SubClause SubClause

Privacy Policy

Last updated: May 17, 2026

1. Who We Are

SubClause ("we," "us," or "our") operates the website subclause.app and provides an AI-powered Subcontractor Quality Control Program (SSQCP) generation service. Questions about this policy can be directed to info@subclause.app.

2. Information We Collect

Information you provide:

  • Email address — collected when you purchase a document or sign in. Used to deliver your download link and authenticate your account.
  • Contract PDF — uploaded by you for analysis. This file is processed immediately to extract project data and is permanently deleted from our servers as soon as analysis is complete. It is never stored.
  • Project team information — names entered in the personnel fields before generating your document. Stored only as part of your generated PDF.
  • Payment information — handled entirely by Stripe. We do not receive or store your card number, expiration date, or CVV. We receive only a payment confirmation and a Stripe customer identifier.

Information collected automatically:

  • Usage analytics — page views and session data collected via Umami, a privacy-focused analytics platform. No cross-site tracking. No personally identifiable information is collected in analytics.
  • IP address — logged temporarily for rate limiting and abuse prevention. Not linked to your account or stored long-term.
  • Session cookie — a secure, HTTP-only cookie set when you sign in. Used only to maintain your authenticated session. Expires after 30 days of inactivity.

3. How We Use Your Information

  • To generate your SSQCP document
  • To deliver your document via email download link
  • To authenticate you when you sign in
  • To display your document history in your account
  • To prevent abuse of our service
  • To communicate with you about your account or purchase if needed

We do not use your information for advertising, sell it to third parties, or use uploaded contract content to train AI models.

4. AI Processing

Your uploaded contract PDF is sent to Anthropic's API for AI-assisted text extraction and analysis. Anthropic processes this data subject to their own Privacy Policy. We use Anthropic's API under terms that prohibit using customer data for model training. Your contract content is not retained by SubClause after analysis is complete.

5. Data Retention

  • Uploaded contract PDFs — deleted immediately after analysis. Never stored.
  • Generated SSQCP PDFs — stored on our servers for 30 days, then automatically deleted. Download and save your document.
  • Email address and account data — retained for as long as your account exists. You may request deletion at any time.
  • Payment records — retained as required for accounting and tax compliance (typically 7 years).

6. Third-Party Services

We use the following third-party services to operate SubClause:

  • Stripe — payment processing. Privacy Policy
  • Anthropic — AI contract analysis. Privacy Policy
  • Resend — transactional email delivery. Privacy Policy
  • Umami — privacy-focused website analytics. No cookies, no cross-site tracking.

7. Security

Your data is transmitted over HTTPS. Session cookies are HTTP-only and secure. Generated documents are stored with randomized filenames. We do not store payment card data. We take reasonable technical measures to protect your information, but no internet transmission is 100% secure.

8. Your Rights

You may request at any time:

  • A copy of the personal data we hold about you
  • Deletion of your account and associated data
  • Correction of inaccurate information

To make a request, email info@subclause.app. We will respond within 30 days.

9. Changes to This Policy

We may update this policy from time to time. We will notify registered users of material changes by email. The date at the top of this page reflects the most recent update.

10. Contact

Questions or concerns about this policy: info@subclause.app