Privacy Policy

Last updated: February 24, 2026

1. Introduction

ClaimAICredits ("we," "us," "our") operates claimaicredits.com (the "Platform"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Platform. By using the Platform, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Information You Provide

  • Account information: Email address and name when you create an account via Supabase Authentication.
  • Payment information: Billing details processed by our payment partner Polar.sh (powered by Stripe). We do not store credit card numbers on our servers.
  • Communications: Information you provide when contacting us via email or support channels.

2.2 Information Collected Automatically

  • Usage data: Pages visited, features used, time spent, and navigation patterns (via Vercel Analytics).
  • Device information: Browser type, operating system, screen resolution, and device type.
  • IP address: Collected for security, analytics, and fraud prevention.
  • Cookies and similar technologies: See our Cookie Policy for details.

3. How We Use Your Information

We use the collected information to:

  • Provide and maintain the Platform and your account.
  • Process subscriptions and payments.
  • Send transactional emails (account confirmation, payment receipts, subscription updates).
  • Improve our Platform, content, and user experience through analytics.
  • Detect, prevent, and address fraud or security issues.
  • Comply with legal obligations and enforce our Terms of Service.

4. Data Sharing

We do not sell your personal data. We may share information with:

  • Payment processors: Polar.sh and Stripe for payment processing.
  • Authentication provider: Supabase for account management and authentication.
  • Hosting and analytics: Vercel for hosting and web analytics.
  • Legal requirements: When required by law, regulation, or legal process.

5. Data Security

We implement industry-standard security measures to protect your data, including:

  • HTTPS encryption for all data in transit.
  • Secure authentication via Supabase (including OAuth flows).
  • Payment data handled by PCI-DSS compliant processors (Stripe).
  • Security headers (HSTS, X-Frame-Options, X-Content-Type-Options, Referrer-Policy).

While we strive to use commercially acceptable means to protect your data, no method of electronic transmission or storage is 100% secure.

6. Data Retention

We retain your personal data for as long as your account is active or as needed to provide services. After account deletion, we may retain anonymized data for analytics purposes and transactional records as required by law (e.g., for tax and accounting purposes).

7. Your Rights (GDPR)

If you are in the European Economic Area (EEA), you have the following rights under the General Data Protection Regulation (GDPR):

  • Right of access: Request a copy of the personal data we hold about you.
  • Right to rectification: Request correction of inaccurate or incomplete data.
  • Right to erasure: Request deletion of your personal data ("right to be forgotten").
  • Right to restrict processing: Request limitation of how we process your data.
  • Right to data portability: Receive your data in a structured, machine-readable format.
  • Right to object: Object to processing based on legitimate interests or for direct marketing.

To exercise these rights, contact us at team@claimaicredits.com. We will respond within 30 days.

8. California Privacy Rights (CCPA)

If you are a California resident, the California Consumer Privacy Act (CCPA) provides additional rights:

  • Right to know: What personal information is collected and how it is used.
  • Right to delete: Request deletion of personal information.
  • Right to opt-out: Opt out of the sale of personal information (we do not sell personal data).
  • Right to non-discrimination: Equal service regardless of exercising privacy rights.

9. Children's Privacy

Our Platform is not intended for children under 16. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal data, please contact us so we can take appropriate action.

10. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for any international transfers, including standard contractual clauses where applicable.

11. Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights, we will notify affected users and relevant supervisory authorities within 72 hours, as required by GDPR.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or a prominent notice on the Platform. Your continued use of the Platform after changes constitutes acceptance of the updated policy.

13. Contact Us

For privacy-related questions or to exercise your rights, contact us at: team@claimaicredits.com