Privacy Policy
Last updated: July 2026 · This is a draft pending attorney review.
1. What we collect
- Account information: your login email and the business details you or we enter (business name, type, description).
- Content you create: budgeting entries, appointments, diagrams, documents you send for signature, and your language preference.
- Signature records: when someone signs a document through a signing link, we record the typed name, the time, and the signer's network (IP) address — that record is the signature.
- Usage records: how much AI processing your account uses (token counts per tool), for plan limits.
2. How we use it
Only to provide the service: showing you your own data, generating AI content from it, enforcing plan limits, and keeping signature records. We do not sell your data or use it for advertising.
3. AI processing
To generate briefs, diagrams, and summaries, relevant parts of your business data are sent to our AI provider (Anthropic) for processing. Under the provider's commercial terms, API data is not used to train their models.
4. Where your data lives
We use established infrastructure providers: Supabase (database and authentication), Render (application hosting), and Anthropic (AI processing). Each client's data is isolated with database-level row security.
5. Retention and deletion
We keep your data while your account is active. When your service ends, you may request an export and deletion of your data.
6. Security
We use per-client data isolation, encrypted connections, and restricted database permissions. No system is perfectly secure; we will inform affected clients promptly if a breach affects their data.
7. Signers
If you signed a document through a signing link, the business that sent you the link controls that document. Contact them for questions about your signature record.
8. Changes and contact
We may update this policy; material changes will be communicated through the portal. Questions: contact your provider directly.