Last updated: March 13, 2026
We collect information you provide directly: name, email address, and organization details when you create an account. We also collect documents you upload for analysis, usage data (pages viewed, features used), and technical data (browser type, IP address, device information).
We use your information to: provide and improve our document analysis services, process your documents with AI for Q&A and summarization, send transactional emails (account verification, billing), and analyze usage patterns to improve the product. We never use your documents to train AI models.
Documents you upload are stored securely in Supabase Storage with encryption at rest. Document text is processed to generate embeddings for search and Q&A. Your documents are never shared with other users or organizations. You can delete your documents at any time, which removes all associated data including embeddings and chat history.
We do not sell your personal data. We share data only with: Supabase (database and storage hosting), Google (Gemini AI for document processing), Stripe (payment processing), Resend (transactional emails), and Vercel (application hosting). Each provider processes data under their respective privacy policies and data processing agreements.
We retain your account data and documents for as long as your account is active. When you delete your account, we remove all personal data and documents within 30 days. Usage analytics data is anonymized and retained for product improvement.
You have the right to: access your personal data, correct inaccurate data, delete your account and all associated data, export your data, and object to processing. To exercise these rights, contact us at privacy@docandtell.com.
We use essential cookies for authentication and session management. We use analytics cookies (PostHog) to understand usage patterns. You can disable non-essential cookies in your browser settings.
We implement industry-standard security measures: TLS encryption in transit, AES-256 encryption at rest, row-level security in our database, and regular security audits. We follow OWASP security best practices.
For privacy-related inquiries, contact us at privacy@docandtell.com or write to: Doc and Tell, Privacy Team, [Address].