Privacy Policy

1. Information We Collect

Account information

When you create a Perceptly account, we collect your name, email address, password (stored securely hashed), and optionally your profession type.

Information you provide

• Survey content you create (questions, titles, descriptions)
• Messages submitted via our contact form
• Posts and replies in the community forum
• Tags and notes you add to responses

Client response data

When your clients complete a survey, we collect their answers, NPS scores, and ratings. We do not require your clients to create an account or provide their name unless you choose to add those fields to your survey.

Usage information

We automatically collect certain technical information when you use the platform, including browser type, pages visited, and general usage patterns. This helps us improve the product.

2. How We Use Your Information

• To provide, maintain, and improve the Perceptly platform
• To authenticate your account and keep it secure
• To send survey response notifications to your designated email addresses
• To generate AI-powered summaries and insights (Pro AI plan only)
• To respond to your support requests
• To send service-related emails (billing, security alerts, product updates)
• To comply with legal obligations

We do not sell your data. We do not use your data or your clients' data for advertising purposes.

3. Data Storage and Security

Your data is stored in Supabase (supabase.com), which uses PostgreSQL databases hosted on AWS infrastructure. All data is encrypted at rest (AES-256) and in transit (TLS 1.2+).

We implement the following security measures:

• Row Level Security (RLS) — each user can only access their own data
• HTTPS enforced on all pages via Netlify with automatic SSL renewal
• API keys stored as server-side environment variables, never exposed to browsers
• Content Security Policy headers to prevent cross-site scripting
• Rate limiting on AI API endpoints to prevent abuse

4. Client Response Data

The feedback responses collected through your surveys belong to you. We process this data on your behalf to provide analytics and AI insights.

• Client response data is associated with your account only
• We do not share individual client responses with other Perceptly users
• Anonymous aggregate statistics may be used to improve the platform
• You can export or delete all response data at any time from your dashboard

5. Third-Party Services

Perceptly uses the following third-party services:

• Supabase — database and authentication (supabase.com/privacy)
• Netlify — hosting and deployment (netlify.com/privacy)
• Anthropic — Claude AI for Pro AI plan features (anthropic.com/privacy) — only processes prompt data, no personal information is sent
• EmailJS — contact form email delivery (emailjs.com/legal/privacy-policy)
• Stripe — payment processing (stripe.com/privacy) — we never store your full card number
• Google — optional OAuth sign-in (policies.google.com/privacy)

6. Cookies and Tracking

We use the following types of cookies:

• Essential cookies — required for authentication and keeping you signed in (cannot be disabled)
• Preference cookies — store your accessibility and theme settings in local storage
• Analytics cookies — only set with your consent to understand how the platform is used

You can manage your cookie preferences via the cookie banner shown when you first visit the platform, or by clearing your browser's local storage. See our Cookie Policy for full details.

7. AI Processing

When you use Claude AI features (Pro AI plan), the content of survey responses is sent to Anthropic's API to generate summaries and insights. The following applies:

• Only the text content of survey answers is sent — no account credentials or personal billing information
• Prompts are processed server-side by our Netlify function — your browser never communicates directly with Anthropic
• Anthropic's data processing is governed by their privacy policy and API usage terms
• AI-generated summaries are not stored permanently — they are generated on demand

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access — request a copy of all data we hold about you
• Correction — correct inaccurate information in your account settings
• Deletion — request deletion of your account and all associated data
• Export — download your data in CSV format from the Analytics screen
• Portability — receive your data in a machine-readable format
• Objection — object to certain types of processing

To exercise any of these rights, contact us at vaxman14@gmail.com. We will respond within 30 days.

9. Data Retention

• Account data is retained as long as your account is active
• Survey and response data is retained until you delete it or close your account
• Contact form submissions are retained for 12 months
• Upon account deletion, all personal data is permanently removed within 30 days
• Anonymized aggregate statistics may be retained indefinitely

10. Children's Privacy

Perceptly is designed for professional use and is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately.

11. HIPAA Notice for Healthcare Professionals

Perceptly is designed with HIPAA-conscious practices for medical professionals. However, Perceptly is not a HIPAA-covered entity and does not currently offer a Business Associate Agreement (BAA) as standard.

Healthcare professionals should not include protected health information (PHI) — such as patient names, dates of birth, or medical record numbers — in survey questions or responses. Survey results should be collected anonymously.

If you require a formal BAA, please contact us to discuss enterprise options.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by displaying a notice in the app. The "Last updated" date at the top of this page will always reflect the current version.

Continued use of Perceptly after changes are made constitutes acceptance of the updated policy.

13. Contact Us