PRIVACY · PLAIN LANGUAGE

Privacy policy.

Last updated: April 23, 2026 · Questions? Contact us.

The short version: We collect the minimum needed to make Phronesis and Synthesis work. Decision inputs are sent to AI providers to produce results and then stored against your run ID so you can share a link. Signed-in users have an email on file and a thin purchase ledger if they've paid. Analytics is cookieless. You can export or delete everything anytime from your account page.

What we collect

Decision and research content

Questions, options, weighted criteria, and prompts you submit through Phronesis and Synthesis, plus the generated outputs (rankings, scores, research briefs, strategist phase outputs). Stored in server-side JSONL files keyed by a short run ID so you can share a result URL with teammates.

Account data (signed-in users only)

If you sign in with a magic link, we store your email address, the date you first signed in, the timestamp of your last login, and your current plan (free / starter / pro / team). We do not store passwords because there are none. Auth is a signed, time-limited token in a first-party session cookie.

Purchase records (paying customers only)

If you complete a Stripe Checkout, we record the event ID, your email, the amount paid, the plan or credit pack purchased, and the Stripe customer/subscription IDs. Payment card details never touch our servers — Stripe handles all of that under their own security framework.

Analytics

We use Plausible, a privacy-friendly analytics service that runs without cookies, doesn't collect personal data, and doesn't fingerprint you. We track page views and a handful of named conversion events (plan_clicked, blog_read, phronesis_result_viewed, synthesis_result_viewed, auth_verified). No profiling, no cross-site tracking.

Contact form submissions

If you use /contact, we store your name, email, reason, and message in an append-only log that our team reads to reply.

How we use it

To run your requests. Your inputs are passed to the AI providers we orchestrate — OpenAI, Anthropic, Google, DeepSeek, and xAI — solely to generate the result you asked for. Each provider has its own privacy policy and retention rules; we call them under their enterprise / zero-retention terms where available.

To operate the product. We read your run history to show it on your account page, on admin dashboards (support and fraud prevention), and to enable shareable result URLs.

To send email. We may email you (1) a magic sign-in link when you request one, (2) a welcome email the first time you sign in, (3) a receipt after a purchase, (4) an outcome-reminder email roughly 14 days after a Phronesis decision so you can rate how the outcome turned out, and (5) responses to contact-form submissions. That's the full list. No newsletter, no marketing, no drip campaigns.

We do not sell your data. We do not share decision content with anyone outside the AI providers required to generate your result.

Cookies and local storage

We set exactly two first-party cookies, both authentication-essential under GDPR article 5(3) (no consent banner required):

  • intellcluster_user — your signed session, HMAC-signed, expires in 30 days
  • intellcluster_admin — admin session for us, HMAC-signed, expires in 24 hours

We also use browser localStorage to store your anonymous decision history (so it persists across visits without an account) and your theme preference. This is stored only on your device; we never read it from our servers.

Retention

  • Anonymous runs: up to 90 days from creation, then purged.
  • Signed-in user runs: retained for as long as your account exists. Delete your account to wipe.
  • Account rows: retained until you delete.
  • Purchase records: retained for at least 7 years to meet financial recordkeeping obligations (independent of account deletion — required by law in most jurisdictions we operate in).
  • Outcome-reminder send log: retained 90 days.
  • Contact-form submissions: retained 2 years so we can reference prior conversations.

Your rights

If you're in the EU, UK, California, or anywhere with meaningful data-protection law, you have the right to:

  • Access — download everything we have on you. Signed-in users: one click on /account. Anonymous users: your data is already in your browser's localStorage.
  • Delete — remove your account and all linked data. One click on /account. Purchase records are retained for legal reasons above.
  • Correct — email us to update anything wrong.
  • Object — unsubscribe from outcome-reminder emails (there will be an opt-out link in every reminder we send).
  • Complain — contact your local data-protection authority if you believe we've mishandled your data.

Requests honored within 7 days for account actions, 30 days for anything more complex.

Sub-processors

The services we route your data through:

  • AI model providers: OpenAI, Anthropic, Google (Gemini), DeepSeek, xAI (Grok). Decision and research inputs only.
  • Stripe — payment processing. Card details never reach us.
  • Resend / SMTP provider — outbound email. Receives your email address and the email body only when we send you mail.
  • Plausible — cookieless analytics. Receives aggregated page-view data, no personal data.
  • Replit — our hosting provider. Receives everything we store.

Security

All traffic is over HTTPS with HSTS. Session cookies are HMAC-signed and set with SameSite=Lax + Secure + HttpOnly. Admin auth and user auth use independent secrets. We log API errors without the content payload.

We will notify affected users within 72 hours of discovering a breach involving personal data.

Children

IntellCluster is not intended for anyone under 16. We don't knowingly collect data from children.

Changes to this policy

If we make material changes, we'll update the "Last updated" date above and — for signed-in users — email you before the change takes effect.

Contact

Privacy questions: security@intellcluster.com or via /contact.

See also: Terms of Service · FAQ