Skip to main content
brandlismTerms →

Legal · Privacy

Privacy policy.

Plain-English explanation of what we collect, where it lives, and how you can take it back. No dark patterns, no surprises.

Last updated · March 28, 2026

01·Section

Information we collect

When you create an account, we collect your email address and workspace name. When you add brands, we analyze publicly available website data. We collect usage analytics to improve the product.

02·Section

How we use your data

Your data is used to provide the Brandlism service — brand analysis, demand signal detection, lead generation, and AI-powered recommendations. We do not sell your data to third parties.

03·Section

Data storage & security

Data is stored on Supabase (PostgreSQL) with row-level security. API keys and OAuth tokens are encrypted at rest. All connections use TLS 1.3.

04·Section

Third-party services

We use: Anthropic (AI analysis), Supabase (database), Vercel (hosting), Stripe (payments), Resend (email). Each has their own privacy policy.

05·Section

Data retention

Your data is retained while your account is active. Upon deletion, we remove all personal data within 30 days. Aggregated, anonymized analytics may be retained.

06·Section

Your rights

You can export your data, request deletion, or update your information at any time from Settings. Contact hello@brandlism.ai for any privacy requests.

07·Section

Cookies

We use essential cookies for authentication and session management. Optional analytics cookies are used only with your consent.

08·Section

Data processing

What goes to Anthropic (Claude AI): When you use AI features, your prompts and relevant brand context are sent to Anthropic’s API for processing. Anthropic does not store these inputs or outputs beyond the request lifecycle, and does not use them for model training. No personal account data is included in AI requests.

What stays in Supabase: Your account data, brand analyses, leads, and workspace content are stored in Supabase PostgreSQL with AES-256 encryption at rest, row-level security policies, and TLS 1.3 in transit. Backups are encrypted and retained for disaster recovery only.

09·Section

Your controls

  • Export — Download all your brand data, analyses, and leads from Settings at any time in standard formats.
  • Delete — Request full account and data deletion from Settings or by emailing hello@brandlism.ai. Completed within 30 days.
  • Opt out of analytics — Disable optional analytics cookies from the cookie banner or Settings. Essential auth cookies cannot be disabled.

10·Section

Changes

We may update this policy. Significant changes will be communicated via email.