Privacy Policy

Last updated: 1/4/2026

1. Introduction

ClearICP ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service (the "Service") to analyze customer data and build Ideal Customer Profiles.

By using our Service, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, do not use our Service.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Email address
  • Name (if provided)
  • Authentication information (handled by NextAuth.js)
  • Profile image (if provided through OAuth providers)

2.2 Customer Data

When you use our Service to analyze customer data, you may upload datasets containing customer information. This data may include:

  • Firmographic data (company name, size, industry, revenue, geography)
  • Technographic data (technology stack, tools, platforms)
  • Behavioral data (usage patterns, engagement metrics)
  • Other customer attributes relevant to ICP analysis

Important: You are responsible for ensuring you have the right to upload and process this data through our Service, including obtaining necessary consents and complying with applicable data protection laws.

2.3 Usage Information

We automatically collect information about how you use our Service, including:

  • Projects and workspaces you create
  • Runs you execute and their results
  • Feature usage and interactions
  • Technical information (IP address, browser type, device information)

3. How We Use Your Information

We use the information we collect to:

  • Provide and maintain the Service: Process your customer data to generate ICP analysis, segmentation, and insights
  • Authenticate and manage your account: Verify your identity and manage access to your workspaces and projects
  • Process payments: Handle billing and payment transactions through Stripe
  • Communicate with you: Send service-related notifications, respond to your inquiries, and provide customer support
  • Improve the Service: Analyze usage patterns to enhance functionality and user experience
  • Ensure security: Detect, prevent, and address technical issues and security threats

What We Do NOT Do:

  • We do NOT use your customer data to train AI models
  • We do NOT share your customer data with third parties (except as necessary to provide the Service)
  • We do NOT use your customer data for any purpose other than delivering your analysis
  • We do NOT access your customer data except as necessary to process your analysis requests

4. Data Processing and AI Analysis

When you request an analysis, we process your customer data using Google Gemini AI to generate ICP insights. This processing:

  • Occurs in a closed-loop system—your data is processed only for your analysis
  • Does not use your data for model training or improvement
  • Is performed securely with encryption in transit and at rest
  • Results are stored securely and associated only with your account

Your customer data is processed according to your instructions and is not used for any other purpose, including training AI models or improving our service for other users.

5. Data Storage and Security

5.1 Storage

Your data is stored securely using:

  • PostgreSQL database: Account information, project metadata, and analysis results are stored in an encrypted PostgreSQL database
  • S3-compatible storage: Customer datasets are stored in encrypted S3-compatible storage (Cloudflare R2 or AWS S3)
  • Encryption: All data is encrypted in transit (TLS) and at rest
  • Access controls: Row-level authorization ensures users can only access their own data

5.2 Data Retention

We retain your data according to the following policies:

  • Account data: Retained while your account is active and for a reasonable period after account deletion
  • Customer datasets: Retained according to your workspace's data retention policy (default: 90 days, configurable)
  • Analysis results: Retained while your account is active and associated with your projects

You can delete your data at any time through the Service interface or by contacting us.

5.3 Security Measures

We implement industry-standard security measures to protect your data:

  • Encryption of data in transit and at rest
  • Secure authentication and authorization
  • Regular security audits and monitoring
  • Signed URLs for secure file access
  • Access logging and audit trails

6. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information or customer data to third parties. We may share information only in the following circumstances:

  • Service providers: We may share data with trusted service providers who assist us in operating our Service (e.g., hosting providers, payment processors). These providers are contractually obligated to protect your data and use it only for the purposes we specify.
  • Legal requirements: We may disclose information if required by law, court order, or government regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Business transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred, but we will notify you and ensure the same privacy protections apply.

We do NOT share your customer data with third parties for marketing, advertising, or any purpose other than providing the Service.

7. Your Rights and Choices

You have the following rights regarding your information:

  • Access: You can access your account information and data through the Service
  • Correction: You can update your account information at any time
  • Deletion: You can delete your account and data through the Service or by contacting us
  • Data export: You can export your analysis results and data in various formats
  • Opt-out: You can opt out of non-essential communications

To exercise these rights, please contact us using the information provided in the "Contact Us" section below.

8. Third-Party Services

Our Service integrates with the following third-party services:

  • Google Gemini AI: Used to process your customer data and generate ICP analysis. Google processes your data according to their privacy policy, but your data is not used for model training.
  • Stripe: Used for payment processing. Stripe handles payment information according to their privacy policy.
  • NextAuth.js / OAuth providers: Used for authentication. OAuth providers (e.g., Google) handle authentication according to their privacy policies.
  • Cloudflare R2 / AWS S3: Used for secure file storage. These providers store your data according to their security and privacy standards.

We encourage you to review the privacy policies of these third-party services to understand how they handle your information.

9. Children's Privacy

Our Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. We take appropriate measures to ensure your data is protected in accordance with this Privacy Policy regardless of where it is processed.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@clearicp.com
Website: www.clearicp.com