Last Updated: January 10, 2026

Privacy Policy

Your trust is our currency. We believe in radical transparency about how we collect, use, and protect your sensitive compliance data.

Key Privacy Pillars

👁️

No AI Training

We strictly prohibit our AI partners from using your data to train their models.

🔒

Encrypted Always

Your documents are encrypted at rest and in transit using enterprise standards.

🗑️

Right to Delete

It's your data. Delete your account, and we wipe everything within 30 days.

🤐

No Selling Data

We are a B2B SaaS. We make money from subscriptions, not by selling your info.

AI Privacy Protocol: Clause 3

We use a "Zero Retention" policy with our AI partners. Here is how your document data travels safely.

1
Upload & Encryption
Your PDF is encrypted immediately upon upload.
2
Text Extraction
We extract text locally on our secure server.
3
Transient API Call
Text sent to AI Provider via secure API.
4
Privacy Guarantee
Zero Training Processing
AI extracts dates. Data is discarded, NOT trained on.

Security Architecture

Multiple layers of defense protect your sensitive compliance documents.

Transmission Security

TLS 1.3 / SSL Encryption for all data in transit.

Storage Encryption

AES-256 Encryption for all files at rest.

Access Control

Strict role-based access. Employees cannot see user data.

Data Sovereignty

Hosted on enterprise infrastructure Vercel.

Explore Full Policy

1. Information We Collect

collection

Plain English: We collect basic account info (Name, Email) and the documents you upload to provide the service.

1.1. Personal Data When you register, we collect: * Email address * First name and last name * Phone number (for SMS alerts) * Company/Business Name
1.2. Compliance Data (User Content) We collect and process the documents you upload (e.g., certificates, licenses, policies) ("User Content") to provide the Service. * **We do not share your documents** with third parties, except as required for AI processing (see Section 3) or by law.
1.3. Usage Data We collect information on how the Service is accessed, including IP addresses, browser types, and device information, to improve security and performance.

2. How We Use Your Data

usage

Plain English: We only use your data to run the app: extracting dates, sending alerts, and improving the system.

We use your data to: * Provide the Service (extracting dates, scheduling alerts). * Notify you about changes to our Service. * Send you critical compliance alerts via Email or SMS. * Detect, prevent, and address technical issues.

3. AI & Data Privacy (Critical)

ai

Plain English: We use AI to read your docs. We force the AI provider to NOT train on your data. Your secrets stay yours.

Our Service uses Artificial Intelligence to function. By using the Service, you acknowledge and agree to the following data processing:

* AI Provider: We utilize Google Gemini / OpenAI (the "AI Provider") to process text extracted from your documents. * Data Transmission: When you upload a document, we extract the text and send strictly the text content to the AI Provider via API. * Zero Retention (Training): We configure our API requests to ensure that your data is NOT used to train the AI Provider's public models. Your data is transiently processed to extract dates and is not stored by the AI Provider for learning purposes.

4. Data Retention

security

Plain English: We keep data while you're a customer. If you delete your account, we wipe your data.

We retain your Personal Data and User Content only for as long as your account is active. * Upon Deletion: If you delete your account, all your uploaded documents and database records are permanently deleted from our servers within 30 days (due to backup cycles).

5. Security of Data

security

Plain English: We use encryption everywhere. But remember, nothing online is 100% hack-proof.

We use enterprise-grade security measures: * Encryption at Rest: All files in our storage are encrypted. * Encryption in Transit: All data transmission is secured via SSL/TLS. * Access Control: Strict internal access controls ensure no unauthorized employee can view your documents.

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

6. Your Data Rights

rights

Plain English: You own your data. You can ask to see it, fix it, or delete it anytime.

Depending on your location (GDPR / CCPA), you have the right to: * Access: Request a copy of the data we hold about you. * Rectification: Correct inaccurate data. * Deletion: Request the deletion of your account and data ("Right to be Forgotten"). * Export: Receive your data in a structured, portable format.

To exercise these rights, please contact us at our support email.

7. Third-Party Services

usage

Plain English: We use trusted partners like Paddle (payments) and Vercel (hosting) to keep the lights on.

We may employ third-party companies to facilitate our Service: * Hosting: Vercel * Database: Appwrite * Payments: Paddle * Email: Resend / Mailgun