Back to Home

Privacy Policy

We value your trust. This policy outlines how Policy Prism collects, uses, and protects your research data.

Last Updated: 3/9/2026

1. what data do we collect?

  • Account InformationManaged via Clerk. We store your email address and authentication ID to maintain your account and credits.
  • Research DataDocuments (PDFs) and URLs you upload for analysis. This content is processed solely for the purpose of generating your requested analysis.
  • Usage DataBasic logs of API usage (token counts, error rates) to monitor system stability and credit consumption.

2. How We Use Your Data

Your data is used exclusively to provide the Policy Prism service.

    Use of Third-Party AI Services

    To provide our analysis features, User Inputs (including prompts and uploaded text) are transmitted to third-party Large Language Model (LLM) providers via API.

    • Primary Providers: OpenAI (GPT-4o) & Google (Gemini 3 Pro Preview / Google Search)
    • Processing Purpose: To generate the requested analysis, summary, critique, or perform web-connected research.
    • Data Retention: Data is shared for the sole purpose of generating a response. We do not opt-in to model training. Providers may retain data temporarily (e.g., 30 days) for abuse monitoring.
  • Payments: All payment processing is handled by Stripe. We do not store credit card numbers.
  • Storage: Data is stored in a secure Redis database hosted on appropriate infrastructure.
No Model Training

We explicitly do not use, sell, or share your uploaded research data to train public AI models.

🍪3. Cookies & Tracking

We use a minimal set of **essential cookies** to make the site work. We do not use third-party advertising cookies.

  • Authentication (Clerk)

    Cookies like __session are used to keep you logged in securely.

  • Payments (Stripe)

    Stripe may use cookies for fraud detection and to process payments securely during checkout.

4. Data Protection

We implement industry-standard security measures:

Encryption

Data is encrypted in transit (TLS) and at rest where supported by our providers.

Access Control

Strict Row-Level Security ensures you only access your own data.

5. International Data Transfers

Your information, including Personal Data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.

GDPR & Cross-Border Transfers

If you are located in the European Economic Area (EEA), please note that we rely on **Standard Contractual Clauses (SCCs)** approved by the European Commission, and/or the **Data Privacy Framework (DPF)** where applicable, to ensure your data is protected during transfer to the United States or other jurisdictions.

6. Your Rights

You retain full ownership of your research data. You may delete your uploaded documents and analysis results at any time via the Dashboard. Deleted data is permanently removed from our active database.

To request full account deletion, you may do so directly via the Billing & Settings page in the "Danger Zone" section.

7. Business Transfers & Data Destruction

In the event that Policy Prism undergoes a permanent business closure, bankruptcy, or is acquired by a third party, your privacy and data security remain our priority.

Data Destruction Upon Shutdown: If the platform is permanently shut down, all User Inputs, uploaded documents, generated analysis graphs, and personal metadata stored on our active databases (e.g., PostgreSQL, Redis) will be permanently and irretrievably deleted following the 30-day notice period. We will not sell or transfer your proprietary research data to third parties as a business asset during liquidation.

Acquisitions: In the event of an acquisition or merger, your data will only be transferred if the acquiring entity agrees to be bound by a Privacy Policy that provides equal or greater protection for your data than this current policy.

Questions?

If you have any questions about this Privacy Policy, please contact us.

support@policyprism.io
© 2026 Policy Prism Research Group.