Contract Offramp

Privacy Policy

Last updated: April 20, 2026 · Effective: April 20, 2026

Draft pending attorney review. This policy describes how we intend to handle your data at launch. The final counsel-reviewed version will be linked from the product before we take paid traffic.

1. Scope

This Privacy Policy describes how Contract Offramp (“we,” “us”) collects, uses, stores, shares, and deletes personal data when you use our website and contract analysis service (the “Service”). It applies to visitors, registered users, and paying customers.

2. Data we collect

2.1 Information you provide

  • Documents. The contract files (PDF, DOCX) you upload for analysis.
  • Intake facts. Your state, contract type, counterparty name, relevant dates, and the goal you describe at intake.
  • Email address. Used to deliver results, receipts, and delete-confirmation notices. We use guest checkout; we do not create a password account by default.
  • Payment details. Collected and processed by Stripe. We never see or store full card numbers — we only receive a Stripe customer/session identifier and amounts.
  • Support messages. Anything you send us via email.

2.2 Information we generate

  • Extracted text and clauses. Our extractor converts your upload into structured text and clause boundaries.
  • AI analysis output. Summaries, findings, severity scores, statute citations, suggested lawyer questions, and (if purchased) letter drafts.
  • Usage and audit events. Pipeline step timings, token counts, errors, deletion receipts.

2.3 Information collected automatically

  • Technical data. IP address, user-agent, and basic request metadata used for rate limiting, abuse prevention, and error monitoring (Sentry).
  • Cookies. A small number of short-lived, signed cookies are used to keep your intake draft between steps. We do not set advertising cookies.

3. How we use data

  • To extract, analyze, and return findings on the contract you submitted.
  • To render and deliver letter drafts (if you purchased the add-on).
  • To email you results, receipts, and deletion confirmations.
  • To prevent abuse, detect prompt-injection, and enforce rate limits.
  • To bill you and reconcile payments with Stripe.
  • To fix bugs, improve extraction quality, and debug production incidents.
  • To comply with legal obligations (tax, subpoenas, fraud investigations we are legally required to cooperate with).

We do not sell your personal information. We do not use your uploaded documents or findings to train general purpose AI models. Our LLM and embeddings providers contractually prohibit such training on inference content.

4. Legal bases (EEA/UK users)

If you are in the EEA or UK, our legal bases are: performance of a contract (delivering the analysis you paid for), legitimate interests (security, abuse prevention, product improvement), consent (where we ask for it, e.g. non-essential analytics if ever added), and legal obligation (tax and compliance).

5. Sharing with service providers

We share the minimum data necessary with the following categories of service providers, each bound by a data-processing agreement and confidentiality obligations. See the full list on our Subprocessors page.

  • Hosting and CDN (Vercel).
  • Object storage (AWS S3 or Cloudflare R2).
  • Managed database (Neon or Supabase).
  • AI inference (Anthropic for LLM; Voyage or OpenAI for embeddings).
  • Optical character recognition for scanned PDFs (AWS Textract).
  • Background jobs (Inngest).
  • Payments (Stripe).
  • Transactional email (Resend).
  • Rate limiting (Upstash Redis).
  • Error monitoring (Sentry — redacted, no PII payload).

6. Retention and deletion

By default we retain your upload, extracted text, clauses, findings, and any letter renders for 30 days from the time your analysis is created. After 30 days a nightly automated sweep purges the stored bytes from object storage and marks the corresponding database rows as deleted. The audit trail (the fact that a deletion occurred) is retained.

You can delete earlier at any time via the one-click delete link in the results email or by visiting your results page. We store Stripe payment records (transaction amounts, last-four of card, billing country) for the period required by applicable tax and financial regulations.

7. Security

  • TLS everywhere; at-rest encryption at the storage provider level.
  • Upload access only via short-lived (5-minute) signed URLs; signed, single-use result links.
  • Per-IP and per-email rate limits on write endpoints.
  • PII redaction and allow-list logging: we log structured event names and identifiers, not document contents.
  • Principle of least privilege on service keys; regular key rotation.

8. Your choices and rights

Depending on your jurisdiction you may have some or all of the rights below. To exercise them, email privacy@contractofframp.example from the address associated with your purchase. We respond within 30 days.

  • Access / portability. Obtain a copy of your data.
  • Correction. Correct inaccurate personal data.
  • Deletion. Request earlier deletion than the default 30 days.
  • Restriction / objection. Object to specific processing based on legitimate interests.
  • Complaint. Lodge a complaint with your local supervisory authority (e.g. your state attorney general, or an EU data protection authority).

9. California residents (CCPA/CPRA)

If you are a California resident, you have the rights described above, plus: the right to know the categories of personal information we collect, the business purposes we use it for, and the categories of third parties with which we share it; the right to opt out of sale or sharing (we do not sell or share for cross-context behavioral advertising); and the right to non-discrimination for exercising these rights. We do not knowingly sell the personal information of minors under 16.

Do Not Sell or Share My Personal Information: We do not sell your personal information or share it for cross-context behavioral advertising as defined in California law. If our practices change, we will update this policy and maintain a compliant opt-out mechanism. You may still email privacy@contractofframp.example with the subject line “California privacy request” for any rights under this section.

10. International transfers

We operate primarily from the United States and our subprocessors are mostly US-based. If you access the Service from outside the United States your data will be transferred to and processed in the United States and other jurisdictions that may have different data protection rules than your own.

11. Children

The Service is not intended for children under 18 and we do not knowingly collect their personal data. If you believe a child has provided us personal data, email us and we will delete it.

12. Changes to this policy

We may update this policy from time to time. Material changes will be announced by email to the address associated with your most recent analysis. The “Last updated” date at the top of this page always reflects the current version.

13. Contact

Privacy questions, data-subject requests, and security-disclosure reports: privacy@contractofframp.example.

Related: Terms of Service · Subprocessors · Disclaimers · DMCA