← Back to ContractForYou

Privacy Policy

1. Information We Collect

We collect information to provide and improve our services:

1.1 Information You Provide

• Account Information: Email address, name, and profile information when you register
• Payment Information: Processed securely through FastSpring (we do not store payment card details)
• Contract Content: Text and data you input for contract generation and review
• Communications: Messages you send to our support team

1.2 Information Collected Automatically

• Usage Data: How you interact with our platform, features used, time spent
• Device Information: Browser type, operating system, IP address
• Analytics Data: Website performance and user engagement metrics
• Cookies: Essential cookies for functionality and analytics

2. How We Use Your Information

We use your information for legitimate business purposes including:

• Providing and improving our AI contract generation services
• Processing payments and managing your account
• Providing customer support and responding to your inquiries
• Sending service-related notifications and updates
• Analyzing usage patterns to enhance user experience
• Complying with legal obligations and preventing fraud
• Training and improving our AI models using anonymized data
• Marketing our services and informing you about new features

3. Legal Basis for Processing

We process your personal data based on:

• Contract Performance: To provide the services you requested
• Legitimate Interest: To improve our services, prevent fraud, and operate our business
• Consent: Where you have provided consent for specific uses
• Legal Compliance: To meet regulatory and legal requirements

4. Information Sharing and Disclosure

We may share information with trusted partners and in certain circumstances:

• Service Providers: FastSpring (payments), OpenAI (AI processing), hosting providers
• Business Partners: For improving service delivery and user experience
• Legal Requirements: When required by law or to protect our rights
• Business Transfers: In case of merger, acquisition, or asset sale
• Aggregate Data: Non-personal, statistical data for business insights

5. Data Security

We implement industry-standard security measures:

• Encryption of data in transit and at rest
• Regular security audits and vulnerability assessments
• Access controls and authentication requirements
• Secure payment processing through PCI-compliant FastSpring
• However, no system is completely secure, and you use our service at your own risk

6. Data Retention

We retain your information as follows:

• Account Data: For the duration of your account plus 7 years for business purposes
• Contract Data: For the duration of your account plus 10 years for legal and business purposes
• Payment Records: As required by tax and financial regulations (typically 7-10 years)
• Analytics Data: In anonymized form indefinitely for business insights
• Backup Data: In secure backups for up to 3 years

7. Your Privacy Rights

Subject to applicable laws and our legitimate business interests, you may have certain rights:

7.1 General Rights

• Access: Request information about your personal data (subject to verification and reasonable limitations)
• Correction: Request correction of inaccurate information (subject to verification)
• Deletion: Request deletion subject to legal retention requirements and legitimate business needs

7.2 GDPR Rights (EU Users)

• Portability: Receive your data in a structured format (where technically feasible)
• Object: Object to processing based on legitimate interest (may affect service provision)
• Restrict: Request processing restrictions (may affect service provision)

7.3 Limitations on Rights

• Rights are subject to identity verification requirements
• Certain data may be retained for legal compliance or legitimate business purposes
• Exercising rights may affect your ability to use our services
• We may charge reasonable fees for excessive or repetitive requests

8. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure adequate protection through:

• Standard Contractual Clauses approved by relevant authorities
• Adequacy decisions for countries with equivalent protection
• By using our service, you consent to such transfers

9. Children's Privacy

ContractForYou is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we become aware of such collection, we will take appropriate action to remove the information.

10. Cookies and Tracking

We use cookies and similar technologies for:

• Essential Cookies: Required for basic functionality
• Analytics Cookies: To understand usage patterns and improve our service
• Preference Cookies: To remember your settings and preferences
• You may disable non-essential cookies through your browser settings, but this may affect functionality

11. Third-Party Services

Our platform integrates with third-party services with their own privacy practices:

• FastSpring: Payment processing (subject to FastSpring's privacy policy)
• OpenAI: AI processing (subject to OpenAI's privacy policy)
• Firebase: Authentication services (subject to Google's privacy policy)

12. Data Breach Notification

In case of a data breach:

• We will investigate and assess the impact
• Notify relevant authorities as required by law
• Notify affected users if required by law or if we determine notification is appropriate
• Take steps to secure the breach and prevent further access

13. Updates to This Policy

We may update this Privacy Policy as needed:

• Changes will be posted on this page with updated date
• Material changes may be communicated via email or platform notification
• Continued use after changes constitutes acceptance

14. Contact Us

For privacy-related questions or to exercise your rights: