Privacy Policy

• Name, email address, and password (hashed)
• Billing and payment information processed through Stripe
• Organization name and role (for team accounts)

• Research topics and queries you submit
• Generated reports, including content, citations, and metadata
• Report customization preferences (depth, format, audience)

• Feature usage patterns and interaction data
• Report generation timestamps and completion metrics
• Account activity logs for security purposes

• Browser type, version, and language settings
• Operating system and device type
• IP address (anonymized after 30 days)

• Processing your research queries and generating reports
• Personalizing your experience and report recommendations
• Improving report quality, accuracy, and platform reliability

• Transmitting queries to AI models for analysis and synthesis
• Retrieving relevant web sources and academic literature
• Structuring findings into professional-grade reports

• Sending transactional emails (report completion, billing receipts)
• Providing customer support and responding to inquiries
• Sending product updates and feature announcements (opt-in only)

• Detecting and preventing unauthorized access or abuse
• Monitoring for anomalous usage patterns
• Enforcing our Terms of Service

• Your research query is sent to Claude (by Anthropic) via a secure API connection
• AI agents search publicly available web sources and synthesize findings
• Generated reports are stored in your private account on our infrastructure
• No AI model has persistent access to your data between sessions

• CLADAL is classified as a limited-risk AI system under the EU AI Act
• All AI-generated content is clearly labeled as such
• Users maintain full control over whether to use, edit, or discard AI outputs
• We maintain transparency logs of AI model versions and processing metadata

• Generated reports are private to your account by default
• Reports are only shared when you explicitly choose to share them
• We do not aggregate, analyze, or mine your reports for any purpose beyond delivering the service

• Anthropic — AI model provider. Processes research queries under strict data processing agreements. Zero data retention.
• Supabase — Database and authentication infrastructure. Data encrypted at rest and in transit.
• Stripe — Payment processing. CLADAL never stores your full credit card number; Stripe handles all payment data under PCI DSS Level 1 compliance.

We may disclose information if required by law, subpoena, or court order, or if necessary to protect the rights, safety, or property of CLADAL, our users, or the public.

• Right to restrict processing of your personal data
• Right to object to processing based on legitimate interests
• Right to lodge a complaint with your local Data Protection Authority
• Our lawful basis for processing: contract performance (Article 6(1)(b)) and legitimate interest (Article 6(1)(f))

• Right to know what personal information is collected and how it is used
• Right to delete personal information held by us and our service providers
• Right to opt out of the sale of personal information — we do not sell your data
• Right to non-discrimination for exercising your privacy rights

We use strictly necessary cookies for authentication and session management. These cannot be disabled as they are required for the platform to function.

CLADAL does not use any third-party advertising cookies or tracking pixels. We do not participate in ad networks or retargeting programs.

We may use privacy-respecting analytics (opt-in only) to understand aggregate usage patterns. When enabled, analytics data is anonymized and never linked to individual user accounts.