Privacy Policy

Documents you upload: PDF, DOCX, or TXT files. We extract the text content for analysis.

Analysis results: Clause-by-clause risk assessments, explanations, and safer alternatives generated by AI.

Account information: If you create an account, we store your email address and a hashed password (managed by Supabase Auth).

Usage metadata: File type, page count, contract type detected, risk scores, analysis timestamps, and pipeline performance data (per-step timing, token counts, model used, success or failure). This metadata is not encrypted and is used for rate limiting, service operation, and internal observability.

Rate limiting identifier: We hash your IP address (anonymous users) or user ID (authenticated users) using HMAC-SHA256 to enforce daily usage limits. The original IP address is never stored.

Encryption at rest: All sensitive data (your uploaded document text, filenames, clause analyses, explanations, and safer alternatives) is encrypted with AES-256-GCM before being stored in our database. Each document has its own derived encryption key. Even our database administrators cannot read your contract content.

Encrypted file storage: Uploaded files are encrypted before being stored in Supabase Storage.

Transport encryption: All data in transit is protected by TLS/HTTPS.

IP anonymization: IP addresses are irreversibly hashed using HMAC-SHA256 before storage. We cannot recover the original IP address.

Row-Level Security: Database access policies ensure authenticated users can only access their own documents.

Anthropic (Claude AI):Your document text is sent to Anthropic's API for analysis. Anthropic does not use API data to train their models. Anthropic processes data in accordance with their privacy policy and API terms. Data sent to Anthropic is retained for up to 30 days for trust and safety purposes, then deleted.

Voyage AI: Clause text is sent to Voyage AI for embedding generation (used to match clauses against our knowledge base of known risky patterns). Voyage AI does not store or train on this data.

Supabase: Our database and authentication provider. Hosted in EU (eu-west-1). Supabase provides AES-256 encryption at rest at the infrastructure level, in addition to our application-level encryption.

Vercel: Our hosting provider. Serves the application and processes requests. Server logs contain only metadata (file types, risk scores, timestamps), never contract text or analysis content.

Authenticated users: Documents, analyses, and associated data are automatically and permanently deleted 30 days after upload by default. You can extend this window from your dashboard, which resets the 30-day timer from the date of renewal.

Anonymous users: Data from anonymous uploads is deleted when you close the tab (via best-effort browser notification). As a safety net, any anonymous data that persists is automatically deleted within 24 hours.

Rate limit data: Hashed rate-limiting identifiers are deleted after 7 days.

Account data: Your email and authentication data persist until you delete your account.

Immediate deletion: Authenticated users can delete individual analyses from their dashboard or delete their entire account and all associated data at any time from their account settings.

If you are located in the European Economic Area, you have the following rights:

• Right to access: You can request a copy of your data.
• Right to deletion: You can delete your account and all associated data immediately. All data is also automatically deleted after 30 days.
• Right to rectification: You can re-upload corrected documents at any time.
• Right to data portability: Analysis results can be downloaded as PDF reports.
• Right to object: You can stop using the service at any time. No data is used for profiling or automated decision-making beyond the analysis you explicitly request.

To exercise these rights, use the account deletion feature in the application or contact us at the address below.

Authentication cookies: Supabase Auth uses strictly necessary cookies to maintain your session. These are required for the service to function and do not require consent under the ePrivacy Directive.

Language preference:Your selected response language is stored in your browser's localStorage. This is a functional preference, not tracking.

We do not use any analytics, advertising, or tracking cookies.