Email address and login state, stored to manage your access. Passwords are never stored by Nuri directly.

Studio data. Artwork records, exhibition history, contacts, and documents you add to inventory, projects, and the archive. Sensitive text fields are encrypted before storage and are not indexed for search or made public.

B. Discovery interactions

Which opportunities you save, like, or dismiss, and the preferences you set (career stage, mediums, regions). This is what tunes the recommendations you see.

C. Logs and anonymous analytics

Anonymous performance metrics (page load times, browser type) and error reports. Our error monitoring is configured never to collect personally identifying information such as your email, IP address, or profile content. Analytics are aggregated. We cannot identify you from them or see your specific actions.

4. The processors we use

We share data with a small set of processors that run the underlying systems. They are contractually prohibited from using your data for any other purpose.

  • Storage and infrastructure. Encrypted cloud hosting and databases. Row-level security policies isolate one user's records from another's.
  • AI processing. When external AI is required, data is sent minimally and redacted, under terms that forbid retention or training.
  • External listings sources. The Discovery feed shows public opportunity data sourced from arts organizations. If you click through to a third-party site, that site's own privacy policy applies.

5. Your rights

  • Access and export. You can request a copy of your stored data or export your records to CSV, PDF, or BagIt at any time.
  • Preferences. AI and tracking can be managed from Settings. Changes take effect immediately.
  • Deletion. You can close your account and wipe your data from our systems at any time, including encrypted fields, interaction history, and uploaded files.
  • Communication. We send service-essential mail only. Non-critical notifications can be turned off.

6. Security

  • Encryption. Data in transit is encrypted with TLS. Sensitive profile fields are encrypted at rest before database storage.
  • Isolation. Your data sits in its own row-level-secured silo, separate from every other user's.
  • Access protection. Authentication endpoints are rate-limited and state-changing requests are protected against cross-site request forgery.

7. Encryption tiers

By default, we keep a recovery key for you, wrapped by your password, used only when you ask us to recover your account or export plaintext. Turn on Advanced Privacy to hold the only key yourself. Either way, third-party providers never see your images or text in plaintext.

Activity timing and storage usage patterns are visible to us and our backup providers, but your content is never readable by them.

  • Standard tier. Recovery key held in escrow, wrapped by your password. Plaintext export available. Account recovery via password or passkey.
  • Advanced tier. You hold the only key. No recovery if the passkey is lost. Plaintext export only from your device. Irreversible without re-enrolment.

8. Contact

Questions about this policy or how we handle your data:

balla@low-concept.com