Privacy Policy

1. Introduction

Clorefy ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered document generation platform at clorefy.com.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email address, password when you create an account
• Business Profile: Business name, type, address, tax IDs, contact details collected during onboarding
• Document Content: Information you provide in prompts and the documents generated therefrom
• Payment Information: Billing details processed securely through Razorpay (we do not store card details)

2.2 Information Collected Automatically

• Usage Data: Pages visited, features used, document types generated, session duration
• Device Information: Browser type, operating system, IP address
• Cookies: Authentication tokens and session management cookies

3. How We Use Your Information

• To provide and maintain the Service, including AI document generation
• To personalize your experience and pre-fill business details in documents
• To process payments and manage subscriptions
• To communicate with you about your account, updates, and support
• To improve our AI models and Service quality (using anonymized, aggregated data only)
• To detect and prevent fraud, abuse, and security threats
• To comply with legal obligations

4. Data Storage and Security

Your data is stored securely on Supabase (PostgreSQL) with the following protections:

• Row Level Security (RLS) ensuring users can only access their own data
• Encrypted data transmission (TLS/SSL)
• Server-side JWT validation for all API requests
• Rate limiting to prevent abuse
• Regular security audits

5. Data Sharing

We do not sell your personal information. We may share data with:

• Payment Processors: Razorpay for processing payments (subject to their privacy policy)
• AI Service Providers: DeepSeek for document generation (prompts are processed but not stored by the provider)
• Infrastructure Providers: Supabase for database hosting, Cloudflare for content delivery
• Legal Requirements: When required by law, court order, or government request

6. Your Rights

You have the right to:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information via your profile settings
• Deletion: Request deletion of your account and associated data
• Export: Download your documents in PDF, DOCX, or image format
• Withdraw Consent: Opt out of non-essential data processing

To exercise these rights, contact us at info@clorefy.com.

7. Cookies

We use essential cookies for authentication and session management. These are necessary for the Service to function and cannot be disabled. We do not use third-party tracking or advertising cookies.

8. Data Retention

We retain your data for as long as your account is active. Upon account deletion, we remove your personal data within 30 days, except where retention is required by law. Anonymized, aggregated data may be retained indefinitely for analytics.

9. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children.

10. International Data Transfers

Your data may be processed in servers located outside your country of residence. We ensure appropriate safeguards are in place for such transfers.

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through the Service.

12. Contact

For privacy-related inquiries, contact us at info@clorefy.com or visit our Contact page.