Last updated: April 1, 2026
We collect account information (name, email) via Clerk authentication, and contract documents you upload for analysis. We also collect usage data such as analysis counts and timestamps.
Your documents are processed by Google Gemini AI for risk analysis. Documents are sent to the AI model in real-time and are not permanently stored by the AI provider. Analysis results are stored in your personal Supabase database, accessible only to your account.
Your analysis results and contract metadata are retained in your account until you delete them. You may delete individual contracts or request complete account deletion at any time through Settings.
We use Clerk for authentication, Supabase for data storage, Google Gemini for AI analysis, and Paddle for payment processing. Each service has its own privacy policy governing their handling of data.
All data in transit is encrypted with TLS 1.3. Database access is restricted via Row Level Security policies. API keys and secrets are stored as server-side environment variables and never exposed to clients.
You may access, export, or delete your data at any time through your account Settings page. For GDPR or CCPA requests, please reach out via the contact information in your account settings.