Privacy Policy

Last updated: March 2026

1. Information We Collect

Account Information: When you create an account, we collect your email address and name (if provided via OAuth). We use this to identify your account and send transactional emails.

Contract Data: When you upload or paste a contract for analysis, we process the text to generate your report. We do not permanently store the full text of your contracts. Contract text is processed and discarded after analysis.

Payment Information: Payments are processed by Stripe. We do not store your credit card details. We only receive confirmation of successful payments and basic transaction information.

2. How We Use Your Information

  • To provide and improve our contract analysis service
  • To process payments and manage subscriptions
  • To send transactional emails (sign-in links, receipts)
  • To respond to support requests

3. Data Retention

We store your analysis results (findings, risk scores) so you can access them later. The original contract text is not stored. You can delete your account and all associated data at any time.

4. Third-Party Services

We use the following third-party services:

  • Anthropic (Claude AI): Powers our contract analysis
  • Stripe: Payment processing
  • Resend: Transactional emails
  • Railway: Hosting infrastructure

5. Cookies & Local Storage

We use the following technologies to operate our service:

  • Session Cookies: Essential for keeping you signed in (expires when you close browser or sign out)
  • Authentication Cookies: Managed by NextAuth.js for secure sign-in
  • Local Storage: Used to temporarily store scan IDs so we can link them to your account after you sign up
  • Stripe Cookies: Required for secure payment processing

All cookies we use are essential for the service to function. We do not use advertising or tracking cookies. You can manage cookies through your browser settings, but disabling them may affect site functionality.

6. Data Security

All data is transmitted over HTTPS. We use industry-standard security practices to protect your information. Access to production systems is restricted and monitored.

7. Your Rights

You have the right to:

  • Access your personal data
  • Request deletion of your account and data
  • Export your scan history
  • Opt out of marketing communications (we don't send any)

8. Contact

For privacy-related questions, contact us at privacy@scancontracts.com

← Back to home