Privacy Policy

1. Introduction

ClauseHawk ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

By using ClauseHawk, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, do not use the Service.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly to us:

• Account Information: Email address, name, and password when you register
• Profile Data: Profile picture and preferences
• Payment Information: Billing details processed through Stripe (we do not store credit card numbers)
• Watch Lists: URLs of policy documents you choose to monitor
• Notification Settings: Email preferences and alert configurations
• Support Communications: Messages you send us through support channels

2.2 Information Collected Automatically

When you use ClauseHawk, we automatically collect:

• Usage Data: Pages visited, features used, scan frequency, and interaction patterns
• Device Information: Browser type, operating system, IP address, and device identifiers
• Log Data: Access times, error logs, and performance data
• Cookies and Similar Technologies: Session management, preferences, and analytics

2.3 Information from Third Parties

We may receive information from:

• OAuth Providers: Basic profile information when you sign in with Google, Microsoft, or LinkedIn
• Payment Processors: Transaction confirmations and payment status from Stripe
• Public Sources: Policy documents you ask us to monitor (these are already public)

3. How We Use Your Information

We use the collected information for:

3.1 Providing the Service

• Creating and managing your account
• Monitoring policy documents you specify
• Detecting changes in policies and generating reports
• Sending notifications about policy changes
• Processing payments and managing subscriptions

3.2 Improving the Service

• Understanding how users interact with ClauseHawk
• Identifying and fixing technical issues
• Developing new features and functionality
• Conducting research and analysis to enhance user experience

3.3 Communication

• Sending service-related announcements and updates
• Responding to your requests and support inquiries
• Sending marketing communications (you can opt out anytime)
• Notifying you of changes to our Terms or Privacy Policy

3.4 Security and Compliance

• Detecting and preventing fraud, abuse, and security incidents
• Enforcing our Terms of Service
• Complying with legal obligations
• Protecting the rights and safety of our users and the public

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

We share information with trusted third-party vendors who help us operate:

• Cloudflare: Hosting, CDN, and infrastructure services
• Stripe: Payment processing (see their privacy policy)
• Email Service Providers: Transactional and notification emails
• Analytics Tools: Usage analytics (anonymized when possible)

4.2 Legal Requirements

We may disclose information if required to:

• Comply with legal process, court orders, or government requests
• Enforce our Terms of Service
• Protect the security or integrity of our Service
• Protect the rights, property, or safety of ClauseHawk, our users, or the public

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your personal information becomes subject to a different privacy policy.

4.4 With Your Consent

We may share information with third parties when you explicitly consent or direct us to do so.

5. Data Retention

We retain your information for as long as necessary to:

• Provide the Service to you
• Comply with legal obligations
• Resolve disputes and enforce agreements
• Support business operations and analytics

Policy Snapshots: We retain historical snapshots of monitored policies to provide change tracking. You can delete specific watches (and their snapshots) at any time from your dashboard.

Account Deletion: If you delete your account, we will delete your personal information within 90 days, except where retention is required by law or for legitimate business purposes (e.g., fraud prevention, audit logs).

6. Data Security

We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit (TLS/SSL) and at rest
• Regular security assessments and penetration testing
• Access controls and authentication mechanisms
• Secure development practices and code reviews
• Employee training on data protection

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee its absolute security.

7. Your Rights and Choices

7.1 Access and Update

You can access and update your account information at any time through your Account Settings page.

7.2 Data Portability

You can export your data (watch lists, scan history, reports) in machine-readable formats from your dashboard.

7.3 Deletion

You can delete specific watches, reports, or your entire account from Account Settings. Contact [email protected] for assistance.

7.4 Marketing Communications

You can opt out of marketing emails by clicking "unsubscribe" in any marketing email or updating your notification preferences. Note that we may still send you transactional emails (e.g., policy change alerts, billing notifications).

7.5 Cookies

You can control cookies through your browser settings. Disabling cookies may limit some functionality of the Service.

7.6 Do Not Track

We do not currently respond to "Do Not Track" signals from browsers.

8. International Data Transfers

ClauseHawk operates globally. Your information may be transferred to and processed in countries other than your own. These countries may have data protection laws different from your jurisdiction.

We use Cloudflare's global network to store and process data. When we transfer data internationally, we ensure appropriate safeguards are in place, such as standard contractual clauses or Privacy Shield frameworks where applicable.

9. Children's Privacy

ClauseHawk is not intended for users under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately at [email protected], and we will delete it.

10. Third-Party Links

The Service may contain links to third-party websites (including the policy documents you monitor). We are not responsible for the privacy practices of these sites. We encourage you to read their privacy policies.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last updated" date
• Sending an email notification (for significant changes)

Your continued use of ClauseHawk after changes become effective constitutes acceptance of the revised policy.

12. Regional Privacy Rights

12.1 GDPR (European Users)

If you are in the European Economic Area (EEA), you have additional rights under GDPR:

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent
• Right to lodge a complaint with a supervisory authority

12.2 CCPA (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act:

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to say no to the sale of personal information
• Right to access your personal information
• Right to deletion of personal information
• Right to non-discrimination for exercising your rights

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Email: [email protected]
• Support: support.clausehawk.com
• Data Protection Officer: [email protected]